Privacy Policy
TFN Media Group LLC ("AgenticLive," "we," "us") is committed to protecting your privacy. This policy explains what data we collect, why, how we use it, who we share it with, and your rights — wherever you are in the world.
Table of Contents
- What We Collect
- How We Use It (GDPR Legal Basis)
- Data Sharing & Subprocessors
- AI & Automated Processing
- Data Retention
- Security
- International Transfers
- Your Rights
- California Residents (CCPA/CPRA)
- EU/EEA/UK Residents (GDPR)
- Cookies
- Children's Privacy
- Breach Notification
- Changes
- Contact & DPA Requests
1. What We Collect
You Provide Directly
- Account data: name, email, password, company, job title
- Billing data: processed by Stripe — we never store card numbers
- Support communications, feedback, survey responses
- Agent configurations: system prompts, workflows, integration settings
Collected Automatically
- Usage data: pages visited, features used, credit consumption, session duration
- Technical data: IP address, browser, OS, device identifiers, time zone
- Log data: server logs, error logs, API request logs with timestamps
- Cookies and tracking: see Section 11 and our Cookie Policy
From Third Parties
- OAuth integrations (Google, Slack, etc.) — only data you explicitly authorize
- Payment processors (Stripe) — transaction and fraud signals
- Analytics providers (Google Analytics 4) — aggregated usage statistics
2. How We Use It — GDPR Legal Basis
| Purpose | Legal Basis (GDPR Art. 6) |
|---|---|
| Provide and operate the Services | Contract performance (Art. 6(1)(b)) |
| Process payments and manage billing | Contract performance (Art. 6(1)(b)) |
| Send transactional emails (receipts, alerts, security notices) | Contract performance (Art. 6(1)(b)) |
| Send product updates and marketing (opt-in) | Consent (Art. 6(1)(a)) |
| Prevent fraud, abuse, and security threats | Legitimate interest (Art. 6(1)(f)) |
| Legal compliance and regulatory obligations | Legal obligation (Art. 6(1)(c)) |
| Analytics and platform improvement | Legitimate interest (Art. 6(1)(f)) |
| Enforce Terms and defend legal claims | Legitimate interest / Legal obligation |
We do not sell your personal data. We do not use your data or AI outputs to train AI models.
3. Data Sharing & Subprocessors
We share data only with service providers under confidentiality obligations. Current subprocessors:
| Subprocessor | Purpose | Location |
|---|---|---|
| Anthropic PBC | AI model inference (agent responses) | USA |
| Stripe Inc. | Payment processing | USA |
| Supabase Inc. | Database and authentication | USA |
| Google LLC (GA4) | Analytics (anonymized) | USA |
| Telegram Messenger Inc. | Messaging channel integration | UAE/USA |
| VPS Provider | Web hosting and server infrastructure | Brazil |
We do not share data with advertisers, data brokers, or for cross-context behavioral advertising. In a business transfer (merger, acquisition, asset sale), data may be transferred with prior notice to you.
4. AI & Automated Processing
Our platform uses AI to generate agent responses. Your prompts and inputs are processed by Anthropic's models. We do not use your data to train AI models. Outputs may be inaccurate — see our Terms, Section 10.
We do not engage in fully automated decision-making that produces legal or similarly significant effects on individuals without human oversight. EU users may request human review of any automated decision affecting them.
5. Data Retention
We retain personal data for as long as your account is active or as needed to provide the Services. Upon termination, data is retained for up to 90 days for export, then deleted or anonymized. Financial records are retained for 7 years as required by law. Backup copies may persist for up to 30 days after deletion requests.
6. Security
We implement industry-standard protections: TLS 1.3 for all data in transit; AES-256 encryption for sensitive data at rest; role-based access controls with least-privilege principle; regular security reviews; audit logging of all access events. See our Security page for full details.
7. International Data Transfers
AgenticLive operates from the United States. If you are in the EU/EEA/UK, your data may be transferred to and processed in the U.S. We rely on European Commission Standard Contractual Clauses (SCCs) for such transfers. By using the Services, you acknowledge this. To request a copy of our SCCs, contact privacy@agenticlive.ai.
8. Your Rights (All Users)
- Access your personal data
- Correct inaccurate data
- Delete your account and associated data (right to erasure)
- Opt out of marketing communications at any time
- Data portability — export in a machine-readable format
- Withdraw consent where processing is consent-based
Submit requests to privacy@agenticlive.ai. We respond within 30 days (45 days for complex requests with notice).
9. California Residents (CCPA/CPRA)
California residents have the right to: know what personal information is collected; delete personal information; correct inaccurate information; opt out of sale or sharing (we do not sell or share data); limit use of sensitive personal information; non-discrimination for exercising rights. Submit requests to privacy@agenticlive.ai. We will respond within 45 days. You may designate an authorized agent to make requests on your behalf.
10. EU/EEA/UK Residents (GDPR)
You have rights to: access; rectification; erasure ("right to be forgotten"); restriction of processing; data portability; and objection to processing based on legitimate interests. You may lodge a complaint with your local supervisory authority (e.g., your national Data Protection Authority). Our legal bases are stated in Section 2. Contact privacy@agenticlive.ai for all GDPR requests. We aim to respond within 30 days.
11. Cookies
We use cookies for authentication, functionality, and analytics. Full details — including opt-out instructions per browser — are in our Cookie Policy.
12. Children's Privacy
The Services are not directed to persons under 18. We do not knowingly collect data from minors. If you believe a minor has provided data, contact privacy@agenticlive.ai and we will delete it promptly.
13. Breach Notification
In the event of a personal data breach, we will: notify affected users within 72 hours of becoming aware; notify relevant regulatory authorities where required by law; provide clear details on what was affected and remediation steps; conduct a post-incident review and implement corrective measures.
14. Changes
We will notify you of material changes via email or platform notice at least 14 days before they take effect. Continued use constitutes acceptance.
15. Contact & DPA Requests
TFN Media Group LLC · 2275 Huntington Dr #987, San Marino, CA 91108
Privacy: privacy@agenticlive.ai
Legal / DPA requests: legal@agenticlive.ai