Privacy Policy

Last Updated: November 15, 2025

1. Introduction

Blue Ocean Applications ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Agora System services.

2. Information We Collect

2.1 Account Information

Name and email address
Company name and business information
Payment information (processed securely by Stripe)

2.2 Service Data

Emails processed by our Administrative Assistant and Support services
Content created or distributed by our Marketing service
Usage metrics and analytics
System logs and performance data

2.3 Technical Information

IP addresses and device information
Browser type and operating system
Login timestamps and session data

3. How We Use Your Information

We use collected information to:

Provide and maintain our AI-powered services
Process payments and manage subscriptions
Improve service quality and performance
Send service-related notifications and updates
Detect and prevent fraud or security issues
Comply with legal obligations

4. Data Processing and AI Services

4.1 Email Processing: Emails are processed by our AI agents for triage, routing, and response generation. Email content is analyzed to provide intelligent automation.

4.2 Third-Party AI: We use Anthropic's Claude API for natural language processing. Data sent to Anthropic is governed by their privacy policy and data processing agreement.

4.3 Data Retention: Service data is retained as long as your account is active. You may request deletion of your data at any time.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share data with:

Service Providers: Stripe (payments), Anthropic (AI processing), infrastructure providers
Legal Requirements: When required by law or to protect our rights
Business Transfers: In the event of a merger, acquisition, or sale of assets

6. Data Security

We implement industry-standard security measures including:

Encryption in transit (TLS/SSL) and at rest
HashiCorp Vault for secrets management
Access logging and audit trails
Regular security assessments and monitoring
SOC 2 and GDPR compliance measures

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

7. GDPR Compliance (EU Users)

If you are located in the European Economic Area (EEA), you have certain rights under GDPR:

Right to Access: Request copies of your personal data
Right to Rectification: Correct inaccurate data
Right to Erasure: Request deletion of your data
Right to Restrict Processing: Limit how we use your data
Right to Data Portability: Receive your data in a portable format
Right to Object: Object to certain types of processing

To exercise these rights, contact us at blueoceanapplications@gmail.com

8. Cookies and Tracking

We use essential cookies for authentication and session management. We do not use third-party advertising or tracking cookies.

9. Children's Privacy

Our services are not intended for children under 18. We do not knowingly collect information from children.

10. International Data Transfers

Your data may be transferred to and processed in the United States or other countries where our service providers operate. We ensure appropriate safeguards are in place for such transfers.

11. Your Rights and Choices

You may:

Update your account information at any time
Request export of your data
Request deletion of your account and data
Opt out of non-essential communications

12. Data Breach Notification

In the event of a data breach affecting your personal information, we will notify you within 72 hours as required by GDPR and applicable laws.

13. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes by email or through the service.

14. Contact Us

For privacy-related questions or to exercise your data rights, contact:

Blue Ocean Applications
Email: blueoceanapplications@gmail.com
Data Protection Inquiries: privacy@blueoceanapplications.com