Privacy Policy
Last updated: February 19, 2026
This draft policy outlines the types of data the Spinup platform currently processes. It is intentionally concise and will be expanded with full legal language as the product matures.
1. Data we collect
We process account and organization information, server lifecycle metadata, audit events, and operational logs needed to provision and operate managed bot infrastructure.
2. Why we process data
Data is used to authenticate users, authorize workspace actions, provision servers, track billing state, enforce guardrails, and monitor platform reliability.
3. Infrastructure and subprocessors
Spinup currently relies on hosted providers for cloud compute, payments, transactional email, and managed data services. We only share data with providers required to deliver platform features.
4. Security and retention
Sensitive credentials are encrypted at rest, and internal flows are protected with scoped authentication keys. Retention periods and deletion flows are being formalized and documented as part of ongoing hardening.
5. Your requests
For privacy or data questions, use the Contact option in the footer. We review requests and respond as quickly as possible.
Also see our Terms of Service and Security Overview.