Privacy Policy

Last updated: May 2026

1. Information We Collect

We collect information you provide directly: name, email address, company name, and workspace configuration. We also collect usage data including pages visited, features used, and AI strategy generation metadata.

2. How We Use Your Information

Provide, maintain, and improve WarroomOS services
Generate AI-powered business strategies customized to your inputs
Process payments and manage subscriptions via Stripe
Send transactional emails (verification, export completion)
Enforce rate limits and prevent abuse

3. Data Processing & AI

Your business inputs are processed through our AI agent pipeline (powered by OpenRouter LLM routing). Strategy outputs are stored in your tenant-isolated database. We do not use your business data to train AI models.

4. Data Storage & Security

Data is stored in Supabase (PostgreSQL) with Row Level Security (RLS) enforcing tenant isolation. Exports are stored in Cloudflare R2 with time-limited signed URLs. All data is encrypted in transit (TLS 1.3) and at rest.

5. Multi-Market Compliance

WarroomOS supports 33 markets with 24 compliance regimes including GDPR (EU), CCPA (California), LGPD (Brazil), APPI (Japan), PDPA (Singapore/Thailand), and POPIA (South Africa). Data residency options are available on Enterprise plans.

6. Data Retention

Active account data is retained for the duration of your subscription. Audit logs are retained 1-7 years based on your pricing tier and applicable regulations. You may request data deletion at any time.

7. Third-Party Services

Supabase — database hosting and authentication
Stripe — payment processing
OpenRouter — LLM API routing
Cloudflare R2 — file storage
Vercel — application hosting
Inngest — background job orchestration

8. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, delete, or export your personal data. Contact us at privacy@warroomos.com to exercise these rights.

9. Contact

For privacy inquiries, contact us at privacy@warroomos.com.