Privacy Policy

Last updated: April 4, 2026

WaaS Solutions Inc. (“WaaS“, “we”, “our”, or “us”) is committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI agent platform at aiagents.waassolutions.com (the “Platform”).

1. Information We Collect

1.1 Information You Provide

  • Account registration data (name, email address, password hash)
  • Workspace and organization details
  • Messages and content submitted to AI agents
  • Payment and billing information (processed by Stripe — we do not store card data)
  • Files and documents uploaded to the knowledge base

1.2 Information Collected Automatically

  • Log data (IP address, browser type, pages visited, timestamps)
  • Usage metrics (agent interactions, token counts, workflow executions)
  • Session identifiers and authentication tokens (stored in secure HTTP-only cookies)
  • Performance telemetry (error rates, latency — no PII included)

2. How We Use Your Information

  • Provide, operate, and improve the Platform and its AI agent capabilities
  • Process transactions and send related information (invoices, receipts)
  • Authenticate users and maintain session security
  • Send service-related communications (system alerts, policy updates)
  • Comply with legal obligations and enforce our Terms of Service

We do not use your conversation data to train AI models without your explicit written consent.

3. Legal Basis for Processing (GDPR)

  • Contract performance — processing necessary to deliver the services you subscribed to
  • Legitimate interests — security monitoring, fraud prevention, service improvement
  • Legal obligation — compliance with applicable laws and regulations
  • Consent — where you have explicitly provided consent (e.g., marketing emails)

4. Data Sharing and Disclosure

  • AI providers — Anthropic, OpenAI, Google process messages per their privacy policies
  • Stripe — payment processing (subject to Stripe’s privacy policy)
  • Infrastructure providers — AWS, Qdrant under data processing agreements
  • Legal authorities — when required by law, court order, or to protect rights

We do not sell your personal data to third parties.

5. Data Retention

We retain account data for as long as your account is active. Chat messages and knowledge files are deleted within 30 days of account termination, unless legally required to retain longer.

6. Your Rights

  • Access — request a copy of your personal data
  • Rectification — request correction of inaccurate data
  • Erasure — request deletion of your personal data
  • Portability — receive your data in a machine-readable format
  • Objection / Restriction — object to or restrict certain processing
  • CCPA opt-out — California residents may opt out of data sale (we do not sell data)

Contact us at privacy@waassolutions.com to exercise any right. We respond within 30 days.

7. Security

We implement TLS encryption in transit, AES-256 encryption at rest, database-per-tenant isolation, and regular security audits. No method of Internet transmission is 100% secure.

8. International Transfers

Where required, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission to protect data transferred outside the EEA.

9. Children’s Privacy

The Platform is not directed to children under 16. We do not knowingly collect personal data from children.

10. Changes to This Policy

We will notify you of material changes by email or prominent notice at least 14 days before they take effect.

11. Contact Us

For privacy questions, contact our Data Protection Officer:

WaaS Solutions Inc.
Cookie PolicyReturn to Platform