Privacy Policy

1. Introduction

MCPFED ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Federation of Agents platform and related services (the "Service"). Please read this privacy policy carefully. By using the Service, you consent to the practices described herein.

2. Information We Collect

2.1 Personal Information

We collect information you provide directly to us, including:

• Account information (name, email address, password)
• Billing information (payment method, billing address)
• Profile information (company name, job title)
• Communications you send to us (support requests, feedback)

2.2 API Keys and Credentials

When you connect third-party services, we collect and securely store:

• API keys and access tokens
• OAuth authorization tokens
• Connection configuration settings

All credentials are encrypted using AES-256 encryption at rest and in transit.

2.3 Automatically Collected Information

When you access our Service, we automatically collect:

• Device information (browser type, operating system)
• Log information (access times, pages viewed, IP address)
• Usage data (features used, workflows created, API calls made)
• Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service
• Process transactions and send related information
• Send technical notices, updates, and support messages
• Respond to your comments, questions, and requests
• Monitor and analyze trends, usage, and activities
• Detect, investigate, and prevent security incidents
• Personalize and improve your experience
• Comply with legal obligations

4. Information Sharing

We do not sell your personal information. We may share your information in the following situations:

• Service Providers: With third parties who perform services on our behalf (payment processing, hosting, analytics)
• Third-Party Integrations: When you connect external services, we share necessary data with those services as directed by you
• Legal Requirements: When required by law or to protect our rights and safety
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• With Your Consent: When you have given us permission to share

5. Data Security

We implement robust security measures to protect your data:

• AES-256 encryption for stored credentials
• TLS 1.3 encryption for data in transit
• Regular security audits and penetration testing
• SOC 2 Type II compliance
• Role-based access controls
• Secure data centers with physical security
• Regular backups with encryption

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with legal obligations, resolve disputes, and enforce our agreements. You may request deletion of your account and associated data at any time.

7. Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your personal data
• Portability: Request transfer of your data
• Restriction: Request restriction of processing
• Objection: Object to certain processing activities
• Withdraw Consent: Withdraw consent at any time

To exercise these rights, please contact us at privacy@mcpfed.com.

8. Cookies and Tracking

We use cookies and similar tracking technologies to:

• Keep you logged in
• Remember your preferences
• Understand how you use our Service
• Improve our Service

You can control cookies through your browser settings. Note that disabling cookies may affect the functionality of the Service.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure appropriate safeguards are in place, including Standard Contractual Clauses, to protect your data when transferred internationally.

10. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete that information.

11. California Privacy Rights (CCPA)

California residents have additional rights under the CCPA:

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to say no to the sale of personal information
• Right to access your personal information
• Right to equal service and price

We do not sell personal information. To exercise your rights, contact us at privacy@mcpfed.com.

12. GDPR Compliance

For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR). Our legal basis for processing personal data includes: consent, contractual necessity, legal obligations, and legitimate interests. You have the right to lodge a complaint with a supervisory authority if you believe we are processing your data unlawfully.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

14. Contact Us

If you have any questions about this Privacy Policy, please contact us: