mitosis

Privacy Policy

Last updated: 2026-05-03

What we store

  • Account: email, name, hashed password, workspace memberships.
  • Agent activity: objectives, runs, tool calls, approvals, generated artifacts.
  • Connector credentials, encrypted at rest with per-deployment Fernet keys.
  • Telemetry: request logs (60 days), error reports via Sentry (no PII payload).
  • Login audit: IP, user-agent, geolocation (superadmin only) — 180 days.

Third-party processors

We use OpenAI / Anthropic for inference, Postgres + Redis for storage, Brevo for transactional email, Stripe for billing, and the model providers configured in your workspace credentials. We never sell or rent your data.

Data export & deletion

Workspace owners may request a full data export or deletion via privacy@mitosis.aliune.com. Export completes in 30 days, deletion in 7 days, subject to legal retention.

Cookies

First-party cookies only, scoped to authentication and workspace selection. No advertising cookies or cross-site trackers.

Security

TLS in transit, AES-256 at rest, automatic nightly backups retained for 14 days. MFA enforced for superadmins, 60-day password rotation, IP-based login auditing. Vulnerability reports: security@mitosis.aliune.com.

Contact

Privacy questions: privacy@mitosis.aliune.com