Privacy Policy

1. Product Scope

A2AC is a cloud coordination plane for agents, models, SaaS platforms, enterprise systems, and optional edge nodes. A2AC helps approved systems exchange structured task, result, and error records.

2. Information We Process

A2AC may process the following categories of information:

• Account information, including tenant name, administrator contact details, billing or Marketplace account identifiers, and subscription status.
• Authentication and authorization data, including hashed API keys, scopes, tenant identifiers, and access metadata.
• Workflow records, including task envelopes, result envelopes, structured error records, routing metadata, timestamps, and execution status.
• Connector configuration data needed to connect approved systems. Plaintext secrets are not intended to be stored in Firestore and should be stored through Google Cloud Secret Manager integration.
• Operational logs and audit events used for security, debugging, entitlement processing, and platform reliability.

3. How We Use Information

We use information to provide, secure, operate, support, and improve A2AC, including to:

• Provision and manage tenant accounts.
• Route workflow requests between approved systems, models, connectors, and edge nodes.
• Maintain tenant-scoped audit records and operational history.
• Process Google Cloud Marketplace account linking, entitlement events, and subscription status.
• Detect, investigate, and prevent misuse, unauthorized access, service abuse, and security incidents.

A2AC LLC does not use customer prompts, inputs, workflow payloads, or outputs to train, retrain, or improve foundational AI models.

4. Tenant Isolation

A2AC uses tenant-scoped data paths and authorization checks to keep customer operational data logically separated. API access is resolved through authenticated tenant context, and application reads and writes are routed through the resolved tenant path.

5. Model and Provider Processing

A2AC is model-agnostic. Depending on customer configuration, workflow data may be routed to Vertex AI, customer-approved model endpoints, external provider APIs, or private edge nodes. Customers are responsible for approving the systems, models, and connectors used in their tenant.

6. Subprocessors

A2AC uses Google Cloud Platform as its primary infrastructure subprocessor for hosting, database storage, Secret Manager, Marketplace integration, and Vertex AI access where enabled by customer configuration.

7. Security Controls

A2AC is designed to use tenant-scoped API keys, hashed key storage, exact-match authorization scopes, structured audit records, Google Cloud infrastructure, and Secret Manager-based secret handling for production connector secrets.

8. Retention

A2AC retains account, workflow, audit, and operational records for as long as needed to provide the service, comply with legal or Marketplace obligations, resolve disputes, enforce agreements, and maintain security. If a Marketplace entitlement is cancelled, tenant data may enter a soft-deleted state for a 30-day grace period before deletion, unless a different period is required by law or written agreement.

9. Sharing

We do not sell customer data. We may share information with service providers and infrastructure providers used to operate A2AC, with Google Cloud Marketplace for billing and entitlement processing, as required by law, or as directed by the customer through approved connectors and model routes.

10. Customer Responsibilities

Customers are responsible for configuring authorized users, API keys, connectors, edge nodes, approved model providers, and data routing policies. Customers should avoid sending sensitive data to models, connectors, or systems that they have not approved for that use.

11. Contact

For privacy questions, contact [email protected]. If that mailbox has not yet been provisioned, contact [email protected].