Privacy Policy

1. Information We Collect

Account information. When you sign up, we collect your name, email address, and password. If you sign up via a referral link, we record the referral association.

Company and project data. When you create a company on Prometheus, we store your company name, description, business idea, strategy, and all content generated by or provided to the platform, including tasks, leads, emails, memory entries, and deployed assets.

Usage and activity data. We collect information about how you use the Service, including pages visited, features used, task execution history, agent activity logs, and token consumption metrics.

Support communications. If you contact us or reply to emails sent through the platform, we store the content of those communications to provide support and improve the Service.

Billing and subscription data. Payment processing is handled by Stripe. We store your Stripe customer ID and subscription status but do not store credit card numbers or full payment details on our servers.

Technical data. We may collect your IP address at signup for abuse prevention purposes.

2. How We Use Your Information

We use the information we collect to:

• Provide, operate, and improve the Service, including running AI-powered workflows and autonomous agent operations on your behalf.
• Process your company data through AI models to generate content, execute tasks, and deliver platform features.
• Send you operational communications, including authentication emails, billing notifications, onboarding messages, and activity updates.
• Process billing and manage your subscription through Stripe.
• Provide customer support and respond to your inquiries.
• Monitor for abuse, enforce our Terms of Service, and maintain platform security.
• Debug issues, analyze usage patterns, and improve the Service.

3. Service Providers

We share information with third-party service providers that help us operate the Service. These providers process data only as necessary to perform their functions and are subject to their own privacy policies:

• AI providers (e.g., Anthropic) — Prompts, company data, and related content are sent to third-party AI providers to operate the Service. These providers may process and retain data under their own terms and privacy policies.
• Hosting and infrastructure (e.g., Render, Neon, GitHub, Vercel) — Your data and any deployed applications are hosted on third-party cloud infrastructure.
• Payment processing (Stripe) — Billing and subscription management. Stripe collects and processes payment information directly.
• Email delivery (SendGrid) — Operational emails and any outbound communications configured through the platform are delivered via SendGrid.
• Search providers — Web search queries executed by agents may be processed by third-party search APIs.

4. Communications

We may send you the following types of communications:

• Operational emails. Authentication, billing, onboarding, and account-related messages. These are necessary for the Service to function and cannot be opted out of while your account is active.
• Activity updates. Notifications about your company activity, task completions, and agent actions. You can manage these through your account settings.

If you configure outbound email features (e.g., cold outreach), Prometheus sends those communications on your behalf through SendGrid. You are responsible for compliance with applicable email laws.

5. Data Retention and Deletion

We retain your data for as long as your account is active or as needed to provide the Service.

• Company deletion. You can delete individual companies at any time through your dashboard. This permanently removes the company and all associated data, including tasks, leads, emails, and memory. Provisioned infrastructure (hosting, databases, repositories) is torn down on a best-effort basis.
• Account deletion. You can permanently delete your account through Profile Settings. This deletes all owned companies and your user record. Your email address becomes available for reuse.
• Backups and logs. Deleted data may persist in database backups and server logs for a limited period before being overwritten through normal retention cycles.
• Stripe records. Billing records maintained by Stripe are subject to Stripe's own retention policies.

6. Data Security

We implement reasonable technical and organizational measures to protect your data, including:

• Encrypted connections (HTTPS/TLS) for all data in transit.
• Database credentials and API tokens stored securely.
• Access controls and authentication for all API endpoints.
• Input sanitization to prevent injection attacks.

No method of transmission or storage is completely secure. We cannot guarantee absolute security, but we take reasonable steps to protect your information.

7. International Data Transfers

Your data may be processed and stored outside your home jurisdiction, including in the United States, where data protection laws may differ from those in your country. By using the Service, you acknowledge this transfer.

Where required by applicable law, we process personal data under appropriate legal bases such as contract performance, legitimate interests, consent, and legal obligations.

8. Your Rights

Depending on your jurisdiction, you may have rights regarding your personal data, including the right to access, correct, delete, or export your data. To exercise these rights, contact us at the email below.

You can delete your companies and account directly through the platform at any time without needing to contact us.

If you have concerns about how we handle your personal data, contact us first. Where applicable, you may also have the right to complain to your local data protection authority.

9. Children

Prometheus is not intended for use by anyone under the age of 18. We do not knowingly collect information from children. If we learn that we have collected data from a child under 18, we will delete the account and associated data promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through the Service. Continued use of Prometheus after changes take effect constitutes acceptance of the updated policy.

11. Contact

Questions about this Privacy Policy: ceo@systemprometheus.com