LegalPrivacy Policy

Privacy Policy

Last Updated: January 2026

This Privacy Policy explains how ThinkHive, Inc. (“ThinkHive”, “we”, “us”, or “our”) collects, uses, and shares information about you when you use our services.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Name, email address, company name, and password when you register
  • Payment Information: Billing address and payment method (processed by Stripe)
  • Agent Traces: Data you send to our platform for analysis, including AI agent inputs, outputs, and metadata
  • Communications: Messages you send us for support or feedback

1.2 Information We Collect Automatically

  • Usage Data: Features used, pages visited, actions taken within the platform
  • Device Information: Browser type, operating system, IP address
  • Log Data: Server logs, error reports, performance metrics
  • Cookies: Session cookies for authentication and preferences

1.3 Information from Third Parties

  • Authentication Providers: If you sign in via Auth0, we receive your email and profile information
  • Analytics Services: Aggregated usage patterns (no personally identifiable information)

2. How We Use Your Information

We use collected information to:

  • Provide Services: Process traces, generate analyses, display dashboards
  • Improve Products: Analyze usage patterns to enhance features
  • Communicate: Send service updates, security alerts, and support responses
  • Ensure Security: Detect fraud, abuse, and security threats
  • Comply with Law: Meet legal obligations and respond to lawful requests

3. Data Processing for AI Services

⚠️

Important: We process your agent traces to provide our analysis services. We do NOT use your data to train AI models.

3.1 Trace Data Processing

  • Traces are processed to identify failures, patterns, and generate insights
  • Analysis results are stored associated with your account
  • You retain full ownership of your trace data

3.2 Third-Party AI Services

We use third-party AI providers (OpenAI, Anthropic) for analysis:

  • Only trace content is sent for analysis (no personal data)
  • We have Data Processing Agreements with all AI providers
  • You can opt out of AI-powered features

4. Data Sharing

We share information only in these circumstances:

4.1 Service Providers

We share data with vendors who help operate our services:

  • Hosting: Google Cloud Platform
  • Database: Neon (PostgreSQL)
  • Authentication: Auth0
  • Payments: Stripe
  • AI Analysis: OpenAI, Anthropic

4.2 Legal Requirements

We may disclose information if required by law, subpoena, or government request.

4.3 Business Transfers

In case of merger, acquisition, or sale, your data may be transferred to the successor entity.

4.4 With Your Consent

We may share information when you explicitly authorize us to do so.

5. Data Retention

Data TypeRetention Period
Account DataUntil account deletion
Trace DataPer your retention settings (default: 90 days)
Usage Logs12 months
Support Communications3 years
Payment Records7 years (legal requirement)

6. Your Rights

6.1 Access and Portability

You can:

  • Export your data via Settings → Data Export
  • Request a copy of all data we hold about you

6.2 Correction

Update your account information at any time in Settings.

6.3 Deletion

You can:

  • Delete individual traces from the dashboard
  • Request full account deletion (Settings → Delete Account)
  • Request data erasure under GDPR/CCPA

6.4 Opt-Out

You can opt out of:

  • Marketing communications (unsubscribe link in emails)
  • AI-powered analysis (Settings → Privacy)
  • Cookies (via browser settings)

7. Security

We implement industry-standard security measures:

  • Encryption: TLS 1.3 in transit, AES-256 at rest
  • Access Control: Role-based permissions, MFA available
  • Monitoring: 24/7 security monitoring and alerting
  • Compliance: SOC 2 Type II certified
  • Incident Response: Documented procedures for security incidents

8. International Data Transfers

If you’re outside the US, your data may be transferred to and processed in the United States. We use:

  • Standard Contractual Clauses for EU transfers
  • Data Processing Agreements with all processors

9. Children’s Privacy

ThinkHive is not intended for children under 16. We do not knowingly collect information from children.

10. Changes to This Policy

We may update this policy periodically. We will notify you of material changes via:

  • Email to your registered address
  • Notice in the application

11. Contact Us

For privacy questions or to exercise your rights:

12. Additional Rights by Region

12.1 European Union (GDPR)

EU residents have additional rights including:

  • Right to erasure (“right to be forgotten”)
  • Right to restrict processing
  • Right to object to processing
  • Right to lodge a complaint with a supervisory authority

12.2 California (CCPA)

California residents have the right to:

  • Know what personal information is collected
  • Know if personal information is sold or disclosed
  • Say no to the sale of personal information
  • Access their personal information
  • Equal service and price

We do not sell personal information.

Legal OverviewTerms of Service