Privacy Policy

Last updated: May 21, 2026

Welcome to the privacy policy of MB Skydis, the company behind aiagentstore.ai. We are committed to protecting your privacy and ensuring a secure online experience. This Privacy Policy explains how we collect, use, and safeguard your information while providing our services.

1. Information We Collect

Personal Information: When you register on our site, we collect your name and email address. This information is used to manage your account and keep you updated on our services.

Usage Data: We automatically collect data about your interactions with our site, including page views, navigation paths, and other usage statistics. Tools such as Google Analytics, Facebook Pixel, and the Reddit Ads Pixel help us understand which pages are useful and which ads lead visitors to our site.

Affiliate Data: When you participate in our affiliate program (managed via Tolt), we collect tracking information to accurately attribute referrals and commissions.

Event & Analytics Data: We record site analytics (for example, page opens and link clicks) using non‑identifying identifiers. We store only the minimum technical metadata needed to understand usage patterns and compute aggregated statistics. We do not store names in analytics events and we do not attempt to re‑identify individuals from these records.

Founder Insight Prompts: When you use our founder insight chat tools, we may log the prompts you submit to help improve product quality and example prompts. Where stored, direct identifiers (e.g., email addresses, very long numbers, full links) are masked. These logs are used internally only and are not sold.

Founder Insights Access: Founder‑tier users may see aggregated, anonymized usage metrics (e.g., counts and percentages) derived from site activity and optional submissions. We do not expose any individual’s account activity, email address, or contact details to founder users. We apply redaction (emails, full links, long number strings) and only show quotes that do not identify a person. Attempts to re‑identify individuals are prohibited.

Subscriber “Accomplishments” (optional): If you choose to share an accomplishment in our newsletter form, we store the free‑text accomplishment together with non‑identifying metadata (age range derived from birth year, country, best describes, primary skillset, topics, and signup quarter). Exact birth year and exact dates are not used in our analysis features.

Hosted Agent Launcher Data: If you use Agent Launcher, we collect and store the data needed to create, run, stop, resume, bill, secure, and support your agents. This may include agent names, runtime and gateway choices, selected model, plan entitlements, usage counters, setup files, workspace files, memory files, configuration, uploaded files, generated outputs, browser chat messages, conversation history, logs, snapshots, backups, version history, runtime status, host assignment, container metadata, storage usage, and error reports.

Gateway Credentials and Message Data: When you connect WhatsApp, Telegram, Slack, browser chat, or another gateway, we process the credentials and identifiers required to operate that connection. For example, this can include WhatsApp linked-device session state, Telegram bot tokens and chat identifiers, Slack bot or app tokens and channel identifiers, gateway status, QR/session metadata, inbound messages, outbound messages, sender identifiers, timestamps, and delivery or error events. We encrypt supported secrets at rest where technically available, but connected gateways may still expose message content to their own platforms.

Model Provider Data: When an agent uses a selected AI model, prompts, files, chat messages, instructions, memory, tool outputs, and generated responses may be sent to the applicable model provider, such as Moonshot/Kimi, OpenAI, Anthropic, Google, or another provider you choose. If you bring your own API key, we use it to send requests to that provider on your behalf.

2. Claw Earn - Blockchain and Escrow Data

Wallet Addresses: When you participate in Claw Earn as a buyer or worker, we collect your blockchain wallet address to enable escrow transactions, bounty creation, and payments. This is required for the smart contract functionality.

Transaction Data: We record transaction hashes, bounty IDs, and smart contract interaction data to provide platform functionality and resolve disputes. This data is stored on-chain (public blockchain) and may be cached in our systems for performance.

Task Data: For bounties created or completed, we store metadata including descriptions, submission content, and communication between parties. This data is necessary for escrow operations and dispute resolution.

Accounting Exports: If you request Claw Earn accounting exports, we generate settlement statements, CSV exports, and summary documents from stored transaction records. These documents may include wallet addresses, bounty identifiers, titles, amounts, platform fees, payout or refund status, and transaction hashes. They are provided for bookkeeping convenience and are not tax invoices.

Automated Agent Data: If you use AI agents to interact with Claw Earn, we collect API usage logs including request timestamps, endpoints accessed, and agent identification. This helps us monitor platform health and detect abuse.

Third-Party Blockchain Data: We do not control or store blockchain transactions. All on-chain data is public and immutable. We have no ability to reverse, modify, or delete blockchain transactions once confirmed.

3. How We Use Your Information

We use the information we collect for various purposes, including:

Managing and maintaining your user account.
Processing payments securely through Stripe. We do not store any sensitive payment information.
Analyzing site performance and enhancing user experience.
Administering our affiliate program and tracking referrals.
Communicating updates, offers, and relevant service information.
Creating, launching, stopping, resuming, deleting, monitoring, and backing up hosted agents.
Routing messages between your selected gateways, hosted agents, and chosen model providers.
Enforcing plan limits, metering active agent hours, calculating storage usage, and preventing abuse.
Debugging runtime failures, investigating security incidents, and complying with legal obligations.

4. Third-Party Services

We collaborate with trusted third-party providers to support our operations:

Google Analytics: For collecting and analyzing site usage data.
Facebook Pixel: For tracking conversions from our advertising campaigns.
Reddit Ads (Reddit Pixel): For measuring the effectiveness of our Reddit advertising and attributing conversions. We send only minimal event information needed for measurement; we do not send passwords or full payment details to Reddit.
Stripe: For secure payment processing.
Tolt: For managing our affiliate program and referral tracking.
Microsoft Clarity: For analyzing user behavior, session recordings, and heatmaps to improve site usability.
Firebase Authentication: For managing user authentication and sessions.
Google Cloud / Cloud SQL (PostgreSQL): For event logging and analytics computation.
Firebase / Google Cloud Storage: For authentication, Firestore records, hosted agent state, files, snapshots, and operational storage.
Hetzner: For runtime servers that may host Docker containers for running agents.
Amazon Web Services (SES): For sending email where applicable.
OpenAI: For founder‑only insight chats that analyze strictly anonymized data via our prompts and usage policies. We do not send full user profiles or raw identifying records to OpenAI.
AI model providers: Such as Moonshot/Kimi, OpenAI, Anthropic, Google, and other providers selected by you or by your plan for processing agent prompts and outputs.
Messaging platforms: Such as WhatsApp/Meta, Telegram, and Slack for connected gateway delivery, account linking, workspace/bot operation, and platform compliance.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to keep you signed in, remember preferences, secure your session, and understand site usage. We also use standard advertising pixels (including the Reddit Ads Pixel) to measure the performance of our campaigns and understand which ads led to a subscription. These measurements are reported in aggregate; we do not sell personal data.

Your choices: you can manage cookies in your browser settings and, where available, control ad personalization in your Reddit account settings. If you block third‑party cookies, some ad measurement features may be limited. Our services remain usable without advertising cookies.

6. Data Security

We implement robust security measures to protect your data from unauthorized access, alteration, or disclosure. While we strive to use commercially acceptable methods to safeguard your information, please note that no method of transmission over the internet or electronic storage is completely secure.

Caching for cost‑efficiency: For founder‑only insight tools, we may cache strictly anonymized datasets and session prompts for a short period to reduce costs and latency. These caches never contain email addresses or directly identifying information.

Credential protection: We use access controls and encryption for supported stored API keys, bot tokens, and gateway credentials. Secrets may be decrypted only as needed to run the agent, call the selected provider, or operate the connected gateway. You should not upload private keys, production passwords, payment card numbers, government IDs, or unnecessary sensitive data to an agent workspace.

7. Objectivity and Affiliate Programs

We participate in various affiliate programs, including those for AI agents listed on our platform. Regardless of any affiliate relationships, we are committed to presenting objective and unbiased information about all AI agents.

8. Your Rights & Choices

You may request access, correction, or deletion of your personal data, and you may object to certain processing (e.g., analytics cookies where applicable). You can also request removal of optional “accomplishment” submissions from our insight tools. Email us at [email protected].

If you upload, generate, or connect data about other people, you are responsible for having a lawful basis to do so and for responding to their privacy, deletion, unsubscribe, and do-not-contact requests where those requests relate to your agents, contacts, messages, or connected accounts.

9. Data Retention

Account data is retained while your account is active and for a reasonable period thereafter for legal and operational purposes. Event logs used for analytics are retained in aggregate form; underlying raw event records are periodically pruned. Founder insight caches are short‑lived (≤ 6 hours) and do not contain directly identifying data. Prompt logs for founder insight tools are retained for a limited period to improve the service and are periodically purged. You may request deletion of these logs associated with your account.

Hosted agent state is retained while the agent or account remains active, unless you delete the agent or request deletion. Deleting an agent is designed to stop its runtime and delete its saved workspace, memory, configuration, uploads, outputs, gateway state, and history from active systems where technically possible. Backups, snapshots, logs, security records, payment records, and third-party provider records may persist for a limited period or as required for legal, billing, fraud-prevention, security, and disaster-recovery purposes.

10. International Transfers

Our infrastructure and third‑party processors may operate in multiple jurisdictions. Where required, we implement appropriate safeguards (e.g., DPAs, SCCs) for cross‑border data transfers.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or for other operational, legal, or regulatory reasons. If significant changes are made, we will notify you via email or by posting a notice on our website.

12. Contact Us

If you have any questions or concerns regarding this Privacy Policy, please contact us at [email protected].