Legal

Privacy Policy

Last updated: May 1, 2026

1. Introduction

Fetchply ("we," "our," or "us") operates the Fetchply platform at fetchply.com. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services, in accordance with the General Data Protection Regulation (GDPR), the UK GDPR, and other applicable data protection laws.

2. Data Controller

Fetchply is the data controller for the personal data processed through this platform. For any privacy-related inquiries, you can contact our Data Protection Officer at privacy@fetchply.com.

3. Information We Collect

Account Information

When you create an account, we collect your email address, display name, and authentication credentials (processed securely through Better Auth).

Social Authentication

When you sign in using Facebook or Google, we receive your name, email address, profile picture, and a unique user ID from the provider. We do not receive or store your social media passwords. This data is used solely to create and authenticate your account. For Facebook login, we support data deletion requests via the Meta platform as required by their policies.

Website Content

When you create an agent, we crawl the URL you provide and store the text content of your website pages for the purpose of training your AI agent.

Chat Data

We store conversations between your website visitors and your agent, including messages, session identifiers, visitor IP addresses (anonymized), and user agent strings.

Usage Data

We automatically collect information about how you interact with our platform, including pages visited, features used, and message counts for billing purposes.

4. Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

Contract performance: Processing necessary to provide you with our agent services (account management, billing, service delivery).
Legitimate interest: Analytics to improve our platform, fraud prevention, and security.
Consent: Where you have given clear consent for specific processing, such as optional analytics cookies. You may withdraw consent at any time.
Legal obligation: Where we are required by law to process certain data.

5. How We Use Your Information

To provide and maintain our agent services
To train AI models on your website content (per-user, never shared)
To process and track usage for billing
To send service-related notifications (agent ready, usage alerts)
To improve our platform and fix bugs
To respond to your support requests

6. Data Storage & Security

Your data is stored in PostgreSQL databases and Qdrant vector stores with encrypted connections. We use Better Auth for secure identity management. All API communications use HTTPS encryption.

We implement industry-standard security measures including encryption at rest and in transit, access controls, and regular security reviews. However, no method of electronic transmission is 100% secure. We cannot guarantee absolute security.

7. Customer Visitor Data

If you install the Fetchply widget on your website, you are responsible for telling your visitors that an AI chat widget is available and for obtaining any consent required by your local laws. We process visitor conversations, lead form submissions, feedback, session identifiers, approximate location signals, and technical metadata only to provide the widget, analytics, security, support, and billing features you enable.

You remain responsible for the content you upload or crawl and for the legality of collecting personal data from your visitors. Do not submit special category, sensitive, payment card, health, or government ID data unless you have a lawful basis and have configured appropriate safeguards.

8. Data Sharing & Third Parties

We do not sell your personal data. We share data only with:

Third-party AI providers (OpenRouter, Voyage AI) — your agent queries are sent to generate responses and embeddings. These are processed in real-time and not stored by the providers for training.
Infrastructure providers (hosting, database) — as necessary to operate our services.
Payment processor (Creem.io) — for processing subscriptions and add-on purchases. We do not store full payment card details.
Legal requirements — if required by law, court order, or governmental authority.

All third-party processors are bound by data processing agreements (DPAs) and are required to handle your data in accordance with applicable data protection laws.

9. International Data Transfers

Some of our service providers may be located outside the European Economic Area (EEA). Where data is transferred outside the EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission or other legally recognized transfer mechanisms.

10. Data Retention

We retain your data for as long as your account is active and as necessary to fulfil the purposes described in this policy. When you delete an agent, all associated data (conversations, crawled content, vector embeddings) is permanently deleted. When you delete your account, all data is removed within 30 days.

11. Your Rights

Under the GDPR and applicable data protection laws, you have the right to:

Access — Request a copy of your personal data
Rectification — Correct inaccurate or incomplete data
Erasure— Request deletion of your data ("right to be forgotten")
Portability — Export your data in a machine-readable format (chat logs, leads as CSV)
Restriction — Request restriction of processing
Objection — Object to processing based on legitimate interest
Withdraw consent — Where processing is based on consent, withdraw it at any time without affecting prior processing
Lodge a complaint — File a complaint with your local data protection authority (supervisory authority)

To exercise these rights, contact us at privacy@fetchply.com. We will respond within 30 days as required by the GDPR.

12. Cookies

We use essential cookies for authentication and session management, and optional analytics cookies with your consent. You can manage your cookie preferences at any time using the cookie banner. See our Cookie Policy for details.

13. Security, Abuse, and Legal Requests

We may process account, usage, and security data to detect abuse, prevent fraud, enforce our terms, protect the Service, and respond to lawful requests from courts, regulators, or government authorities. Where possible, we will limit disclosures to the minimum data required by the request.

14. Children's Privacy

Our services are not intended for children under 16 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect data from children. If we become aware that we have collected data from a child, we will delete it promptly.

15. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email and by posting the new policy on this page with an updated date. We encourage you to review this page periodically.

16. Contact Us

For privacy-related questions, contact us at:

General: hello@fetchply.com
Data Protection Officer: privacy@fetchply.com