AI incident investigation is live.See how it works →
DevOps GenieDevOps Genie

Privacy Policy

Last updated: March 2026

1. Information We Collect

We collect information that you provide directly and information generated through your use of our services:

  • Account information: Name, email address, company name, and password when you create an account through our authentication provider (Frontegg).
  • Cloud account metadata: Cloud provider account IDs, resource identifiers, security scan results, and compliance findings. We do not access or store your actual cloud data, application code, or customer data.
  • Usage data: Pages visited, features used, scan frequency, and interaction patterns to improve our platform.
  • Communication data: Messages you send through our contact form or support channels.

2. How We Use Your Information

  • Provide, maintain, and improve our cloud security scanning and DevOps automation services.
  • Generate security findings, compliance reports, and remediation recommendations.
  • Send you service notifications, security alerts, and product updates.
  • Respond to your inquiries and provide customer support.
  • Monitor and analyze usage patterns to improve platform performance and user experience.
  • Detect, prevent, and address technical issues and security threats.

3. Data Storage and Security

We take the security of your data seriously:

  • All data is encrypted in transit (TLS 1.3) and at rest (AES-256).
  • Each organization receives its own isolated PostgreSQL database — no cross-tenant data access is possible.
  • Cloud provider credentials are stored in AWS Secrets Manager with per-tenant encryption keys managed by AWS KMS.
  • We use read-only access to your cloud accounts and never modify your infrastructure.
  • Our infrastructure is hosted on AWS with Kubernetes orchestration, following security best practices.

4. Third-Party Services

We use the following third-party services to provide our platform:

  • Frontegg: Authentication and identity management.
  • AWS: Cloud infrastructure hosting, secrets management, and container orchestration.
  • Anthropic / OpenAI: AI model providers for our assistant and remediation features. Conversation data is sent to these providers for processing but is not used for model training.
  • Analytics: We use privacy-respecting analytics to understand platform usage patterns.

5. Your Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate personal data.
  • Deletion: Request deletion of your personal data and account.
  • Portability: Request your data in a portable format.
  • Objection: Object to the processing of your personal data for certain purposes.

To exercise any of these rights, contact us at privacy@devopsgenie.ai.

6. Cookies

We use essential cookies only — those required for authentication, session management, and basic platform functionality. We do not use advertising or tracking cookies. Analytics cookies, if any, are privacy-respecting and do not track individuals across websites.

7. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the “Last updated” date. Continued use of our services after changes constitutes acceptance of the updated policy.

8. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

privacy@devopsgenie.ai