Privacy Policy

This Privacy Policy describes how Robot Force (“we”, “us”, “our”) collects, uses, protects, and deletes personal data and Google user data when you use our software platform for creating and operating AI agents (the “Service”). If you have questions, contact [email protected].

1. Data We Process

We follow a data-minimization approach: we process only the data necessary to provide and secure the Service.

  • Account data: email address; optionally name (manual registration or via Google Sign-In).
  • Operational data: configuration and runtime metadata required to operate your AI agents and instances (e.g., instance identifiers, quotas/limits, usage counters).
  • Billing data: subscription status and identifiers needed to manage billing. Payment details are handled by Stripe; we do not store full card numbers.

2. Google OAuth, Gmail & Calendar Access

The Service may offer optional integration with Google services. You can (a) sign in with Google, and/or (b) authorize an AI agent to access your Google account using OAuth. These are separate and optional actions.

  • Google Sign-In: used for authentication; we receive basic profile information (typically email and name).
  • Agent authorization (OAuth): if you explicitly connect Google, you may grant the agent permissions to access Gmail and Google Calendar, including read and write scopes, to perform tasks you request (e.g., reading emails, drafting/sending emails, creating/updating calendar events).

We do not access Gmail or Calendar data unless you explicitly authorize the integration. You can revoke access at any time in your Google Account settings, and the integration will stop functioning.

3. Google API Services User Data Policy (Limited Use)

When you authorize Google access, we handle Google user data in accordance with Google’s API Services User Data Policy, including the Limited Use requirements:

  • Google user data is used only to provide or improve user-facing features explicitly requested by you.
  • We do not sell Google user data.
  • We do not use Google user data for advertising.
  • We do not allow humans to read Google user data except as necessary for security, support, or compliance (and only with appropriate access controls).

4. How We Use Data

  • Provide and operate the Service and AI agents as configured by you.
  • Authenticate users and manage organizations and access permissions.
  • Maintain security, prevent abuse, and troubleshoot issues.
  • Provide customer support when requested by you.
  • Manage subscriptions, quotas/limits, and billing-related workflows.

5. Data Security

We implement technical and organizational measures to protect data against unauthorized access, alteration, disclosure, or destruction.

  • Encryption: sensitive data is encrypted using strong cryptography (AES-256 with secure initialization vectors (IV)), and platform-level protection mechanisms such as DPAPI where applicable.
  • Access control: least-privilege access, role-based permissions, and restricted administrative access.
  • Transport security: data in transit is protected using TLS/HTTPS.
  • Isolation: customer resources run in isolated environments where applicable.

6. Data Location (EU / US)

Data is stored and processed in the region selected for your account or organization. Depending on configuration, data may be processed in the European Union (EU) or the United States (US).

7. Retention & Deletion

We retain customer data only while the subscription is active and only as required to provide the Service.

When a subscription is deleted/terminated, we delete all customer data associated with the organization, including AI instances/resources and configuration data.

  • All AI instances and associated resources are deprovisioned.
  • Customer operational data and account-linked data are removed from active systems.
  • Google OAuth tokens and authorized connections (if any) are removed/invalidated on our side.

8. Sharing and Subprocessors

We do not sell personal data. We share data only with service providers needed to deliver the Service (subprocessors), or if required by law.

  • Stripe — payments and billing operations.
  • Google — only if you connect Google via OAuth, to access Gmail/Calendar as authorized.
  • Cloud providers — infrastructure hosting in the selected region (EU/US).

9. Your Rights

Depending on your location, you may have rights to access, correct, or delete your data. You can request assistance at [email protected].

10. Contact

If you have questions about privacy or Google data handling, contact [email protected].

Last updated: 1/23/2026