← AgencyOps

Privacy Policy

Effective Date: April 7, 2026 | Last Updated: April 7, 2026

This Privacy Policy ("Policy") explains how AgencyOps ("AgencyOps", "we", "us", "our") collects, uses, discloses, and protects information when you access or use our Telegram bot, web application, and related services (the "Service").

Operator / Data Controller:"SHAGAHAR" LLC (TIN: 312 795 849, Reg. No. 3123672)

Website: agencyops.app

Contact Email: support@agencyops.app

Business Address: Nukus Street 17, Apt. 24, Salar MFY, Mirobod District, Tashkent, Uzbekistan

By using the Service, you acknowledge that you have read and understood this Policy.

1. Who this Policy applies to

The Service is designed for freelancers, designers, agencies, and other creative professionals (B2B) who manage client approvals, revisions, and invoicing. If you use the Service on behalf of a company, "you" includes that company.

Clients who receive review links or invoices are also covered by this Policy when they interact with our web pages.

2. Information we collect

2.1 Account and authentication information

We collect information needed to create and manage your account, such as:

  • Telegram user ID, username, and display name
  • Account identifiers and preferences

2.2 Customer Data (content you submit)

We collect and process information you input, upload, or generate in the Service, including:

  • Client names and contact information you provide
  • Files uploaded for client review (images, PDFs, documents, videos)
  • Approval request details, comments, and revision history
  • Invoice line items, amounts, and payment status
  • Notes and project metadata

2.3 Payment and billing information

If you purchase a subscription or paid features, payments are processed by Paddle. We receive limited billing metadata (e.g., plan, subscription status, dates, amounts, transaction identifiers).

We do not collect, process, or store full credit card details (PAN, CVV, etc.); those are handled entirely by Paddle and its payment processors.

2.4 Usage and device information

We may automatically collect:

  • IP address
  • Device/browser type, operating system, language
  • Usage events (pages/features used, timestamps)
  • Diagnostic logs (for security and reliability)

2.5 Cookies and similar technologies

We may use cookies, local storage, session storage, and similar technologies for:

  • Authentication and session management
  • Security (fraud prevention, abuse detection)
  • Preferences (e.g., settings)
  • Performance and reliability

If we use analytics or marketing cookies, we will do so consistent with applicable law and will update this Policy as needed.

3. How we use information

We use collected information to:

  • Provide and operate the Service (approval workflows, file hosting, watermarking, invoicing, CRM)
  • Authenticate users and secure the Service
  • Process payments and manage subscriptions (through Paddle)
  • Provide customer support
  • Improve and maintain the Service (debugging, performance, feature improvements)
  • Comply with legal obligations and enforce our terms
  • Protect rights, safety, and integrity of the Service, users, and the public

4. How we share information

We do not sell your personal information as a business model. We may share information in these scenarios:

4.1 Service providers (processors / subprocessors)

We may share information with vendors that help us run the Service, such as:

  • Hosting/infrastructure providers (e.g., Railway)
  • Database providers (e.g., Supabase)
  • File storage providers (e.g., Cloudflare R2)
  • Payment processing (Paddle)
  • Telegram Bot API (for bot functionality)
  • Email delivery providers (if used for transactional emails)

These providers are permitted to process data only as necessary to provide their services to us.

4.2 Client-facing pages

When you send a review request or invoice, your display name, project details, and uploaded files become visible to the client through our web pages (/r/ and /i/ routes). Clients do not need a Telegram account or any registration to view these pages.

4.3 Legal and safety

We may disclose information if we believe it is necessary to:

  • Comply with law, regulations, court orders, or lawful requests
  • Investigate and prevent fraud, abuse, or security incidents
  • Protect the rights, property, and safety of AgencyOps, our users, or others

4.4 Business transfers

If we are involved in a merger, acquisition, financing, reorganization, or sale of assets, information may be transferred as part of that transaction, subject to appropriate safeguards.

5. Data location and international transfers

The Service is hosted with infrastructure that may include servers in the United States and Europe, including via service providers such as Railway, Supabase, and Cloudflare. Because the Operator is located in Uzbekistan, and because vendors may operate globally, your data may be transferred to and processed in countries other than where you live. By using the Service, you understand that such transfers may occur.

6. Data retention

We retain information for as long as reasonably necessary to:

  • Provide the Service and maintain accounts
  • Meet legal, accounting, and compliance obligations
  • Resolve disputes and enforce agreements
  • Maintain security and prevent abuse

Uploaded files may be automatically deleted after review link expiration (default: 30 days). You are responsible for maintaining your own copies of critical documents and outputs if needed for your business processes.

7. Security

We use reasonable administrative, technical, and organizational measures designed to protect information, including signed URLs for file access, watermarking of deliverables, and encrypted connections. However, no system is perfectly secure. You are responsible for safeguarding your Telegram account and managing access within your organization.

8. Your choices and rights

Depending on your location and applicable law, you may have the right to:

  • Access your personal information
  • Correct inaccurate information
  • Request deletion of certain information
  • Obtain a copy/portability of certain information
  • Object to certain processing (where applicable)

To make a request, contact support@agencyops.app. We may need to verify your identity and authority (especially for business accounts).

9. California privacy notice (CCPA/CPRA)

If you are a California resident and the law applies, you may have additional rights, including the right to know, delete, correct, and opt out of certain "sale" or "sharing" of personal information as defined by California law.

We do not "sell" personal information in the traditional sense. If we ever use technologies that may constitute "sharing" for cross-context behavioral advertising, we will provide required opt-out mechanisms and update this Policy.

10. Children

The Service is not intended for anyone under 18, and we do not knowingly collect personal information from children.

11. Third-party links and services

The Service may link to third-party websites or services. Their privacy practices are governed by their own policies, not this Policy.

12. Changes to this Policy

We may update this Policy from time to time. If we make material changes, we will update the "Last Updated" date and may provide additional notice as required by law. Continued use of the Service after changes take effect means you accept the updated Policy.

13. Contact

For privacy questions or requests:

Email: support@agencyops.app

Mailing address: Nukus Street 17, Apt. 24, Salar MFY, Mirobod District, Tashkent, Uzbekistan