AgileNotes.AI Sprint Memory System
View pricing Start free trial

Privacy Policy

Last updated: May 6, 2026

This policy explains what AgileNotes.AI ("we", "us") collects when you use the service at agilenotes.ai, how we store and use it, and your rights over your data. We wrote it in plain language because legal copy that you can't read isn't doing its job.

1. What we collect

  • Account information. Email address, name, organization name, and password hash. We do not store passwords in plain text.
  • Team configuration. Team names, members, framework choice (Scrum / Kanban / SAFe / LeSS), sprint cadence, and capacity inputs (PTO, holidays).
  • APM-synced ticket data. When you connect Jira, Azure DevOps, Agility, or Rally, we sync the ticket fields you read from those systems — ID, title, status, story points, assignee, sprint, changelog. We only read; we do not write back to your APM tool.
  • Sprint notes. The decisions, blockers, risks, observations, and other notes you capture in the app.
  • AI usage logs. Token counts and timestamps for each AI generation, to provide transparency and bill-level visibility.
  • Operational logs. Sign-in events, failed sign-ins, and request metadata used to detect abuse and debug failures.

We do not collect health data, government IDs, payment card numbers (those are handled by our payment processor and never touch our servers), or browsing history outside our domain.

2. Where we store it

Customer data is stored on enterprise cloud infrastructure in the United States. All data is encrypted at rest and in transit over TLS 1.2+. API keys for AI providers and APM integrations are stored in a managed secrets vault and never appear in logs or in customer-readable surfaces.

3. How we use it

  • To render your team's surfaces — Dashboard, Charts, Patterns, Reports — for you and the people you authorize.
  • To compute coaching insights and AI-narrated summaries from your data. AI processing routes through enterprise AI providers under data-processing agreements; no provider trains on your data.
  • To send transactional email — sign-in links, password resets, billing receipts. We do not send marketing email without explicit opt-in.
  • To improve the service. We use aggregated, non-identifying metrics (e.g. number of teams using a feature) to prioritize what to build. We never use your sprint notes or ticket data to train models or build other customers' surfaces.

4. Who we share it with

We share data only with subprocessors that operate the service:

  • Cloud infrastructure provider — hosting, storage, compute, and email delivery.
  • AI providers — large-language-model processing for AI-narrated coaching, Daily Standup, and Stakeholder Report sections.
  • Payment processor — billing and payment handling for paid plans.

We do not sell customer data, ever. We do not share data with advertisers. We respond to lawful subpoenas only after notifying the affected customer where legally permitted. The current list of named subprocessors is available on request — email privacy@agilenotes.ai.

5. Your rights

  • Export. Download every note, ticket, and report your team owns at any time from the Reports / Settings surface.
  • Deletion. Delete individual notes, sprints, or your entire team or organization from the app. Email privacy@agilenotes.ai for an account-level deletion request. We delete within 30 days; backups age out within 90 days.
  • Correction. Edit any note, ticket field, or AI-generated section in place via the app's edit affordances.
  • Portability. Exports are JSON or CSV. AI narrative sections export as plain text or HTML.

6. Retention

  • Account data persists until you delete your account.
  • Generated reports live for 90 days by default, or until you delete them. Shareable Public Dashboard tokens can be rotated or revoked at any time.
  • Operational logs are retained for 30 days.
  • AI usage logs (token counts, model name, timestamp) are retained for 12 months for billing transparency.

7. Cookies and analytics

The marketing site uses no third-party analytics, no advertising pixels, and no cross-site trackers. The app uses session cookies for sign-in; these are first-party, HTTP-only, and used solely for authentication. We do not fingerprint browsers.

8. Children

AgileNotes.AI is a B2B service not directed to children under 16. We do not knowingly collect data from anyone under 16.

9. Changes to this policy

If we materially change how we collect or use data, we will email account owners at least 30 days before the change takes effect. The "last updated" date at the top of this page reflects the most recent revision.

10. Contact

Questions, concerns, or data subject requests: privacy@agilenotes.ai. We aim to respond within 5 business days.