Privacy Policy¶
Effective date: March 10, 2026 Last updated: March 10, 2026
This Privacy Policy explains how TrustStix Inc ("we", "us", "our") collects, uses, and shares information when you use the Agentic Decks website and the Deckrun API (the "Service"). By using the Service, you agree to the practices described here.
1. Information We Collect¶
1.1 Account information¶
When you sign in via Google or GitHub, we receive your name, email address, and profile photo from that provider. We store your email and display name to identify your account.
1.2 Usage data¶
We record Render Unit (RU) consumption, job types, timestamps, and API call counts associated with your account. This is used for billing, plan enforcement, and service improvement.
1.3 Payment information¶
Payments are processed by Stripe. We do not store credit card numbers or full payment details. Stripe may retain billing address and payment method metadata under their own privacy policy. We store your Stripe customer ID and subscription status.
1.4 Content you submit¶
Markdown content, themes, and assets you submit via the API are processed transiently to render your output. We do not store submitted content beyond what is necessary to complete and deliver your job. We do not use your content to train AI models.
1.5 Analytics¶
We use Google Analytics 4 (GA4) on agenticdecks.com to understand aggregate traffic and usage patterns. GA4 collects anonymized browsing data including pages visited, referral source, and device type. You can opt out via browser settings or the Google Analytics opt-out extension.
2. How We Use Your Information¶
- To create and manage your account
- To enforce plan limits and record RU usage for billing
- To process payments via Stripe
- To send transactional emails (receipts, plan changes, service notices)
- To improve and operate the Service
- To respond to support requests
We do not sell your personal information. We do not use your content or usage data for advertising.
3. Third-Party Services¶
| Service | Purpose | Privacy Policy |
|---|---|---|
| Firebase Authentication (Google) | Sign-in via Google or GitHub | google.com/privacy |
| Google Cloud / Firestore | Account data storage | cloud.google.com/privacy |
| Stripe | Payment processing | stripe.com/privacy |
| Google Analytics 4 | Website analytics | google.com/privacy |
4. Data Retention¶
We retain account and billing data for as long as your account is active. Usage logs (API calls, RU consumption, job records) are retained on a best-effort basis only — they may be lost due to infrastructure changes, instance replacement, or system failures, and we make no guarantee of their preservation. We do not commit to retaining usage logs for any minimum period. If logs are gone, they are gone.
Stripe billing records are retained by Stripe under their own policies. You may request deletion of your account and associated data by contacting us — see Section 8.
5. Security¶
We use industry-standard measures to protect your data, including TLS in transit, encrypted storage, and access controls. No system is perfectly secure; we cannot guarantee absolute security.
6. GDPR (EU/EEA Users)¶
TrustStix Inc is a US-based company. This Service is operated from the United States and is not currently GDPR-compliant.
We do not offer a Data Processing Agreement (DPA). Personal data submitted by EU/EEA users is processed and stored in the United States, which may not have data protection laws equivalent to those in the EU.
If you are located in the EU or EEA, you may still use the Service, but you do so at your own discretion and risk. We cannot accommodate requests under GDPR (e.g. data portability, right to erasure under GDPR timelines) at this time.
We intend to address GDPR compliance as the service grows. If this is a requirement for your organization, please contact us before signing up.
7. CCPA (California Residents)¶
If you are a California resident, you have the right to:
- Know what personal information we collect and how it is used
- Request deletion of your personal information
- Opt out of the sale of personal information (we do not sell personal information)
To exercise these rights, contact us via the Contact page.
8. Account Deletion and Data Requests¶
You may delete your account at any time. Account deletion cancels your subscription (effective end of current billing period), removes your profile and stored preferences, and revokes all API keys. Deleting your account does not entitle you to a refund of unused Render Units or remaining subscription time.
To delete your account, use the Delete Account button in your account dashboard, or contact us at legal@agenticdecks.com if you are unable to access your account.
You may also contact us to:
- Access the personal information we hold about you
- Correct inaccurate information
- Ask questions about how your data is handled
Requests are processed within 30 days.
9. Children¶
The Service is not directed at children under 13. We do not knowingly collect personal information from children under 13.
10. Changes to This Policy¶
We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice on the website. The "Last updated" date at the top reflects the most recent revision.
11. Contact¶
For privacy questions or data requests, contact legal@agenticdecks.com or use the Contact page.