Legal

Privacy Policy

Last updated: July 3, 2026

This policy explains what data Koncrate processes and how it is used.

1. Data we collect

We process account profile data, workspace metadata, plugin install state, audit logs, and billing-related references required to operate the platform.

2. How data is used

Data is used to authenticate users, enforce policy, route tool calls, meter usage, process billing events, and provide support.

3. Payment processing

Checkout and payment events are handled by third-party processors such as Paddle. Koncrate stores only the minimum references needed for reconciliation.

4. Paddle as Merchant of Record

When you purchase credit packs on Koncrate, Paddle acts as our payment processor and Merchant of Record for checkout. Paddle collects payment details, issues receipts, and handles applicable sales tax and invoicing. Koncrate receives only the transaction references needed to credit your workspace.

5. Security controls

Koncrate applies permission checks, scoped credentials, confirmation gates, and audit logging at the gateway layer.

6. Data retention

Operational and audit data is retained according to platform policy and legal obligations.

7. Your rights

You may request access, correction, or deletion of personal data as allowed by applicable law. Contact aperio@koncrate.com.