Skip to content
  • Apps
  • Roadmap
  • Pricing
  • Story
  • Diagnose
πŸ‡ΊπŸ‡ΈENπŸ‡»πŸ‡³VI
Start freeDiagnose

Legal

Privacy Policy

Last updated: April 21, 2026

Anby is an AI-native operating platform. To do that well we handle a lot of content your team produces β€” OKRs, meeting transcripts, decisions, knowledge. This page explains in plain language what we collect, why we need it, how long we keep it, and what you can do with it.

1. Information we collect

We only collect what we need to run the product. Broadly, that falls into three buckets:

  • Account information β€” name, email, workspace, role, password hash, and billing details when you subscribe. We collect this when you sign up or invite teammates.
  • Workspace content β€” everything you and your team create inside Anby: OKRs, meeting recordings and transcripts, knowledge base entries, decisions, action items, comments, integration data you connect (Jira, Slack, Google, etc.).
  • Usage and technical data β€” device information, IP address, browser, product analytics events (which features are used, error logs), and Anby Coin consumption logs.

We do not buy personal data from brokers, and we do not use tracking pixels from third-party advertisers.

2. How we use information

We use the information above to:

  • Provide and operate the product β€” store your content, run AI actions, deliver notifications, bill your workspace.
  • Keep the service safe β€” detect abuse, prevent fraud, comply with legal obligations.
  • Improve the product β€” aggregate analytics, debug errors, and understand which features actually help.
  • Communicate with you β€” service updates, security notices, product changelogs, and (if you opt in) occasional product marketing.

We do not train public or third-party AI models on your workspace content. Your team's content is used to serve your workspace β€” not to improve any model that benefits other customers without your consent.

3. AI processing and sub-processors

Anby's AI features run on large language model providers (currently Anthropic and OpenAI). When your team uses an AI action β€” for example asking God Brain a question or summarizing a meeting β€” relevant content is sent to these providers to generate the response. These providers are contractually bound to:

  • Not retain your content beyond what's needed to generate the response.
  • Not use your content to train their models.
  • Apply the same security standards as our own infrastructure.

We also use infrastructure providers for hosting (AWS), analytics (PostHog), email (Resend), and error monitoring (Sentry). A current list of sub-processors is available on request at privacy@anby.io.

4. Data retention

While your workspace is active, we keep your content as long as you want it. Deleting content from within Anby removes it from active systems immediately; encrypted backups are purged on a rolling 30-day schedule.

If your workspace is cancelled, we retain your data for 30 days in case you want to reactivate, then permanently delete it. You can request immediate deletion at any time.

Some aggregated, non-identifying analytics (e.g., "X% of teams use feature Y") may be kept indefinitely.

5. Data export and portability

You can export every piece of content in your workspace at any time via the Anby API or via our MCP server. No lock-in, no "enterprise upgrade" to get your own data back.

Workspace admins can also trigger a full workspace archive (JSON + attachments) from the Settings page. Large archives are delivered by email link within 24 hours.

6. Security

Our baseline:

  • All data in transit is encrypted via TLS 1.2+.
  • All data at rest is encrypted (AES-256).
  • Workspace data is isolated at the database-schema level per tenant.
  • Access to production systems is limited to engineers on duty, requires 2FA, and is audit-logged.
  • We run regular internal security reviews and respond to responsible-disclosure reports at security@anby.io.

No service is perfectly secure. If we ever detect a breach affecting your workspace, we'll notify you and your workspace admins without undue delay.

7. Your rights

Depending on where you live, you may have rights to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Export your data in a machine-readable format.
  • Delete your data.
  • Object to or restrict certain types of processing.

You can exercise any of these rights by writing to privacy@anby.io. We'll respond within 30 days. If you're a team member in a workspace you don't own, some requests may need to be coordinated with your workspace admin.

8. International transfers

Anby is operated globally. Your data may be processed in data centers outside your country. Where required by law (GDPR, UK data protection, etc.), we use standard contractual clauses and equivalent safeguards to protect international transfers.

9. Children's privacy

Anby is not directed to children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data about a child, please contact us and we'll delete it.

10. Changes to this policy

We may update this policy as the product evolves. Material changes (new categories of data, new sub-processors, significant changes to retention) will be announced via product in-app notification and/or email at least 14 days before they take effect. The "Last updated" date at the top of this page reflects the most recent revision.

Questions?

Write to us at privacy@anby.io. For general inquiries, hello@anby.io reaches a real human β€” usually same-day.

The AI brain for your organization. Built for modern teams.

Products

  • AI Meeting
  • OKR

Painpoints

  • Knowledge walks out
  • Strategy β‰  Monday
  • Data scattered
  • Tool fatigue
  • Self-diagnostic β†’

Modules

  • AI OKRs + Meetings
  • God Brain
  • HR Review & Culture
  • Autonomous Enterprise
  • Pricing

Resources

  • Our Story
  • FAQ
  • Roadmap
  • hello@anby.io
Β© 2026 Anby
PrivacyTerms