Legal · Privacy

Privacy Policy

Last updated: 5 July 2026 · Operated by AgenTorQ (ady@opnyx.com)

AgenTorQ is an agentic AI platform available two ways: a Salesforce managed package that runs on-platform inside your own org, and a standalone web app that runs largely in your browser. This policy explains what data we access, how it is used, who processes it, and the strong limits we place on it. The short version: your connected data is processed at the moment you ask and sent only to the AI model you choose — we do not sell it, we do not use it to train models, and no human at AgenTorQ reads it.

1. Information we access

Only when you sign in, connect a source, or provide a key, AgenTorQ accesses:

We do not access any source you have not connected, and you can disconnect any source at any time from the Connectors tab.

2. How we use it

3. Your keys, tokens & storage

4. Third parties & subprocessors

We rely on a small set of processors to run the service. We do not sell your data to any of them or to anyone else.

ProviderPurposeData involved
AI model providersGenerating answers on the model you choose — OpenAI, Azure OpenAI, Google (Gemini), DeepSeek, Mistral, Cerebras, Perplexity, SambaNova, MiniMax, Groq, xAI (Grok), HuggingFace, AI21, self-hosted Ollama, or a generic OpenAI-compatible endpoint.The (masked) prompt you send, including the connected data needed to answer.
NangoConnector & OAuth broker for third-party app integrations.OAuth tokens and the API calls made to the apps you connect.
cogneePer-user memory and semantic recall, and server-side web/news search.Workmate memory items and search queries, scoped to your account.
Firebase / Auth0Authentication and sign-in.Your email, name and avatar; auth session.
here.nowHosting of the web app and static assets.Standard request/hosting metadata.

When you add a custom MCP connector, the MCP server you point to is a third party you choose; the agent calls its tools with your approval, under that server's own terms.

5. Google API Services — Limited Use disclosure

AgenTorQ's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. We do not use Google user data for advertising, and we do not use it to train generalized AI/ML models.

6. What we do NOT do

7. Data retention & deletion

Connected data is fetched to answer and is not retained as a separate copy on our servers. Tokens and uploaded documents live in your browser (standalone) or your org (package). Workmate memory is retained until you clear it. To delete your data you can:

8. Your rights

Depending on your location, you may have rights to access, correct, export or delete your personal data, and to object to or restrict certain processing. To exercise them, contact ady@opnyx.com. Because we store minimal data and process connected data live, most requests are satisfied by disconnecting a source or clearing your storage.

9. Security

Authorization uses each provider's standard OAuth 2.0 / 2.1 flow (with PKCE for MCP connectors). API keys and secrets are encrypted and scoped to your account. All API calls are made over HTTPS. In the managed package, the agent runs on-platform in USER_MODE, honoring your Salesforce field-level security and sharing model, with named PII masking and SOQL/DML guards.

10. Children

AgenTorQ is a business tool and is not directed to children under 16. We do not knowingly collect their data.

11. Changes

We may update this policy; we will change the “Last updated” date above, and material changes will be reflected here. Continued use after an update constitutes acceptance.

12. Contact

Questions about this policy or your data: ady@opnyx.com. See also our Terms of Service.