ga

Agent

GA

 Back to home

Privacy Policy

Last Updated: March 4, 2026

1. Introduction

Welcome to Agent GA ("we," "our," or "us"). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and share information when you use our website (https://agent-ga.dev/) and our MCP services.

2. Information We Collect

  • Account Information: When you register, we collect your name, email address, and password.
  • Contact Information: If you contact us via our support forms, we collect your name, email address, the content of your message, and technical identifiers such as your IP address and browser user agent to help with support and prevent abuse.
  • Payment Information: Our payments are processed by Stripe. We do not store your full credit card details; we only retain limited information provided by Stripe (such as the last four digits of your payment method) to help you identify your subscription.
  • Integration Account Information: When you connect a third-party service (like Google), we collect your email address or account identifier via the authorized scope to verify your identity and associate your connected properties with your account.
  • Third-Party Platform Data: To provide our service, we access data from your connected integrations (e.g., Google Analytics 4 properties and reports) via their respective APIs. This includes property metadata and analytical data required to fulfill your queries.

3. How We Use Your Information

We use your information to:

  • Provide and maintain the Service (e.g., executing data queries for your AI agents).
  • Google Account Identification: We use your Google email address to display and identify which Google account you have authorized for use with the Service.
  • Google Analytics Access: We use the analytics.readonly scope to fetch read-only reporting data from authorized Google Analytics accounts, allowing web agencies to use AI-driven workflows to monitor client performance and automate data-driven reporting.
  • Process subscription payments and send invoices.
  • Improve our functionality and user experience.

4. Google API Services User Data Policy

Agent GA’s use and transfer to any other app of information received from Google APIs adheres to the Google API Services User Data Policy , including the Limited Use requirements.

Agent GA does not permit human access to Google user data except:

  • with your explicit consent for a specific request or support interaction,
  • when required for security purposes (such as investigating abuse or fraud),
  • to comply with applicable law, or
  • for limited internal operations such as debugging, service reliability, or performance monitoring.

Any such access is restricted to the minimum data necessary and, where applicable, is performed on aggregated or anonymized data.

Agent GA does not use Google user data for advertising, profiling, or training generalized machine learning models.

5. Data Sharing & Disclosure

We do not sell your personal data or your Google Analytics data. We share data only in the following circumstances:

  • With AI Models (User-Directed): Data is sent to the AI model (e.g., Gemini, Claude) only when you specifically prompt the agent to query your analytics.
  • Service Providers: We use trusted third-party providers like Stripe (for payments) and DigitalOcean/AWS (for hosting).
  • Legal Requirements: If required by law or to protect our rights.

6. Data Retention

We retain your account information (email, subscription status) as long as your account is active.

We do not collect or store your Google Analytics report data. Our Service acts as a secure pass-through: data is fetched in real-time from the Google Analytics API to answer your specific query and is never persisted or hosted on our servers.

7. Data Protection Mechanisms for Sensitive Data

We take the security of your data seriously and implement robust technical and organizational measures to protect your personal and sensitive information.

  • Encryption in Transit: All data transmitted between your device and our servers, as well as between our servers and third-party APIs (such as integration partners and payment processors), is encrypted using strong TLS (Transport Layer Security) protocols.
  • Encryption at Rest: Sensitive data, specifically OAuth tokens (access and refresh tokens) for connected integrations, is stored in our database using AES-256 encryption. This ensures that even in the unlikely event of a database compromise, these tokens remain unreadable.
  • Strict Access Controls: Access to production servers and databases is restricted to authorized personnel only. We utilize multi-factor authentication (MFA) and least-privilege principles to limit internal access.
  • Ephemeral Data Processing: As mentioned in our Data Retention policy, we do not store the actual third-party platform data (such as analytics reports or customer lists). It is fetched on-demand and passed through to you, minimizing the risk of sensitive data exposure.

8. Your Rights

We provide the same high standard of privacy rights to all our users, regardless of their location. You have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Correction: You can request that we correct any inaccurate or incomplete personal data.
  • Right to Erasure ("Right to be Forgotten"): You can request that we delete your personal data.

You may exercise these rights by deleting your account at any time directly from your dashboard, which will revoke our access to your connected integrations and remove your personal data from our active systems. Alternatively, you may contact us at support@agent-ga.dev to request data access, correction, or deletion.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. If the changes are significant, we will provide a more prominent notice (including, for certain services, email notification of privacy policy changes).

10. Contact Us

If you have questions about this Privacy Policy, please contact us at support@agent-ga.dev.