BETA

Legal

Privacy Policy

How KeeperHub collects, uses, and protects your data.

Last updated March 2026
01

Introduction

KeeperHub ("we," "our," or "us") operates the KeeperHub platform, including the web application at app.keeperhub.com, the marketing site at keeperhub.com, and related services (collectively, the "Service"). This Privacy Policy explains how we collect, use, store, and protect your information when you use the Service.

By using KeeperHub, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

02

Information We Collect

Account Information

Email address, display name, and authentication credentials. If you sign in through a third-party OAuth provider, we receive a limited profile (typically email and name).

Workflow Configurations

Workflow definitions including trigger configurations, action steps, conditional logic, and parameters. Necessary to execute your automations.

Execution Logs

Timestamps, step-level status, error messages, and summary outputs. These allow you to audit and debug your automations.

Usage & Analytics

Page views, feature usage patterns, browser type, OS, and approximate location (from IP). IP addresses are not stored in long-term analytics.

03

OAuth Authentication & Token Handling

KeeperHub supports OAuth-based authentication for connecting third-party services to your workflows. When you authorize a third-party connection:

  • Tokens are stored server-side, encrypted at rest using AES-256.
  • Tokens are never exposed to the client-side application or included in API responses.
  • Refresh tokens maintain connections without re-authentication.
  • Revoke any connection from your account settings, which immediately deletes stored tokens.
04

API Keys & Secrets

Workflow configurations may reference API keys, RPC endpoints, or other secrets:

  • Stored as encrypted environment variables, separate from workflow data.
  • Decrypted only at execution time in isolated server-side runtimes.
  • Never transmitted to third parties, logged in outputs, or included in analytics.
  • Rotate or delete stored secrets at any time from the platform.
05

MCP Server Interaction

KeeperHub exposes a Model Context Protocol (MCP) endpoint for AI assistants and development tools to interact with your workflows:

  • All requests authenticated using session-based or token-based credentials.
  • Scoped to your account and organization. No cross-tenant access.
  • Data includes workflow schemas, execution commands, and status responses. No credentials in responses.
  • All traffic encrypted in transit using TLS 1.2 or higher.
06

Third-Party Services

We use the following third-party services:

Google Analytics -- Page views, session duration, and device information for understanding usage.

Help Scout -- Customer support. Your email and message content are processed when you contact us.

Cloudflare -- CDN, DDoS protection, and DNS. Processes request metadata (IP, headers) for traffic routing.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

07

Data Retention

We retain data for as long as your account is active. Specific periods:

Data TypeRetention
Account dataUntil account deletion
Workflow configurationsUntil workflow or account deletion
Execution logs90 days, then purged
Analytics14 months (Google Analytics)
08

Your Rights & Data Deletion

You have the right to:

Access

Request a copy of the personal data we hold about you.

Correct

Update inaccurate or incomplete personal information.

Delete

Request deletion of your account and all data within 30 days.

Export

Machine-readable export of workflows and account data.

Restrict

Limit processing of your data under certain circumstances.

Contact [email protected] to exercise these rights. We respond within 30 days.

09

Security

Industry-standard security measures protect your data:

  • Encryption at rest (AES-256) for all sensitive data including credentials and API keys.
  • Encryption in transit (TLS 1.2+) for all communications between your browser and our servers.
  • Role-based access controls and organization-level data isolation.
  • Regular security audits and dependency vulnerability scanning.

No method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

10

GDPR Compliance

European Economic Area

EEA residents have additional rights under the GDPR:

  • Legal basis -- contractual necessity, legitimate interest, and consent.
  • Data portability -- request data in a structured, machine-readable format.
  • Right to object -- object to processing based on legitimate interest at any time.
  • Supervisory authority -- lodge a complaint with your local data protection authority.
11

CCPA Compliance

California

California residents have rights under the CCPA:

  • Right to know -- request details about collected personal information.
  • Right to delete -- request deletion, subject to certain exceptions.
  • Non-discrimination -- no discrimination for exercising your rights.
  • No sale -- we do not sell personal information to third parties.
12

Cookies

We use cookies for authentication and analytics:

Essential

Required for authentication and session management. Cannot be disabled.

Analytics

Google Analytics for usage patterns. Opt out via browser controls or the GA opt-out extension.

13

Changes to This Policy

We may update this policy from time to time. Material changes are posted here with an updated date. For significant changes, we may send an email notification. Continued use after changes constitutes acceptance.

14

Contact Us

Questions about this policy or our data practices:

KeeperHub

Workflow automation platform

[email protected]keeperhub.com
KeeperHubJoin our Discord

2026 KeeperHub. All rights reserved.

All systems operational