Book a discovery call

Privacy Policy

Last updated: May 2026

Velocigent (“Velocigent”, “we”, “us”, or “our”) is a product of Synapse Studios. This Privacy Policy explains what information we collect when you use the Velocigent platform and website, how we use and share it, and the rights and choices you have. It applies to the Velocigent platform, the velocigent.com website, and any related services that link to this policy.

By using Velocigent you agree to the practices described here. For information about how we secure our systems, see our Security page. For the terms that govern use of the service, see our Terms of Use.

Information We Collect

Account Information

When you or your organization signs up for Velocigent, we collect information needed to create and administer your account, including your name, work email address, organization, role, and authentication credentials. If you sign in through a third-party identity provider, we receive the basic profile information that provider shares with us.

Customer Content

Velocigent processes content you and your team submit to the service, including prompts, instructions, agent definitions, playbooks, documents, files, and other inputs (“Customer Content”). We also store outputs generated by the service in response to your requests. Customer Content is processed to deliver the service to you. It is not used to train generalized AI or machine learning models. See “AI Processing” below for more detail.

Connected Services

When you connect a third-party service such as Google Workspace, we receive data from that service according to the permissions you grant. See “Connected Services: Google Workspace” below for the full detail on Google data.

Usage Data

We automatically collect technical information when you use the service or visit our website, including IP address, browser and device type, operating system, referring URLs, pages visited, features used, timestamps, and similar diagnostic data. We use this to operate, secure, and improve the service.

Cookies and Similar Technologies

We use cookies and similar technologies to keep you signed in, remember your preferences, secure the service, and understand how the service is used. You can control cookies through your browser settings; disabling them may affect the functionality of the service.

How We Use Information

We use the information described above to:

  • Provide, operate, maintain, and improve the service;
  • Authenticate users, manage accounts, and provide customer support;
  • Process AI requests you make through the service and return results to you;
  • Monitor and protect the security and integrity of the service, including detecting and preventing fraud, abuse, and unauthorized access;
  • Communicate with you about the service, including service announcements, security notices, and responses to your requests;
  • Comply with legal obligations and enforce our agreements.

AI Processing

Velocigent uses large language models (LLMs) provided by third-party AI vendors to power agent functionality. When you interact with an agent, Customer Content and content from connected services may be sent to our LLM provider so the model can respond to your request.

We do not use Customer Content to train AI or machine learning models. We contract with our LLM providers so that data routed through Velocigent is not used by those providers to train generalized models.

AI-generated output can be incorrect, incomplete, or inappropriate for a given use case. You are responsible for reviewing and validating outputs before relying on them.

How We Share Information

Service Providers and Sub-Processors

We share information with a limited set of vendors that help us operate the service. These providers are contractually obligated to handle information consistent with this policy.

  • Anthropic: LLM provider used to power agent functionality.
  • OpenAI: additional LLM provider used to power agent functionality.
  • Amazon Web Services (AWS): cloud hosting, storage, and managed infrastructure used to run the service.
  • PostHog: product analytics used to understand how the service is used and to improve it.

When you or your organization connects an optional third-party integration through the service (for example, HubSpot or Gumloop), data you direct through that integration is transmitted to and processed by that provider on your behalf, in addition to the sub-processors above.

Within Your Organization

Velocigent is a team product. Administrators of your organization can see and manage account-level information, including users, roles, and configured agents. Customer Content is shared within your organization according to the access controls and settings configured by your administrators.

Legal and Safety

We may disclose information when we believe in good faith it is required to comply with a legal obligation, respond to lawful requests from public authorities, enforce our terms, or protect the rights, property, or safety of Velocigent, our users, or others.

Business Transfers

If Velocigent or Synapse Studios is involved in a merger, acquisition, financing, or sale of assets, information may be transferred as part of that transaction. We will provide notice before information becomes subject to a materially different privacy policy.

No Sale of Personal Information

We do not sell personal information. We do not share personal information for cross-context behavioral advertising.

Connected Services: Google Workspace

Velocigent integrates with Google Workspace APIs to enable AI-assisted automation of your documents, files, spreadsheets, and email. The sections below describe exactly what data we access, how we use it, and how it is stored and shared for each Google API scope we request.

Google Docs (https://www.googleapis.com/auth/documents)

What we access: Full document content including text, formatting, tables, links, headers, lists, and document structure, as well as the document title, ID, and URL.

How we use it: Users can ask the AI assistant to read and summarize Google Docs content. The app can create new Google Docs from AI-generated content, edit documents (find/replace text, replace sections, or overwrite entire content) based on user instructions, and copy existing Google Docs templates to create new documents.

Google Drive (https://www.googleapis.com/auth/drive.file)

What we access: File and folder metadata (names, IDs, MIME types, parent folders) and the ability to create files in your Drive.

How we use it: Users can browse their Google Drive to find documents. When creating new Google Docs, the app uploads DOCX files and converts them to Google Docs format. The app can copy documents to specific folders and checks file MIME types before operating on them (e.g., confirming a file is a spreadsheet before adding rows).

Google Sheets (via drive.file scope)

What we access: Spreadsheet metadata including sheet names and column headings.

How we use it: The app reads sheet names and column headings to understand spreadsheet structure. Users can instruct the AI assistant to add rows of data to existing spreadsheets.

Gmail (https://www.googleapis.com/auth/gmail.send)

What we access: Send-only access – the app cannot read, list, or modify your existing emails.

How we use it: Users can instruct the AI assistant to compose and send emails on their behalf. The app converts plain text to HTML format and supports optional call-to-action buttons. After sending, the app receives only the message ID, thread ID, and label IDs for confirmation purposes.

Google User Data Handling

When you interact with Google data through the AI assistant, document content, sheet data, file listings, and email content are sent to our LLM provider for processing as part of the AI conversation. This data is sent only to fulfill your explicit request (e.g., “summarize this document” or “send an email to...”).

We do not use Google Workspace API data to develop, improve, or train generalized AI and/or ML models. Data obtained through Google Workspace APIs is not transferred to third-party AI tools for the purpose of creating generalized AI/ML models. Google OAuth tokens are never included in LLM requests.

Google user data is not shared with advertising networks, analytics services, or any other third parties beyond the LLM processing described above. Each user’s Google data is kept private – no other users can access it, even within the same organization.

Data Retention

We retain personal information for as long as needed to provide the service, comply with our legal obligations, resolve disputes, and enforce our agreements. Customer Content is retained while your organization’s account is active and according to your organization’s configuration. After account termination, we delete or anonymize Customer Content, subject to legal hold and backup retention windows. To request deletion of an account, an organization, or specific Customer Content, contact us at privacy@velocigent.com.

LLM call logs, which may contain Customer Content from tool results, are stored in our database for cost tracking, audit, and debugging purposes. You can revoke Velocigent’s access to your Google account at any time through your Google Account settings, which invalidates all stored tokens immediately.

Security

We apply administrative, technical, and physical safeguards to protect your information, including encryption in transit using TLS and encryption at rest in our managed cloud infrastructure. Synapse Studios maintains SOC 2 certification; for current details see our Security page and the Synapse Studios Trust Center. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

International Data Transfers

Velocigent is operated from the United States, and we and our sub-processors may process information in the United States and other jurisdictions. If you access the service from outside the United States, you understand that your information may be transferred to and processed in countries whose data protection laws may differ from those of your home jurisdiction.

Your Privacy Rights

General Rights

You may request access to, correction of, or deletion of the personal information we hold about you. If your information was provided to us by your employer or another organization through its use of the service, we may direct your request to that organization for handling.

European Economic Area, United Kingdom, and Switzerland

If you are located in the EEA, UK, or Switzerland, you have rights under the GDPR and equivalent laws, including the right to access, rectify, erase, restrict, or object to processing of your personal data, and the right to data portability. You may also lodge a complaint with your local supervisory authority.

California

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) as amended by the CPRA, including the right to know what personal information we collect, to request deletion, to correct inaccurate information, and to opt out of any sale or sharing of personal information for cross-context behavioral advertising (we do neither). We will not discriminate against you for exercising these rights.

Children’s Privacy

Velocigent is not directed to children under 18 and we do not knowingly collect personal information from anyone under 18. If we learn that we have collected personal information from a child, we will delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will revise the “Last updated” date at the top of this page and, where appropriate, provide additional notice (such as by email or an in-product message). Your continued use of the service after a change takes effect constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or how we handle your data, please contact us at privacy@velocigent.com.