Privacy Policy
How Connexsus handles account data, integration secrets, and operational telemetry.
Effective date: February 15, 2026
1. Data We Process
Connexsus processes account metadata, MCP usage telemetry, and encrypted integration credentials required to operate your gateway. Connexsus does not use your integration credentials for model training.
2. Credential Handling
API credentials are encrypted using AES-GCM before storage. Access to key material is restricted to runtime services that require decryption for request forwarding.
3. Data Retention
Activity logs are retained for 7 days by default, after which automated cleanup removes expired records. Audit records for security and billing events may be retained for longer periods as needed for compliance.
4. Compliance Readiness
Connexsus maintains access logs, deployment traceability, and incident documentation workflows intended to support SOC 2 readiness initiatives.
5. Contact
For privacy requests or incident reports, contact support@connexsus.io.