Privacy

What we collect

• Account info — your name, email, profile photo, and password are managed by our auth provider (Clerk). We never see or store your password.
• Workspace content — skills you compile, runs you execute, organizations you belong to, billing transactions, audit entries for sensitive actions.
• Connected-tool content — when you authorize Slack, Google Drive, Gmail, Notion, or Jira, we ingest and embed the content you grant access to so your skills can search it. OAuth tokens are encrypted at rest with AES-256-GCM.
• Operational telemetry — request IPs, user agents, and structured event logs (skill runs, payouts, errors) so we can run, debug, and bill the service.

How we use it

• Run the product you signed up for.
• Bill your account through Stripe and pay marketplace creators their share.
• Improve reliability and performance through aggregate metrics.
• Respond when you contact support.

We do not train models on your content, and we do not sell your data.

Subprocessors

• Cloudflare — Worker hosting, KV/R2 storage, Hyperdrive, Analytics Engine.
• Supabase — Postgres database (skills, runs, users, billing, audit log).
• Anthropic — LLM inference for skill compilation and execution.
• Stripe — billing (credits + Pro seats) and marketplace creator payouts via Stripe Connect.
• Clerk — authentication and user management.
• OAuth identity providers — Slack, Google, Notion, Atlassian, when you choose to connect them.
• ElevenLabs — pre-baked narration on the marketing page only; no user content is sent to them.

The full mapping of subprocessors to controls and data flows lives in our compliance summary at docs/COMPLIANCE.md.

Cookies and storage

• Clerk sets session cookies for authentication. These are essential and not used for tracking.
• We use localStorage for theme preferences and to persist the in-progress canvas graph between visits.
• No advertising trackers or third-party analytics SDKs.

Your rights

You can edit or delete your account at any time from the workspace dock (Account → Security in Clerk's panel, or the explicit “Delete account” button). Deletion fires a webhook that cascades through Postgres, removing your user row, runs, and related records. Published marketplace skills are orphaned (still runnable, but un-attributable) rather than deleted, so other users' agents don't break.

If you're in the EU, UK, or California, you have additional rights to access, correct, or export your data. Email us at hello@newhire.work.

Retention

We keep operational records (runs, audit log, billing transactions) while your account is active. On account deletion, we retain only the minimum financial records required by law. Cloudflare keeps short-lived edge logs for operational purposes.

Don't paste secrets

New Hire is in beta. Please don't paste credentials, API keys, or other sensitive information into prompts unless you explicitly intend the agent to use them.

Children

New Hire is not intended for users under 13. We do not knowingly collect data from anyone under that age.

Changes

Material changes will be announced in-app and by email at least 30 days before they take effect.

Contact

Questions or requests: hello@newhire.work.

See also: Terms of Service.