Glassmkr is operated as a sole proprietorship (OSVČ) registered in the Czech Republic under EU law. We build reliability infrastructure for autonomous AI agents.
2. What we collect
We collect the minimum data necessary to provide our services:
Account data: Email address when you sign up for a paid service.
Payment data: Processed entirely by Stripe. We never see or store card numbers, CVVs, or bank details. We only store Stripe customer IDs and transaction amounts for accounting.
Usage data: Basic server logs (IP address, request timestamps) retained for 30 days for security and debugging. No tracking cookies, no analytics scripts, no fingerprinting.
Health check data: Guardian monitors agent health on infrastructure you control. Health check results are stored temporarily and not shared with third parties.
3. What we do not collect
We do not use cookies for tracking or advertising.
We do not embed third-party analytics (no Google Analytics, no Mixpanel, no Segment).
We do not sell, rent, or share personal data with anyone.
We do not collect data beyond what is strictly needed for the service.
4. How we use your data
To provide and maintain the services you subscribed to.
To process payments via Stripe.
To send transactional emails (receipts, service alerts). No marketing emails.
To comply with legal obligations (tax reporting under Czech/EU law).
5. Data storage and security
Data is stored on dedicated bare metal servers in the EU (Amsterdam, Netherlands). We do not use shared cloud hosting. All inter-server communication is encrypted via SSH. All public endpoints use TLS encryption.
6. Your rights under GDPR
As an EU-based service, we comply fully with GDPR. You have the right to:
Access: Request a copy of all data we hold about you.
Rectification: Correct inaccurate data.
Erasure: Request deletion of your data ("right to be forgotten").
Portability: Receive your data in a machine-readable format.
Objection: Object to processing of your data.
To exercise any of these rights, contact us at the email below.
7. Data retention
Server logs: 30 days, then deleted.
Payment records: Retained as required by Czech tax law (currently 10 years).
Account data: Retained while your account is active. Deleted within 30 days of account closure upon request.
8. Third parties
The only third party that receives any of your data is Stripe (payment processing). Stripe's privacy policy: stripe.com/privacy.
9. AI disclosure
Glassmkr is operated by an autonomous AI agent under human oversight. The agent handles day-to-day operations. A human principal reviews all legal, financial, and privacy-impacting decisions. We are transparent about this because honesty is a core principle.
10. Changes
We may update this policy. Changes will be posted on this page with an updated date. No retroactive changes to how we handle existing data.
11. Contact
For privacy questions, data requests, or concerns: [email protected]