Datenschutzerklärung
Zuletzt aktualisiert: 20. März 2026
AgentsRoom wird von Jean-Baptiste CHAUVIN herausgegeben. Der Schutz deiner persönlichen Daten hat Priorität.
1. Verantwortlicher
Jean-Baptiste CHAUVIN Kontakt: [email protected]
2. Erhobene Daten
Wenn du ein Konto erstellst, erheben wir: deinen Namen, deine E-Mail-Adresse und dein Passwort (verschlüsselt gespeichert). Keine weiteren personenbezogenen Daten werden erhoben. Dein Quellcode und deine Projekte verbleiben vollständig auf deinem Rechner.
3. Zweck der Verarbeitung
Deine Daten werden ausschließlich verwendet für: die Verwaltung deines Benutzerkontos, die Bereitstellung des Zugangs zu den Anwendungsfunktionen und den Versand dienstbezogener E-Mails (Passwortzurücksetzung, wichtige Benachrichtigungen).
4. Rechtsgrundlage
Die Datenverarbeitung basiert auf der Vertragserfüllung (Nutzung des Dienstes) und deiner Einwilligung.
5. Aufbewahrungsdauer
Deine Daten werden für die Dauer deiner Registrierung aufbewahrt. Wenn du dein Konto löschst, werden deine Daten innerhalb von 30 Tagen gelöscht.
6. Deine Rechte
Gemäß der GDPR hast du das Recht auf Zugang, Berichtigung, Löschung, Übertragbarkeit und Widerspruch gegen die Verarbeitung deiner Daten. Um diese Rechte auszuüben, kontaktiere uns unter: [email protected]
7. Hosting
Die Website und Daten werden von OVH SAS, 2 rue Kellermann, 59100 Roubaix, Frankreich gehostet.
8. Datenübertragungen
Deine Daten werden nicht außerhalb der Europäischen Union übertragen.
9. Audience measurement
To improve the product and detect regressions, we collect usage events across the website, the desktop app and the mobile app (pages viewed, screens opened, features used). This processing falls under the French CNIL "audience measurement" exemption and therefore does not require prior consent: • Your IP address is never stored. It is used on the fly to derive an approximate country and city and is then immediately discarded. • No project name, filename, prompt content or command ever leaves your machine. Anything potentially identifying is hashed locally before sending. • No cross-referencing with other services, no sharing with third parties, no advertising profiling. • Raw events are kept for 13 months maximum; derived data (sessions, aggregates) for 25 months maximum. • An anonymous identifier is generated locally on first launch to distinguish sessions from the same device. It cannot be traced back to your identity. • You can disable this measurement at any time under Settings: Privacy in the desktop and mobile apps; on the website, please email us to request opt-out.
Chrome Extension: AgentsRoom Feedback
This section applies specifically to the "AgentsRoom Feedback" Chrome extension (item ID molooephodmdppiakonadbhihdfbajhg). It details the collection, processing, storage and sharing of data by the extension. Every submission is triggered explicitly by the user: the extension never captures data in the background, never logs browsing history, and only runs after a user action.
Data the extension collects
The extension processes only what is strictly needed to file your feedback: • Account credentials: the email and password typed on the sign-in form, sent over HTTPS to agentsroom.dev to obtain a session token. • Session token: a short-lived bearer token returned by the server, stored locally so you do not sign in on every submission. • Optional remembered password: stored locally only if you tick "Remember password on this device". Off by default. Cleared when you untick the box or sign out. • Page context, captured only at submission time: current tab URL, page title, any text you have selected, and (in "Point on page" mode) the outer HTML of the clicked element (truncated to 1.5 KB) plus a CSS selector. • Content you type: ticket title, description, type, and any screenshot file you deliberately attach. • Local UI state: last used public backlog slug, list of slugs you explicitly joined, UI preferences.
Data the extension does NOT collect
No browsing history, no keystrokes, no clipboard content, no form inputs on other sites, no analytics, no advertising identifiers, no telemetry, no fingerprinting, no device IDs. The extension does not run on pages you do not interact with and does not read content from pages you have not opened the popup or picker on.
How the data is processed
• Authentication: credentials are verified against agentsroom.dev and exchanged for a session token. Plaintext passwords are never stored server-side beyond the standard salted hash in the user account table. • Ticket submission: the payload (title, description, type, URL, selection, HTML snippet, selector, optional image) is sent to the agentsroom.dev API and written to your backlog database. • AI-assisted title generation ("Point on page" mode only): the description is forwarded from the agentsroom.dev backend to Anthropic's Claude API to generate a short title. Only your description is sent. You can opt out by writing the title yourself. • No automated decision-making, no profiling, no behavioral analytics.
How and where the data is stored
Local storage (on your device): the extension uses chrome.storage.local, sandboxed by Chrome to this extension ID and not readable by other extensions or websites. It holds the session token, your email, the optional remembered password, your last used public slug, your joined slugs, and UI preferences. chrome.storage.local is not encrypted at rest: do not tick "Remember password on this device" on shared computers. Server-side storage: tickets, user accounts and optional screenshots are stored in a MariaDB database hosted by OVH SAS, 2 rue Kellermann, 59100 Roubaix, France (European Union). Screenshots are saved as files on the same infrastructure. No data is transferred outside the European Union.
How the data is shared
We do not sell your data, we do not share it for advertising, and we do not use third-party analytics or tracking. Recipients are strictly limited to: • OVH SAS: infrastructure provider acting as processor under GDPR Art. 28. No access to ticket content. • Anthropic PBC: invoked only for the optional title-generation call. Only the description text you wrote is sent, for the sole purpose of generating a ticket title. Avoidable by writing the title manually. • Public-backlog recipients: when you submit to a public backlog, the ticket is visible to the owners and collaborators of that backlog, which is the intended behavior. Your email is attached so the backlog owner can reply. • Legal authorities: only if compelled by a valid legal order under French or EU law, limited to what the law strictly requires.
Retention, user controls and rights
Locally stored data persists until you sign out, clear the extension's storage, or uninstall the extension. Server-side tickets are retained for the lifetime of the associated backlog. Account data is retained during your registration and deleted within 30 days of account deletion. You can sign out at any time (deletes the token and remembered password) or uninstall the extension (removes all local storage). To exercise your GDPR rights (access, rectification, deletion, portability, restriction, objection) or to lodge a complaint, contact [email protected] or the CNIL (www.cnil.fr).