CapySuiteERP

Privacy

Privacy Policy

Last updated: May 8, 2026

This policy describes the data CapySuite handles when teams use CapySuite, OpenClaw, connected chat surfaces, and read-only data integrations.

The short version: we use data to provide the product, run requested integrations, secure workspaces, support billing, and improve reliability. We do not sell workspace data.

What this covers

This Privacy Policy explains how CapySuite handles data for CapySuite, OpenClaw, and related services. It applies when you visit our websites, join a waitlist, sign in, connect integrations, use chat-assisted features, or pay for a subscription.

Data we collect

  • Account data such as name, email address, organization, role, and sign-in/session metadata.
  • Workspace data such as customers, suppliers, products, orders, inventory, documents, files, imports, reports, and operational settings.
  • Connected integration data from services you authorize, such as file storage, email, calendars, accounting systems, chat platforms, and payment providers.
  • Chat and request data needed to receive messages, route requests, answer questions, and keep safety or audit records.
  • Billing data such as Stripe customer IDs, subscription status, checkout references, and invoice/payment event metadata. We do not store full card numbers.
  • Usage, device, log, diagnostic, and security data needed to operate and protect the service.

How we use data

  • Provide, secure, maintain, and improve the service.
  • Authenticate users, manage organizations, and enforce workspace permissions.
  • Connect approved integrations and perform requested read, search, summary, import, reconciliation, or workflow actions.
  • Generate AI-assisted search results, summaries, drafts, classifications, and recommendations where the product uses AI.
  • Process payments, trials, reminders, subscription status, and billing support.
  • Respond to support requests, investigate issues, prevent abuse, and comply with legal obligations.

Read-only connectors

Where a connector is marked read-only, CapySuite uses it to retrieve, search, and summarize authorized data. We do not use read-only connectors to edit, delete, share, or change permissions in the source service.

Some providers may still require broad read scopes to make search and answer features work. You should connect only accounts and data sources that your organization is comfortable processing through CapySuite.

Google user data

If you connect a Google account, CapySuite may access Google Drive files, Gmail messages, Google Calendar events, related metadata, and account identity data only to provide user-facing features you request, such as search, summaries, answers, and workspace context.

CapySuite does not sell Google user data, use it for advertising, determine creditworthiness, or transfer it for unrelated purposes. We do not use Google user data to train general AI models.

Google user data may be shared only with service providers needed to operate the requested feature, such as infrastructure, security, logging, and AI processing providers acting on our behalf and under applicable confidentiality or processing obligations.

AI processing

When AI features are used, relevant prompts, snippets, files, messages, metadata, and workspace context may be processed by model providers or infrastructure providers we configure. We aim to send the minimum context needed for the requested feature.

Do not use AI output as the sole basis for legal, accounting, tax, payment, employment, safety, or other high-impact decisions without human review.

Sharing data

We do not sell your workspace data. We share data only as needed to run the service, follow your instructions, use connected providers, process payments, protect the service, or comply with law.

  • Infrastructure and hosting providers.
  • Integration providers you connect, such as Microsoft, Google, Xero, WhatsApp, Stripe, or similar services.
  • AI/model providers used by enabled AI features.
  • Email, analytics, logging, monitoring, and support providers.
  • Professional advisers, authorities, or counterparties where required by law, security, or dispute handling.

Retention & deletion

We keep account, workspace, billing, and integration data while needed to provide the service, meet legal obligations, resolve disputes, maintain security, and operate backups. Trial or unpaid workspace data may be scheduled for deletion after the grace period shown in the product.

You may request deletion or export support by contacting us. Some records may remain for a limited time in backups, logs, billing records, audit records, or legal compliance archives.

Security

We use technical and organizational safeguards such as access controls, least-privilege integration design, encrypted secrets where supported, environment separation, and operational monitoring. No system is perfectly secure, so you should use strong account controls and notify us if you suspect unauthorized access.

International processing

CapySuite may process and store data in countries where we, our infrastructure providers, or connected service providers operate. Those countries may have data protection laws different from yours.

Your choices

  • You can choose which integrations to connect and can disconnect them when you no longer want the service to use them.
  • You can ask us to correct, export, or delete personal data, subject to identity checks, legal limits, and product constraints.
  • You can opt out of non-essential communications, while still receiving service, security, billing, or legal notices.

Children

CapySuite is a business product and is not intended for children.

Changes

We may update this policy as the product, providers, or legal requirements change. If a change is material, we will take reasonable steps to notify affected users or administrators.

Contact

Questions or privacy requests can be sent to hello@capysuite.com.