Privacy Policy

1. Who We Are

Founders.sh is operated by Geonimo LLC. When we say “we,” “us,” or “our,” we mean Geonimo LLC. When we say “Service,” we mean the founders.sh platform, website, APIs, and any related services.

2. Information We Collect

2.1 Account Information

When you create an account, we collect your email address and authentication credentials. If you sign up through a third-party provider (e.g., Google, GitHub), we receive your name, email, and profile picture from that provider.

2.2 Billing Information

Payment processing is handled by Stripe. We do not store your full credit card number, CVV, or bank account details on our servers. Stripe provides us with a token, card brand, last four digits, and expiration date for display purposes only.

2.3 Agent & Conversation Data

When you use our AI agent service, your messages, agent configurations, and tool outputs are processed to deliver the Service. Conversation data is stored in your dedicated container instance and in our database for session continuity. We do not use your conversation data to train AI models.

2.4 Usage Data

We collect anonymized usage metrics including message counts, token consumption, feature usage, and error logs. This data helps us improve performance, debug issues, and plan capacity.

2.5 Device & Browser Data

We automatically collect your IP address, browser type, operating system, and referring URL when you visit our website. This is standard web server logging and is used for security and analytics.

3. How We Use Your Information

• +Provide, maintain, and improve the Service
• +Process payments and manage your subscription
• +Deploy and manage your dedicated AI agent containers
• +Send transactional emails (account verification, billing receipts, service alerts)
• +Respond to support requests
• +Detect, prevent, and address fraud, abuse, and security incidents
• +Comply with legal obligations

We do not sell, rent, or share your personal information with third parties for their marketing purposes.

4. Third-Party Services

We use the following third-party services to operate:

• +Supabase — authentication and database hosting
• +Stripe — payment processing
• +Anthropic, OpenAI, Google — AI model providers (your prompts are sent to the provider you select)
• +Telegram, WhatsApp, Discord, Slack — messaging channels (when you connect them)

Each third-party service has its own privacy policy. We encourage you to review them. We only share the minimum data necessary for each service to function.

5. Data Storage & Security

Your data is stored on secured servers. Each user receives a dedicated, isolated container for their AI agents. We implement industry-standard security measures including:

• +Encryption in transit (TLS/HTTPS for all connections)
• +Encryption at rest for database storage
• +Per-user container isolation — your agents run in a sandboxed environment
• +Token-based authentication with secure session management
• +Regular security audits and dependency updates

No system is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials and API keys.

6. Data Retention

We retain your account data for as long as your account is active. Conversation data within your container is retained for the duration of your subscription. When you delete your account or cancel your subscription:

• +Your container and all agent data is destroyed within 30 days
• +Your account information is deleted from our database within 30 days
• +Billing records are retained for 7 years as required by law
• +Anonymized usage metrics may be retained indefinitely

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• +Access the personal data we hold about you
• +Correct inaccurate data
• +Request deletion of your data
• +Export your data in a portable format
• +Object to or restrict certain processing
• +Withdraw consent at any time

To exercise any of these rights, contact us at help@founders.sh. We will respond within 30 days.

8. Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking cookies or advertising cookies. Our analytics are privacy-focused and do not track individual users across websites.

9. Children’s Privacy

The Service is not directed to individuals under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, contact us and we will delete it promptly.

10. International Data Transfers

Our servers are located in the United States. If you access the Service from outside the US, your data will be transferred to and processed in the US. By using the Service, you consent to this transfer.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the “Last updated” date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact

For privacy-related questions or requests, contact us at: