Effective Date: March 7, 2026
Digital Mind ("we", "us", "our") operates the Digital Mind platform and related services. This Privacy Policy explains how we handle information when you interact with our services, including API integrations and OAuth flows.
We collect minimal data necessary to operate the platform: authentication tokens (never passwords), usage metadata, logs for debugging, and configuration you provide. For OAuth integrations (e.g., Google, GitHub), we access only scopes you explicitly authorize.
Data is used solely to deliver GitOps automation, observability, policy enforcement, and platform stability. We do not sell data or use it for marketing.
We implement encryption at rest/transit, least-privilege access, regular audits, and secure container images (Chainguard). Data is processed in secure Kubernetes clusters.
We retain logs and metadata as required for compliance/operations (typically 90-365 days), or until you request deletion where applicable.
Contact privacy@digitalmind.my for data access, correction, or deletion requests (subject to GDPR/CCPA/etc.).
We rely on trusted providers (Kubernetes, ArgoCD, cert-manager, etc.) with their own policies.
We may update this policy; continued use constitutes acceptance.