Ordo Ordo

Privacy Policy

Last Updated: February 9, 2026

1. Introduction

Welcome to Ordo ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI agent platform, website, and related services (collectively, the "Service").

By accessing or using Ordo, you agree to the terms of this Privacy Policy. If you do not agree with the terms of this policy, please do not access the Service.

2. Information We Collect

We collect information that you provide strictly for the purpose of running your AI agents.

Account Information

  • Identity Data: Name, email address, and authentication credentials (passwords are hashed).
  • Billing Data: Payment method details (processed securely by Stripe; we do not store full credit card numbers).

Service Data (Your Agents)

  • Agent Configuration: System prompts, personality definitions, and tool configurations.
  • Knowledge Base (RAG): Documents (PDF, TXT, MD) you upload are processed, chunked, and stored as vector embeddings to allow your agents to search them.
  • Secrets & Keys: API keys for third-party tools (e.g., Salesforce, Jira) are stored using AES-256 encryption and are decrypted only at runtime.
  • Conversation Logs: Messages sent to and from your agents are stored to provide history, context, and analytics.

3. How We Use Artificial Intelligence

Ordo provides tools to build AI agents. To function, the Service interacts with Third-Party Model Providers (such as OpenAI, Anthropic, or Azure OpenAI).

Data Transmission to LLMs

When you send a message to an agent, the following data is sent to the configured inference provider:

  • The user message and conversation history.
  • Relevant chunks of text retrieved from your Knowledge Base (RAG).
  • The agent's system prompt and instructions.

We do not use your data to train our own foundation models. Data usage by third-party providers is governed by their respective API data policies (typically distinct from their consumer product policies).

4. Data Retention & Security

We implement industry-standard security measures designed to protect your data:

  • Encryption at Rest: Database volumes and vector indices are encrypted.
  • Encryption in Transit: All data transmitted between your client, our servers, and third-party APIs is encrypted via TLS 1.2+.
  • Secret Management: Tool credentials (API keys) are encrypted specifically within the database and are never logged.

We retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy, or as required by law.

5. Third-Party Services

We may share data with specific sub-processors to deliver the Service:

  • Infrastructure: Microsoft Azure (Hosting, Database, Vector Search).
  • AI Models: OpenAI (or other configured providers).
  • Payments: Stripe.
  • Integrations: If you connect an agent to Slack, Teams, or GitHub, data will be transmitted to those platforms as directed by the agent's actions.

6. Your Rights

Depending on your location, you may have rights regarding your personal data, including the right to access, correct, or delete your data.

You can delete your agents, documents, and conversation history directly through the Ordo dashboard. To request a full account deletion, please contact support.

7. Contact Us

If you have questions or comments about this policy, you may email us at:

privacy@ordo.chat