Privacy Policy

Last Updated: January 2025

1. Introduction

Cogentic Lab ("we," "our," or "us") operates the MCPdirect platform and related services (collectively, the "Services"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Services.

By using our Services, you consent to the data practices described in this Privacy Policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, username, password, and profile information
  • Payment Information: Billing address, payment method details (processed by third-party payment processors)
  • MCP Server Information: MCP server configurations, connection details, tool configurations, and access keys
  • Communication Data: Messages sent through contact forms, support requests, and email communications
  • Content: Data you upload, create, or transmit through our Services

2.2 Automatically Collected Information

  • Usage Data: Logs of your interactions with our Services, including API calls, feature usage, and access patterns
  • Device Information: IP address, browser type, operating system, device identifiers
  • Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to track activity and store preferences
  • Analytics Data: Aggregated usage statistics and performance metrics

2.3 Third-Party Authentication

When you sign in using Google or GitHub, we receive your email address, name, and profile information as provided by the authentication provider.

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve our Services
  • Process transactions and manage subscriptions
  • Authenticate users and manage accounts
  • Enable MCP server connectivity and tool access
  • Send service-related communications, including updates and security alerts
  • Respond to inquiries and provide customer support
  • Monitor and analyze usage patterns to improve Services
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations and enforce our Terms of Service

4. Information Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

4.1 Service Providers

We share information with third-party service providers who perform services on our behalf, including:

  • Payment processors (Stripe, Lemonsqueezy, and others)
  • Cloud infrastructure providers
  • Email service providers
  • Analytics providers (PostHog, Google Analytics, and others)
  • Authentication providers (Google, GitHub)

4.2 Legal Requirements

We may disclose information if required by law, court order, or governmental authority, or to protect our rights, property, or safety, or that of our users or others.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

4.4 With Your Consent

We may share information with your explicit consent or at your direction.

5. Data Security

We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet or electronic storage is completely secure.

6. Data Retention

We retain your information for as long as necessary to provide our Services, comply with legal obligations, resolve disputes, and enforce our agreements. When you delete your account, we will delete or anonymize your personal information, except where we are required to retain it by law.

7. Your Rights and Choices

Depending on your location, you may have the following rights:

  • Access: Request access to your personal information
  • Correction: Request correction of inaccurate information
  • Deletion: Request deletion of your personal information
  • Portability: Request transfer of your data
  • Opt-Out: Opt out of certain data processing activities, including marketing communications
  • Cookie Preferences: Manage cookie settings through your browser

To exercise these rights, contact us at the email address provided below.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. We take appropriate safeguards to ensure your information receives adequate protection.

9. Children's Privacy

Our Services are not intended for individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected information from a child under 13, we will take steps to delete such information.

10. Open Source Software

Portions of our Services, including MCPdirect Studio, are provided as open source software. When using open source components, please review the applicable open source licenses and privacy practices.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. Your continued use of our Services after such changes constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Cogentic Lab
Email: privacy@cogenticlab.com