EvalOps Privacy Policy

EvalOps is the evaluation and governance platform operated by EvalOps, Inc. (“EvalOps”, “we”, “us”). We collect and process limited personal information to operate the platform, provide support, and communicate with customers. This Privacy Policy describes how we handle that information.

We collect information in three primary ways: - **Account & contact information.** Names, work emails, company details, and messages provided when requesting a demo, contacting support, or creating accounts. - **Telemetry & evaluation data.** Customers choose what telemetry to send into EvalOps. This data is processed to power scorecards, monitors, and governance workflows. - **Usage & diagnostics.** Product analytics (when enabled) and system logs that help us secure and improve the platform.

We use the information described above to: - Provide, maintain, and improve EvalOps services - Respond to support requests and customer inquiries - Monitor reliability, security, and compliance - Communicate product updates or announcements (opt-out any time) We do **not** sell personal data or use telemetry for advertising.

Retention of telemetry inside EvalOps is controlled by workspace settings. Professional includes a 30-day default, while Enterprise and Private Cloud enable custom retention or customer-managed storage. Contact and account data is retained while we have a legitimate business purpose (e.g., contract in place, ongoing support). When that purpose ends, we delete or anonymize personal information within a reasonable timeframe.

We apply encryption in transit and at rest by default, maintain multi-tenant isolation, and offer customer-managed keys and dedicated deployments for regulated workloads. See the [Trust Center](/trust) for details on our security program, compliance commitments, and incident response.

EvalOps uses a limited set of subprocessors to deliver the service (e.g., cloud infrastructure, observability, support tooling). We ensure each vendor meets our security and privacy standards. Customers may request the current subprocessor list by emailing privacy@evalops.dev.

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict processing of your personal data. Contact us at privacy@evalops.dev to exercise these rights. We will respond within the timeframes required by applicable law.

EvalOps operates primarily in the United States. For customers in other regions, we use appropriate safeguards (such as Standard Contractual Clauses) to transfer personal data in compliance with applicable law.

We may update this Privacy Policy from time to time. When we do, we will update the “Effective date” below and notify customers of material changes.

For privacy questions or requests, email privacy@evalops.dev or write to EvalOps, Inc., 548 Market St, PMB 72812, San Francisco, CA 94104.