Privacy Policy

Last updated: February 24, 2026

AgentHiFive ("we", "us", or "our") operates the AgentHiFive platform, accessible at www.agenthifive.com. This Privacy Policy explains how we collect, use, store, share, and protect your information when you use our website and platform services, including integrations with third-party services such as Google Workspace.

By using our services, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Account Information

When you create an account or sign in using a third-party provider (such as Google), we collect:

Name and email address
Profile picture (if provided by the authentication provider)
Account identifiers

1.2 Google Workspace Data

When you connect your Google account to AgentHiFive, we may request access to the following Google services, depending on the features you choose to enable:

Service	Data Accessed	Purpose
Gmail	Email messages, labels, metadata	To allow authorized agents to read, search, compose, and manage email on your behalf
Google Drive	Files, folders, metadata	To allow authorized agents to access, search, and manage your documents on your behalf
Google Calendar	Events, schedules, metadata	To allow authorized agents to read and manage your calendar on your behalf
Google Contacts	Contact names, email addresses, phone numbers	To allow authorized agents to look up contact information on your behalf

Important: We only access Google data that you have explicitly authorized. You can review and revoke the scopes granted to AgentHiFive at any time via your Google Account Permissions page.

1.3 Technical Information

Our hosting infrastructure may automatically collect limited technical data, including IP address, browser type, pages visited, and referring URL. This data is used solely for security, performance monitoring, and abuse prevention.

2. How We Use Your Information

We use the information we collect for the following purposes:

Provide and operate the AgentHiFive platform — including brokering authorized API calls between your connected accounts and third-party AI agents you have approved.
Authenticate your identity — to verify you are who you say you are when connecting services.
Enforce access controls — to ensure that AI agents can only access the data and perform the actions you have explicitly permitted.
Monitor and audit agent activity — to log what actions agents perform on your behalf, providing you with transparency and control.
Improve and secure our services — to maintain platform reliability, detect abuse, and improve functionality.
Communicate with you — to send service-related notifications, respond to support requests, and provide important updates.

      What we do NOT do with your Google data:
      We do not use your Google Workspace data to serve advertisements.
We do not sell or rent your Google Workspace data to third parties.
We do not use your Google Workspace data for purposes unrelated to providing and improving the AgentHiFive platform.
We do not allow AI agents to access your data without your explicit authorization.

    

3. How Your Data Flows Through AgentHiFive

AgentHiFive acts as a secure intermediary between your connected accounts (such as Google Workspace) and third-party AI agents. Here is how data flows through our platform:

You connect your account — You authorize AgentHiFive to access specific Google services via OAuth 2.0. We store the resulting access and refresh tokens securely.
You authorize an AI agent — You grant a specific third-party AI agent permission to perform defined actions (for example: "read my latest emails" or "create a calendar event").
AgentHiFive brokers the request — When an authorized agent makes a request, AgentHiFive validates the request against your permissions, executes the API call to Google on your behalf, and returns the result to the agent.
AgentHiFive enforces boundaries — Requests that exceed your authorized permissions are blocked. All agent activity is logged for your review.

4. Data Storage and Security

4.1 Token Storage

OAuth tokens (access tokens and refresh tokens) that grant access to your connected services are stored using industry-standard encryption at rest and in transit. Tokens are never exposed to third-party AI agents — agents interact with your data only through AgentHiFive's controlled API layer.

4.2 Data in Transit

All data transmitted between your browser, our servers, Google's APIs, and authorized AI agents is encrypted using TLS 1.2 or higher.

4.3 Data at Rest

Any cached or stored data from your connected accounts is encrypted at rest using AES-256 or equivalent encryption standards.

4.4 Infrastructure

Our platform is hosted on secure cloud infrastructure with access controls, monitoring, and regular security reviews.

5. Data Sharing and Third-Party Access

We share your data only in the following limited circumstances:

With AI agents you have authorized — Only the specific data and actions you have permitted, mediated through AgentHiFive's access control layer.
With service providers — Trusted infrastructure and service providers who assist in operating our platform, bound by confidentiality obligations.
As required by law — When we have a good-faith belief that disclosure is necessary to comply with applicable law, regulation, legal process, or governmental request.
To protect rights and safety — When necessary to enforce our terms, protect the security of our platform, or protect the rights, property, or safety of our users or others.

We do not sell, rent, or trade your personal information or Google Workspace data to any third party for marketing or advertising purposes.

6. Data Retention

Account data is retained for as long as your account is active. If you delete your account, we will delete your account data within 30 days.
OAuth tokens are retained for as long as your service connection is active. When you disconnect a service or revoke access, tokens are deleted immediately.
Activity logs (records of agent actions) are retained for up to 90 days for audit and troubleshooting purposes, after which they are automatically purged.
Cached data from connected services is retained only as long as necessary to fulfill active requests and is not stored permanently.
Server logs containing technical information are retained for a limited period necessary for security and operational purposes.

7. Your Rights and Choices

You have the following rights regarding your data:

Access — You can request a copy of the personal data we hold about you.
Correction — You can request that we correct inaccurate personal data.
Deletion — You can request that we delete your account and associated data.
Revoke Google access — You can disconnect your Google account from AgentHiFive at any time through your AgentHiFive account settings, or by revoking access directly at Google Account Permissions. Upon revocation, we will delete stored tokens and cease all access to your Google data.
Manage agent permissions — You can review, modify, or revoke permissions granted to individual AI agents at any time through the AgentHiFive dashboard.
Data portability — Where applicable, you can request your data in a portable format.

To exercise any of these rights, contact us at privacy@agenthifive.com.

8. Cookies and Tracking

Our platform may use essential cookies required for authentication and session management. We do not use cookies for advertising or third-party tracking. We do not embed any third-party analytics, advertising, or social media tracking tools.

9. Google API Services – Limited Use Disclosure

AgentHiFive's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, we limit our use of Google user data to providing and improving the AgentHiFive platform's user-facing features. We do not use Google user data for serving advertisements, and we do not allow humans to read your Google data unless you provide affirmative consent, it is necessary for security purposes, or it is required by law.

10. Children's Privacy

AgentHiFive is not directed at children under the age of 16, and we do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information promptly.

11. International Data Transfers

Your data may be processed and stored in countries other than your own. We take appropriate safeguards to ensure your data is protected in accordance with this Privacy Policy and applicable data protection laws.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the "Last updated" date at the top of this page and, where appropriate, through email notification. Your continued use of the platform after changes are posted constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

AgentHiFive
Email: privacy@agenthifive.com
Website: www.agenthifive.com