Agent Breach
Home
FeaturesPentest ToolsIntegrationsFree scan
SecurityDocumentationSupport
PricingEnterpriseAboutLog inStart free scan→

Menu

Home
PricingEnterpriseAboutLog inStart free scan →

Privacy Policy

Last updated: July 2026

This policy describes how Agent Breach collects and uses personal data when you use our website, create an account, or run security scans. It should be read alongside our Terms of Service and Cookie Policy.

We process identifiers (such as email), account metadata, security logs, and scan-related technical data needed to operate the platform. Optional analytics and advertising technologies load only when permitted through your cookie preferences.

Hosted Repository Scanning

When you enable hosted PR scanning, Agent Breach processes repository data required for security analysis, including source files, dependency manifests/lockfiles, workflow files, and pull request metadata.

Scan execution is limited to authorized repositories and pull request commit context (head/base) to provide targeted analysis of the requested change set.

Retention and Deletion

Hosted scan workspaces are designed to be temporary and are deleted after verification and reporting steps, including failure paths and periodic stale workspace cleanup.

Agent Breach applies the following service retention periods (from the scan or record date unless noted):

Data typeRetention
Detailed scan findings and tool output90 days
PDF/HTML scan reports (export artifacts)365 days
Workspace activity audit logs90 days (Team/Business) or 365 days (Enterprise); hard delete at 365 days maximum
Hosted PR scan workspacesTemporary — deleted after analysis
Application operational logs (CloudWatch)30 days

Account deletion requests remove associated customer data where legally permitted. Some billing or security records may be retained longer when required by law.

International transfers and subprocessors

Agent Breach infrastructure primarily runs on Amazon Web Services in the EU (eu-north-1; email via SES in eu-west-1). We rely on contractual and technical safeguards consistent with our role as a processor for customer-directed scanning workloads and as a controller for account relationship data.

Subprocessors (Agent Breach platform)

SubprocessorPurposeTypical dataRegion
Amazon Web ServicesHosting, databases, storage, queues, email (SES), AI inference (Bedrock)Customer account data, scan findings, reports, logsEU (eu-north-1, eu-west-1)
StripeSubscription billing and paymentsName, email, billing details, payment tokensGlobal (Stripe infrastructure)
CloudflareTurnstile CAPTCHA on public formsIP address, browser signalsGlobal edge
GitHubOptional CI/PR scanning integrationRepository metadata and code (customer-authorized repos)Global (GitHub)
LinkedInOptional social integrationOAuth tokens and profile identifiersGlobal (LinkedIn/Microsoft)
Shodan (optional)Attack-surface enrichment for authorized targetsHostnames and IP metadataUS (Shodan API)

We maintain an internal subprocessor register reviewed quarterly. Enterprise customers may request additional detail during procurement. Voqua Tech S.L. (operator of Agent Breach) corporate site: voqua-tech.com.

Consent and Legal Basis

Hosted repository scanning requires explicit customer consent in the integrations flow and may require re-consent when processing terms materially change.

For support or data requests, contact the Agent Breach support channel listed on the Support page.

Account and communications

We use your email to authenticate you, send operational notices (such as scan completion or billing receipts), and—where allowed—product updates. You can control marketing communications through unsubscribe links where applicable.

If you subscribe to our optional security email updates on the Blog page, we store your email address only to send those digests and an unsubscribe link is included in every message. You may opt out at any time using that link.

Your choices

You may request access, correction, or deletion of certain personal data subject to legal retention requirements. Visit Support for the fastest routing of privacy-related requests.

Agent Breach

Continuous risk reduction for modern web applications.

Product

  • Free scan
  • Pricing
  • Features
  • Platform
  • Integrations
  • Enterprise

Company

  • Book a demo
  • About
  • Blog
  • Internal Blog
  • Contact
  • Security

Resources

  • Documentation
  • API Reference
  • Support
  • Security
  • Cookie Policy
  • Privacy Policy
  • Terms of Service

© 2026 Agent Breach. All rights reserved.

LGPD
Platform security