← Back to CentralCommand

Privacy Policy

Last updated: March 7, 2026

1. Who We Are

CentralCommand is operated by Van Moose, a company registered in Amsterdam, the Netherlands. CentralCommand is an AI operations control plane for governed workflow execution.

2. Data We Collect

  • Account data: Name, email address, and authentication identifiers provided via Clerk (our authentication provider).
  • Usage data: Workflow definitions, execution logs, step inputs/outputs, and audit trail events created during platform usage.
  • Technical data: IP address, browser type, and access timestamps collected automatically for security and monitoring.

3. How We Use Your Data

  • To provide and maintain the CentralCommand platform.
  • To authenticate your identity and manage your account.
  • To execute workflows and store audit trails as requested by you.
  • To monitor platform health and prevent abuse.
  • To communicate service updates and respond to support requests.

4. Data Processing & Storage

Your data is stored in Supabase (PostgreSQL) hosted in the EU. Authentication is handled by Clerk. Analytics are collected via Vercel Analytics. We do not sell your data to third parties.

5. Third-Party Services

  • Clerk — Authentication and user management.
  • Vercel — Hosting and analytics.
  • Supabase — Database storage.
  • Anthropic — AI processing (when AI adapter is used in workflows).
  • Sentry — Error monitoring and diagnostics.

6. Your Rights (GDPR)

Under the General Data Protection Regulation, you have the right to access, rectify, delete, or export your personal data. You may also object to or restrict processing. To exercise these rights, contact us at privacy@vanmoose.com.

7. Data Retention

Account data is retained for the duration of your account. Workflow execution logs and audit trails are retained for 12 months after creation. You may request earlier deletion by contacting us.

8. Security

We implement industry-standard security measures including HMAC-SHA256 contract signing, SHA-256 API key hashing, rate limiting, and scope-based authorization. All data is transmitted over HTTPS.

9. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or dashboard notification. Continued use of the platform after changes constitutes acceptance.

10. Contact

For privacy-related inquiries: privacy@vanmoose.com

Van Moose — Amsterdam, Netherlands