Last updated: June 16, 2026
1. Scope & Definitions
This Data Policy describes how Fuez AI ("Fuez," "we," "us," or "our") processes Customer Data — information you or your organization submit, upload, generate, or connect to the Service, including content processed by AI agents.
This policy supplements our Privacy Policy. The Privacy Policy covers account holder and website visitor personal information; this policy focuses on workspace and business data.
- "Customer" means the organization or individual subscribing to the Service.
- "Customer Data" means data submitted to or stored in the Service by or for a Customer.
- "Authorized Users" means individuals permitted by the Customer to access a workspace.
2. Data Ownership
Customers retain all rights, title, and interest in Customer Data. Fuez does not claim ownership of content you create, upload, or import into your workspace.
You grant Fuez a limited, worldwide license to host, copy, transmit, display, and process Customer Data solely to provide, maintain, secure, and improve the Service, and as otherwise instructed through the product or a written agreement.
3. Customer Responsibilities
Customers are responsible for the accuracy, quality, and legality of Customer Data and for the means by which they acquired it.
- Obtain all necessary consents, notices, and legal bases for collecting and processing data in Fuez.
- Configure roles and permissions appropriate to your organization's sensitivity levels.
- Review AI Outputs before using them in production, customer-facing, or regulated contexts.
- Ensure connected integrations are authorized and comply with third-party terms.
- Promptly remove access for users who leave your organization.
4. Processing Activities
Fuez processes Customer Data to perform the Service, including:
- Storing and indexing workspace content, files, messages, and agent configurations.
- Executing AI agent sessions, workflows, and automation you initiate.
- Syncing data with integrations you authorize.
- Generating deliverables, summaries, and recommendations within your workspace.
- Creating backups, replicas, and disaster recovery copies.
- Logging access and operations for security, audit, and troubleshooting.
- Aggregating and anonymizing usage metrics to improve the platform.
5. AI Model Processing
When Authorized Users invoke AI features, relevant portions of Customer Data (such as prompts, context documents, and conversation history) may be transmitted to third-party AI model providers to generate outputs.
We configure providers to minimize retention of prompts and outputs where supported. Provider-specific terms and data handling practices apply in addition to this policy.
- Customers choose which agents, models, and tools are enabled in their workspace.
- Enterprise customers may request dedicated configurations, zero-retention options, or approved model lists.
- We do not use Customer Data to train publicly available foundation models without explicit consent or a separate agreement.
- Content moderation and safety filters may automatically scan prompts or outputs to prevent abuse.
6. Subprocessors
Fuez uses infrastructure and service providers (subprocessors) to host and operate the Service, including cloud hosting, database services, email delivery, payment processing, and AI model APIs.
We maintain contractual obligations requiring subprocessors to protect Customer Data and process it only on our instructions. A subprocessor list is available upon request at data@fuez.ai.
We will provide notice of material subprocessor changes where required by agreement or law.
7. Integrations & Third Parties
When you connect third-party applications, Fuez accesses data only within the OAuth scopes or API permissions you approve. Data flows bidirectionally according to integration design and your configuration.
Third-party services are governed by their own terms and privacy practices. Fuez is not responsible for data handling by connected services outside our platform.
- You may disconnect integrations at any time through workspace settings.
- Disconnecting may stop future sync but may not delete data already imported into Fuez.
- Some integrations require workspace admin approval before connection.
8. Security Controls
We implement technical and organizational measures designed to protect Customer Data, including:
- Encryption in transit (TLS) and encryption at rest for stored data.
- Role-based access controls within workspaces and projects.
- Authentication safeguards, including support for secure session management.
- Infrastructure hosted with reputable cloud providers and network segmentation.
- Logging and monitoring for anomalous access patterns.
- Employee access limited to personnel with a legitimate business need.
- Regular reviews of security practices and vulnerability remediation.
9. Data Location & Residency
Customer Data is primarily stored in data centers operated by our cloud providers in the United States. If you require specific data residency or regional hosting, contact data@fuez.ai about enterprise options.
Cross-border transfers, where they occur, are subject to appropriate safeguards as described in our Privacy Policy.
10. Backup & Recovery
We perform regular backups to support disaster recovery and service continuity. Backups are encrypted and retained for a limited period consistent with our retention schedule.
Backup copies may persist for a short time after deletion from primary systems. Customers should maintain their own exports of critical data.
11. Security Incidents
We maintain an incident response process to detect, investigate, and remediate security events. If we become aware of a breach affecting Customer Data, we will notify affected Customers without undue delay as required by applicable law and contractual commitments.
Report suspected security issues to support@fuez.ai with subject line "Security Incident."
12. Data Subject Requests
Where Fuez processes personal data contained in Customer Data on behalf of a Customer, the Customer is the controller and Fuez acts as processor. Data subject requests should generally be directed to the Customer.
Fuez will assist Customers in responding to verifiable data subject requests as required by applicable law and our data processing agreements.
13. Data Deletion & Export
Customers may export workspace data through available product features. Upon termination or written deletion request, we will delete Customer Data from active systems within a reasonable period, typically within 30–90 days, unless retention is required by law or legitimate business needs (such as billing disputes or security investigations).
Residual copies in backups will age out according to our backup retention cycle.
14. Enterprise & Data Processing Agreements
Enterprise customers may execute a Data Processing Agreement (DPA) incorporating GDPR Standard Contractual Clauses or other required terms. Contact data@fuez.ai for DPA requests, security questionnaires, or custom compliance requirements.
Enterprise agreements may include enhanced SLAs, dedicated support, custom retention, and approved subprocessor notification procedures.
15. Contact
Data processing questions and DPA requests: data@fuez.ai.
Security inquiries: support@fuez.ai (subject: Security).