BaselynOps

Legal

Privacy Policy

Effective Date: May 19, 2026  ·  Last Updated: May 19, 2026

BaselynOps LLC (“BaselynOps,” “we,” “us,” or “our”) is a Michigan limited liability company providing business-to-business AI automation, workflow orchestration, managed services, hardware integration, and infrastructure solutions. This Privacy Policy explains how we collect, use, and protect information when you visit our website (baselynops.com) or engage us for services.

1. Information We Collect

Website Visitors

When you visit baselynops.com, we do not deploy tracking pixels, analytics scripts, advertising cookies, or session cookies of our own. Your visit may generate the following data at the network and infrastructure level:

  • IP address and request metadata — collected by Cloudflare as part of routing and security processing. See Section 4.
  • Email address — only if you contact us directly by clicking our email link and sending a message. We do not operate a web-based contact form.

We do not collect names, browsing history, device fingerprints, or behavioral data through the website.

Service Customers

When you engage BaselynOps for managed services, AI automation, workflow development, or infrastructure work, we may collect and process:

  • Contact and billing information provided during onboarding
  • Operational, technical, and business data you share with us to perform services (“Customer Data”)
  • Credentials, API keys, and access tokens required to deliver contracted services
  • System logs, workflow execution records, and operational metrics generated during service delivery

The handling of Customer Data is governed primarily by your executed Master Services Agreement (MSA) and any applicable Statements of Work (SOWs).

2. How We Use Information

We use information we collect to:

  • Respond to inquiries sent to [email protected]
  • Deliver contracted services as defined in your SOW
  • Operate, monitor, and maintain hosted infrastructure and AI workflows
  • Diagnose service issues and improve operational reliability
  • Comply with legal obligations

We do not sell, rent, or trade your information to third parties. We do not use Customer Data for the benefit of other customers.

3. Cookies

BaselynOps does not currently deploy first-party advertising or behavioral tracking cookies on the public website.

Cloudflare, our infrastructure and CDN provider, may set cookies for security and performance purposes (e.g., bot challenge cookies). These are operational and do not track you across websites. See Cloudflare’s privacy policy for details.

If you contact us by email, your email client and mail provider may set their own cookies — those are outside our control.

4. Third-Party Services and Subprocessors

BaselynOps uses third-party providers to operate the website and deliver services. These providers may process data on our behalf:

Provider Purpose Data Involved
Cloudflare CDN, DNS, tunnel, DDoS protection IP address, request metadata
Brevo Email delivery and inbox Email address, message content
Anthropic AI inference (for AI Employee features) Customer Data submitted to AI workflows
Google AI inference and productivity services Varies by engagement
n8n Workflow orchestration platform Customer Data processed through workflows

We are not responsible for third-party provider outages, API changes, or their independent data practices. When Customer Data flows through AI inference providers, this is disclosed in your MSA (§11) and requires your acknowledgment before services begin.

5. AI and Automation Disclosures

BaselynOps deploys automated AI agents (“AI Employees”) and workflow automations on behalf of service customers. If you are a service customer:

  • Your data may be transmitted to AI inference providers (including but not limited to Anthropic) to generate outputs as part of contracted services.
  • AI outputs are advisory and may contain inaccuracies. Human review is required before acting on AI-generated content.
  • AI Employees may take operational actions — sending communications, interacting with external systems, or executing workflows — based on configurations you approve.
  • You are responsible for reviewing and validating AI configurations before production deployment, as described in your MSA.

BaselynOps does not use AI outputs generated from your data to train models or benefit other customers.

6. Hosted Services and Multi-Tenant Infrastructure

BaselynOps operates a multi-tenant hosting architecture. If you are a hosted service customer:

  • Your operational environment is logically isolated using dedicated container processes, filesystem namespace isolation, and per-tenant network segmentation.
  • Physical server separation is not provided. Shared infrastructure may host multiple tenants.
  • BaselynOps applies commercially reasonable security practices to protect hosted data, but cannot guarantee absolute security of any system.

7. Data Retention

Data Type Retention Period
Website visitor IP logs (via Cloudflare) Per Cloudflare’s data retention policy
Email correspondence (via Brevo) Duration of business relationship + 2 years
Customer Data (hosted services) Duration of MSA + 30-day export window after termination
Billing and contract records 7 years for accounting, tax, and business record retention purposes

Upon termination of a service engagement, Customer Data is retained for up to 30 days following the termination date to allow for export. After this period, Customer Data may be deleted from BaselynOps systems. Customers are responsible for retrieving their data within the export window.

8. Data Security

BaselynOps implements reasonable technical and organizational safeguards to protect information, including:

  • Encrypted communications (HTTPS/TLS) for all hosted services and the public website
  • Access controls limiting data access to personnel who require it for service delivery
  • Logical tenant isolation for hosted customer environments

No system can guarantee absolute security. In the event of a security incident affecting your data, we will notify you as required by applicable law and our contractual obligations.

9. Your Rights

Depending on your location and applicable law, you may have rights regarding your personal information, including the right to:

  • Request access to personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your information, subject to legal and contractual retention requirements
  • Withdraw consent where processing is based on consent

To exercise these rights, contact us at [email protected]. We will respond within a reasonable timeframe.

California Consumer Privacy Act (CCPA): BaselynOps does not currently meet the thresholds requiring compliance under the California Consumer Privacy Act (CCPA).

Note: This Privacy Policy is written for U.S. residents. BaselynOps does not currently target services toward EU residents or operate under a formal GDPR compliance program. If this changes, this policy will be updated accordingly.

10. Children’s Privacy

BaselynOps services are directed at businesses and are not intended for individuals under 18. We do not knowingly collect personal information from minors.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last Updated” date at the top. Continued use of our website or services after changes are posted constitutes acceptance of the updated policy. For material changes affecting service customers, we will provide notice via email to the contact on file.

12. Contact

For privacy questions, data requests, or concerns:

BaselynOps LLC
[email protected]