When you initiate an Agentic Action, Knetc may collect, process, and temporarily retain the following categories of data:

Task instructions: the natural-language instructions you provide to the agent.

Action logs: a structured record of each action the agent took, including timestamps, tool calls, target URLs (where applicable), step numbers, and success/failure status.

Screenshots: for desktop-use sessions, the agent may capture screenshots of the sandboxed virtual desktop. These screenshots may include content visible on the websites or applications the agent interacted with at your direction.

Sandbox session metadata: identifiers, lifetimes, and resource usage of the cloud sandbox in which the agent operated.

Third-Party Platform interaction data: data exchanged between the agent and any Third-Party Platform you instructed it to access, to the extent necessary to complete the task. This may include data you have authorized via OAuth integrations.

Outputs: the final result the agent returned to you, including any documents, files, or generated text.

Knetc uses Agentic Action data only for:

• Providing the requested Agentic Action to you.
• Displaying the live progress, screenshots, and result back to you in your account.
• Diagnosing errors and improving Service reliability.
• Detecting and preventing abuse, security incidents, or violations of the Knetc Terms of Service or applicable law.
• Complying with legal obligations and responding to valid legal process.

Knetc does not use Agentic Action data to train artificial intelligence models. Task instructions and screenshots are transmitted to Anthropic’s API for inference (per Section 4 of the Main Policy); per Anthropic’s API terms, API inputs are not used to train Anthropic’s models by default.

• Knetc does not store passwords. OAuth tokens issued via Knetc integrations are stored encrypted using AES-256-GCM and are scoped to the specific Third-Party Platform you connected.
• If you provide a password, banking credential, government identifier, or similarly sensitive credential directly inside an agent conversation in violation of the Terms of Service, Knetc will refuse to retain or transmit that credential beyond what is technically necessary to either decline the task or revoke the credential from active session memory. You are responsible for the consequences of providing such credentials.
• Highly sensitive form submissions (e.g., full credit card numbers entered into a Third-Party Platform form) are not retained in screenshots or action logs where Knetc can technically detect and redact them. This redaction is best-effort and is not a guarantee.

Action logs and task records: retained for 30 days after task completion, then deleted from active systems. Aggregated, de-identified statistics may be retained longer for Service improvement.

Screenshots from desktop-use sessions: retained for 30 days after task completion, then deleted from active systems.

Outputs and conversation history: retained as part of your account workspace per Section 6 of the Main Policy. You may delete these at any time.

Sandbox content: the sandboxed virtual desktop is destroyed at task completion. No persistent storage of sandbox state survives the task.

Logs related to security incidents or legal holds: may be retained beyond the 30-day window as required by applicable law, court order, or legitimate security investigation.

In addition to the service providers listed in Section 7 of the Main Policy, Agentic Actions may involve the following data flows:

E2B (sandbox provider): desktop-use sessions execute inside cloud sandboxes operated by E2B, Inc. Sandbox content is processed by E2B for the duration of the session.

Anthropic (model provider): task instructions, conversation context, and screenshots are transmitted to Anthropic’s API for inference, as described in the Main Policy.

Third-Party Platforms you authorize: any platform you instruct the agent to access will receive data from the agent, including OAuth tokens you authorized, search queries, form submissions, and any content the agent posts or sends. Knetc has no control over what the Third-Party Platform does with that data once received.

• You may delete a desktop-use session’s screenshots and action log at any time before the 30-day retention period ends, via your account settings.
• You may revoke any OAuth integration at any time through your account settings or directly with the Third-Party Platform. Revocation does not delete data already exchanged.
• You may opt out of all Agentic Actions by not initiating them. Standard non-agentic chat features do not generate the Agentic Action data described in this Addendum.
• You may request export of your Agentic Action data via the data portability process described in Section 8 of the Main Policy.

For California residents, the categories of personal information Knetc collects in connection with Agentic Actions, the purposes for collection, the categories of recipients, and the retention periods are described in this Addendum and the Main Policy. Knetc does not sell personal information collected through Agentic Actions. CCPA rights described in Section 9 of the Main Policy apply to Agentic Action data.

When you instruct an Agentic Action to access a Third-Party Platform, that platform’s privacy policy — not Knetc’s — governs how the Third-Party Platform collects, uses, and shares data the agent transmits to it on your behalf. You should review the privacy policies of any Third-Party Platforms you instruct an Agentic Action to access. Knetc disclaims responsibility for the privacy practices of Third-Party Platforms.

Knetc may update this Addendum from time to time. We will notify you of material changes by email or in-app notice at least 14 days before changes take effect. Continued use of Agentic Actions after the effective date constitutes acceptance.

For questions about this Addendum, the data Knetc collects during Agentic Actions, or to exercise any privacy right with respect to Agentic Action data, contact support@knetc.team.