A7AR logo

A7AR

Privacy Policy

Effective Date: 01/01/2018
Last Updated: 07/15/2025

1. Introduction

AXIOM 7 APPLIED RESEARCH, LLC (“we,” “our,” or “us”) operates a workflow automation platform (the “Service”) that enables users to connect and automate tasks across various third-party APIs, services, and custom logic. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

Company Information:

AXIOM 7 APPLIED RESEARCH, LLC
Boulder, Colorado, USA
Email: support@a7ar.com

2. Information We Collect

2.1 Third-Party Service Data

You are in complete control of which third-party services and data permissions you grant to our Service.
When you choose to connect third-party accounts to our Service, we may access and process data from the various APIs and services that our platform supports, but only for the specific services you explicitly authorize in your automations.

Types of third-party services we support include, but are not limited to:

Productivity & Communication Services:

  • Email Services: Messages, attachments, and metadata from providers like Gmail, Outlook, Yahoo Mail, and others
  • Cloud Storage: Files, folders, and metadata from services like Google Drive, Dropbox, OneDrive, Box, and others
  • Spreadsheet Services: Data and metadata from Google Sheets, Microsoft Excel Online, Airtable, and others
  • Calendar Services: Events, calendars, and metadata from Google Calendar, Outlook Calendar, and others
  • Document Services: Content and metadata from Google Docs, Microsoft Word Online, Notion, and others
  • Contact Management: Contact information from various CRM and contact management systems
  • Task Management: Task lists and project data from services like Asana, Trello, Monday.com, and others
  • Communication Platforms: Messages and data from Slack, Microsoft Teams, Discord, and others

Cloud Platform & Development Services:

  • Database Services: Query results from various database providers and cloud platforms
  • Cloud Storage Platforms: File storage and metadata from AWS S3, Azure Blob Storage, and others
  • AI/ML Services: API responses from various artificial intelligence and machine learning providers
  • Development Tools: Data from GitHub, GitLab, Bitbucket, and other development platforms

Business & Marketing Services:

  • Advertising Platforms: Campaign data and metrics from various advertising services
  • Analytics Services: Website and application analytics from various providers
  • E-commerce Platforms: Order data, inventory, and customer information from Shopify, WooCommerce, and others
  • Social Media Platforms: Posts, metrics, and engagement data from various social networks

Other Services:

  • Translation Services: Translation requests and results from various providers
  • Payment Processors: Transaction data from Stripe, PayPal, and other payment services
  • Specialized APIs: Data from industry-specific or niche service providers

Important: Our Service only accesses the specific third-party APIs that you explicitly choose to use in your workflow automations. You retain full control over which permissions to grant, and you can revoke access to any connected service at any time through the respective service’s account settings or our platform.

2.2 Authentication Data

We store authentication credentials (such as OAuth access tokens, refresh tokens, API keys, or other authorization credentials) to maintain your authorized connections to third-party services. These credentials are encrypted and stored securely in our database.

2.3 Usage Data

We may collect basic usage information about how you interact with our Service, such as automation execution logs and error reports, solely for the purpose of providing and improving our Service.

3. How We Use Your Information

You control what data we access. We use your information solely for the following purposes:

  • User-Authorized Automation Execution: To perform only the specific workflow automations you create and explicitly authorize, using only the third-party services you select
  • Minimal Data Access: We access only the minimum data necessary for each automation you configure
  • Service Functionality: To maintain your authorized connections to third-party services and execute your chosen automations
  • Service Improvement: To troubleshoot issues and improve our Service performance, without accessing the content of your third-party service data
  • Communication: To respond to your inquiries and provide customer support

Principle of Least Privilege: Our Service operates on the principle of least privilege – we only request and access the specific API permissions that your chosen automations require. If an automation doesn’t need access to a particular service or data type, we won’t request those permissions.

Important: We do not use your third-party service data for any purpose beyond executing the specific automations you create and authorize. We do not analyze, mine, or use your data for advertising, marketing, or any other commercial purposes.

4. Data Storage and Security

4.1 Storage

  • Third-Party Service Data: We do not store your third-party service data except for authentication credentials (OAuth tokens, API keys, etc.) required to maintain your authorized connections
  • Authentication Credentials: All authentication credentials are stored in an encrypted database hosted on our secure virtual private server (VPS)
  • Retention: Credentials are retained only as long as you maintain your account and connections with our Service

4.2 Security Measures

We implement industry-standard security measures to protect your data:

  • All data is protected by encryption in transit and at rest
  • Compute isolation ensures separation between user environments
  • Secure authentication and authorization protocols
  • Regular security monitoring and updates

5. Data Sharing and Disclosure

We do not sell, trade, or share your personal information or third-party service data with unauthorized parties.

We may disclose information only in the following limited circumstances:

  • Legal Requirements: If required by law, regulation, or valid legal process
  • Service Providers: To trusted service providers who assist in operating our Service, under strict confidentiality agreements
  • Business Transfers: In connection with a merger, sale, or transfer of our business assets
  • Safety and Security: To protect the rights, property, or safety of our users or others

6. Your Rights and Choices

6.1 Access and Control Over Sensitive Data

You have complete control over your data permissions. For all third-party services that involve sensitive data:

  • Granular Permission Control: You decide exactly which third-party services to connect and what level of access to grant
  • Selective Authorization: You can authorize our Service for some APIs while keeping others private
  • Real-time Revocation: You can revoke our access to any third-party service instantly through that service’s account settings or our platform
  • Scope Transparency: Before granting any permissions, each service will clearly show you exactly what data access you’re authorizing

6.2 Data Management Rights

  • You can request deletion of your data by contacting us at support@a7ar.com
  • You can modify or delete your automations at any time through our Service
  • You can disconnect individual third-party services without affecting your other integrations

6.3 Data Portability

Upon request, we can provide you with a copy of your automation configurations in a portable format.

6.4 GDPR Rights (EU Users)

If you are located in the European Union, you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure (“right to be forgotten”)
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing

7. Third-Party Service Compliance

Our use of information received from third-party APIs adheres to the respective service providers’ terms of service, user data policies, and privacy requirements. Specifically:

  • User-Controlled Access: We only request access to third-party APIs that you explicitly choose to use in your automations from our supported list of services
  • Purpose Limitation: We use third-party service data solely to provide the automation functionality you configure and authorize
  • No Advertising Use: We do not use third-party service data for serving advertisements or marketing purposes
  • Restricted Human Access: We do not allow humans to read third-party service data unless required for security purposes, to comply with applicable law, or with your explicit consent
  • No Unauthorized Transfers: We do not transfer third-party service data to other parties except as specified in this policy
  • Minimal Data Requests: We follow the principle of least privilege, requesting only the minimum permissions necessary for your specific automation needs
  • Compliance Monitoring: We regularly review and update our practices to ensure compliance with evolving third-party service policies and requirements

Service-Specific Compliance: For services with specific user data policies (such as Google API Services User Data Policy, Microsoft Graph API policies, etc.), we maintain compliance with their individual requirements and restrictions.

8. International Data Transfers

Your data may be transferred to and processed in the United States. We ensure appropriate safeguards are in place for international data transfers, including adherence to applicable privacy frameworks and regulations.

9. Children’s Privacy

Our Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on our website and updating the “Last Updated” date. Your continued use of the Service after any modifications constitutes acceptance of the updated Privacy Policy.

11. Contact Information

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Email: support@a7ar.com
Company: AXIOM 7 APPLIED RESEARCH, LLC
Address: Boulder, Colorado, USA

12. Effective Date

This Privacy Policy is effective as of 01/01/2018 and applies to all information collected by our Service.

This Privacy Policy was last updated on 07/15/2025.