Legal

Privacy Policy

Last updated 2026-06-27 · Version 2026-06-27

1. Who we are

Tetherlab is the trading name. Two sole proprietorships registered in the Netherlands act as joint data controllers for the personal data described here:

  • CN Web Studios (KVK 99906155) · Ciprian Nitipir
  • Orcha AI Solutions (KVK 99897121) · David Vasilescu

For the purposes of the EU General Data Protection Regulation (GDPR), these entities jointly determine why and how your personal data is processed. Reach either of us at contact@tetherlab.io.

2. What data we collect

Account data. Your email, name, and avatar, captured through Supabase authentication and through Google or GitHub OAuth when you sign in with those providers.

Coordination data.The agent plans and “intents,” concepts, and code-graph metadata the product processes to coordinate your agents and detect conflicts.

Payment data. Handled by Stripe. We do not store your card numbers; we receive only the subscription and billing status Stripe reports back.

Booking data. When you book a call, we process the details you submit through Google Calendar and send confirmations through Resend.

3. Legal bases

We process account, coordination, payment, and booking data to perform our contract with you and run the Service. Where we rely on your consent (for example, optional communications), you can withdraw it at any time without affecting processing already carried out.

4. Sub-processors

We use the following providers to deliver the Service. Each processes data on our behalf under its own terms:

  • StripePayments and subscription billing
  • SupabaseAuthentication and account database
  • ResendTransactional and booking email
  • RailwayApplication hosting and Postgres (EU region)
  • VercelWebsite hosting
  • OpenRouterLLM concept matching
  • PostHogProduct analytics (EU region)
  • GoogleOAuth sign-in and Calendar for call booking
  • GitHubOAuth sign-in

5. International transfers

We host our application and database with Railway in the EU region. Some sub-processors, such as Stripe, OpenRouter, PostHog, Google, and GitHub, may process data outside the European Economic Area. Where they do, transfers rely on the safeguards those providers offer, including the European Commission’s Standard Contractual Clauses.

6. Retention

We keep account and coordination data for as long as your workspace is active and as needed to provide the Service. When you delete a workspace, its scoped data is removed. We retain what we must to meet legal, tax, and accounting obligations, then delete or anonymize it.

7. Your GDPR rights

If you are in the European Union, you have the right to access, rectify, erase, and port your personal data, and to object to or restrict its processing. Exercise any of these by emailing contact@tetherlab.io. We respond within 30 days. You may also lodge a complaint with your local data protection authority.

8. Cookies

We use essential session cookies to keep you signed in and to operate the dashboard. We do not use them for advertising.

9. Analytics

We use PostHog (PostHog, Inc.) to understand how visitors use the website so we can improve it. PostHog is configured with the EU region (eu.i.posthog.com) and processes the events below. The data never includes passwords, payment details, or the contents of your code.

Events captured. Page views (the URL you visited and the referrer), marketing CTAs you click (button label and page), form starts and completions (waitlist, sign-in, sign-up, CLI device login, demo-booking), the article slug and scroll depth on /articles/*, and your copy-command interactions on the install block. If you are signed in, your email is associated with the events through PostHog's person-profile feature so we can chart your journey from anonymous visit through to a workspace.

Cookies set by PostHog. A first-partyph_*cookie for the visitor's distinct identifier, plus the equivalent server-side cookie set via the /ingest reverse proxy we operate on our own domain. Marketing-site ingest goes through tetherlab.io/ingest/* so it stays first-party and ad-blocker-resistant.

Opt out. Set localStorage.tether:analytics_opt_out = "1" in your browser, or send a Do Not Track signal, and the SDK will stop capturing events. To delete data already associated with your email, email contact@tetherlab.ioand we will action it through PostHog's GDPR delete endpoint.

PostHog's data processing terms are at posthog.com/docs/privacy.

10. Children

The Service is not intended for anyone under 18. We do not knowingly collect personal data from children. If you believe a child has given us data, contact contact@tetherlab.io and we will delete it.

11. Changes to this policy

We may update this policy. We will post the revised version with a new “last updated” date and version number. Continued use of the Service after a change takes effect means you accept the revised policy.

12. Contact

For privacy questions or data-subject requests, email contact@tetherlab.io. The joint controllers behind Tetherlab are:

  • CN Web Studios (KVK 99906155) · Ciprian Nitipir
  • Orcha AI Solutions (KVK 99897121) · David Vasilescu