Privacy Policy

Privacy Policy

Effective date: 01 January 2026

Company

Prilog.ai is operated by mozok GmbH, Germany ("mozok", "we", "us").

Contact

General: hello@prilog.ai
Support: support@prilog.ai
Privacy: privacy@prilog.ai

Scope

This policy describes how we collect, use, and protect personal data for Prilog.ai.

1. Data we collect

Account data

Name, work email, role, and organization details provided when you request access or sign in.

Usage data

Product interaction events, feature usage, and performance telemetry needed to run and improve the service.

Integration data

Operational data you connect, such as logs, traces, error events, repositories, tickets, or alerts.

Support and communications

Messages you send to support and any feedback or survey responses you provide.

2. How we use data

Provide the service

Deliver AI remediation workflows, generate fixes, and coordinate tickets and pull requests.

Security and reliability

Monitor for abuse, maintain service reliability, and protect our infrastructure.

Product improvement

Analyze usage to improve features, documentation, and customer experience.

3. Legal bases (GDPR)

Contract

Processing required to provide the service and fulfill our agreement with you.

Legitimate interests

Operating, securing, and improving the service, balanced against your rights.

Consent

Marketing communications or optional analytics when required by law.

Legal obligations

Compliance with applicable laws, accounting, and regulatory requirements.

4. Sharing and subprocessors

Service providers

We use vetted providers to host and operate Prilog.ai, and to deliver analytics and integrations.

Core subprocessors

PostHog (EU analytics), AWS (cloud hosting), Google Cloud Platform (GCP auth and log access), Google SSO, Microsoft SSO, GitHub SSO, GitLab, Jira, Slack, Sentry, Datadog, and Azure. Integrations are optional and enabled by you.

Business transfers

We may share data in connection with a merger, acquisition, or asset sale, subject to confidentiality.

5. Data hosting and transfers

EU data residency

We host and process data in the European Union. If transfers outside the EU are required, we use approved safeguards such as SCCs.

6. Data retention

Retention periods

We retain data for as long as needed to provide the service, comply with legal obligations, and resolve disputes.

Deletion

Upon termination, we delete or return customer data according to the DPA and your instructions.

7. Security

Safeguards

We maintain administrative, technical, and organizational measures to protect data against unauthorized access.

Access controls

Access to customer data is limited to authorized personnel on a need-to-know basis.

8. Your rights

GDPR rights

You may access, correct, delete, or restrict processing of your personal data. You may also object or request portability.

Withdraw consent

You may withdraw consent at any time where consent is the legal basis.

Supervisory authority

You may lodge a complaint with your local data protection authority.

9. Cookies and analytics

PostHog analytics

We use PostHog EU for analytics to understand usage and improve the service. We do not sell personal data.

Cookie controls

You can control cookies through your browser settings. Some features may not function without cookies.

10. Changes

Updates to this policy

We may update this policy and will post the updated version here with a new effective date.