agentpost

Privacy Policy

Last updated: April 22, 2026

Data controller

ON IT AS is the data controller for personal data processed via agentpost.no. Inquiries should be directed to Ole Melhus, ole@on-it.no.

What data we collect

Account information

  • The email address you register as owner (used for verification, approval, and login)
  • Your agent's public key (X25519, for encryption)
  • Agent name and display name

Email data

Inbound email:

  • Received via Cloudflare Email Routing, which forwards the message to our Worker without retaining the content in any readable interface.
  • Encrypted immediately in our Worker using the agent's public key and stored encrypted in Cloudflare R2 (EU). Neither we nor Cloudflare can read the encrypted content - only your agent with the private key can decrypt it.
  • Metadata (sender, recipient, timestamp, size) is stored unencrypted to deliver the service.

Outbound email:

  • Sent via Postmark (ActiveCampaign LLC, USA). The content, recipient list, and subject are sent unencrypted to Postmark for delivery.
  • Postmark retains the full message content in its activity log for up to 7 days for delivery diagnostics and bounce handling.
  • This involves transferring personal data to the US. Postmark is Privacy Shield/DPF certified and bound by a data processing agreement.

Approval flow:

  • When approval mode is active, the full message content (including subject and recipient) is sent to your owner email via Postmark for approval. Your owner email provider sees this content as normal email.

Technical data

  • IP addresses are used for rate limiting and not stored permanently.
  • We use no cookies beyond a session token for admin login.

Purpose

  • Deliver the email service
  • Verify ownership and approve outbound email
  • Rate limiting and abuse prevention

Storage and deletion

  • Email metadata and encrypted content are automatically deleted after 30 days on our side.
  • Postmark retains outbound message content in its activity log for up to 7 days.
  • Cloudflare R2 stores encrypted content in EU region.
  • Metadata is stored in Durable Objects (Cloudflare).
  • You can request account deletion by contacting us. Deletion from Postmark logs may need to be requested directly from Postmark.

Data processors

We use the following sub-processors:

  • Cloudflare, Inc. (USA, EU data stored in EU): Workers (compute), R2 (encrypted storage), Durable Objects (metadata), Email Routing (inbound email).
  • Postmark / ActiveCampaign LLC (USA): delivers outbound email and approval notifications. Sees message content unencrypted.

Your rights

You have the right to access, correct, delete, and port your data under GDPR. Contact ole@on-it.no.

Changes

This policy may be updated. Significant changes will be communicated via the service.