Novo Industries
Novo Industries / Novo North

Novo North Privacy Policy

How Novo North collects, uses, shares, and protects personal information and Customer Data.

Last updated: May 2, 2026

Novo North Privacy Policy

Effective date: May 2, 2026

Novo Industries, Inc. ("Novo," "we," "us," or "our") operates Novo North, the workspace where AI helpers read your data, build apps, run on triggers, and compound knowledge alongside your team.

This policy describes how we collect, use, share, and protect personal information when you use Novo North.

Information we collect

  • Account information such as email address, display name, role, time zone, and organization membership.
  • Organization data such as organization name, website, workspace settings, members, roles, usage, and billing state.
  • Customer Data such as agent conversations, thread messages, files, uploaded media, agent-built applications, database tables, notes, playbooks, and connected repository content.
  • Integration data such as OAuth connection metadata, API-key overlays, custom MCP server details, and third-party service inputs or results you direct helpers to use.
  • Runtime and diagnostic data such as agent activity, tool calls, sandbox logs, browser automation state, device information, mobile push tokens, and security events.

How we use information

We use information to provide Novo North, operate AI helpers, store and retrieve organizational memory, run agent-built applications, process payments, maintain security, prevent abuse, deliver transactional email, and communicate service notices.

We do not sell personal information. We do not use Customer Data to train or improve AI models that we develop or fine-tune. AI providers process Customer Data under their business/API terms and as subprocessors listed in this policy.

AI processing and subprocessors

Novo North routes Customer Data to AI and infrastructure providers as needed to operate the service. Current subprocessors are listed at Novo North subprocessors.

Cookies

Novo North uses cookies and similar storage for authentication, session management, security, and necessary product operation. We do not use advertising cookies or tracking pixels.

Retention

Active account and organization data is retained while the workspace is active. Canceled workspaces follow the product cancellation lifecycle: a read-only export window, a paused-data window, and then deletion. Billing records may be retained as required by tax and financial rules. Operational logs are retained for troubleshooting and security for limited periods.

Your privacy rights

Depending on where you live, you may have rights to access, correct, delete, export, restrict, or object to processing of personal information. To exercise privacy rights, email privacy@novoindustries.co.

International transfers

Novo North is operated from the United States. Where required, we rely on Standard Contractual Clauses, the UK International Data Transfer Agreement, Data Privacy Framework certifications, and other lawful transfer mechanisms.

Security

We use encryption in transit and at rest, tenant isolation, row-level security, scoped authentication, sandbox isolation, and operational monitoring. More detail is available at Novo North Security.

Changes

We may update this policy from time to time. We will provide notice of material changes through the service or by email when legally required.

Contact

Privacy requests: privacy@novoindustries.co Security reports: security@novoindustries.co Mail: Novo Industries, Inc., Wilmington, Delaware, United States