Privacy Policy

How Beakn collects, uses, and protects your data.

Last updated: April 20, 2026

Plain-language summary. Beakn collects the minimum data needed to generate patch-compliance reports for MSPs and their clients. We do not sell your data. We do not use it for advertising. We do not share it with third parties except the service providers required to run Beakn.

1. Who we are

Beakn ("we," "us," or "our") operates the Beakn endpoint health reporting platform, available through our website, API, and Windows agent software.

Contact: legal@beakn.app

2. Scope of this policy

This policy applies to data we collect from and about:

Visitors to our website (beakn.app)
MSP customers who subscribe to Beakn
Endpoints managed by MSP customers that run the Beakn agent
Individuals who contact us or sign up for a trial

3. Data we collect

Account and billing data

When an MSP signs up for Beakn, we collect business contact information (name, email, company, phone) and, through our payment processor, billing information. We do not store payment card numbers on our systems.

Endpoint telemetry

The Beakn agent, when installed on a Windows endpoint by an MSP or their client, collects the following:

Operating system version, build, and patch state
Installed software list from the Windows registry
Pending reboot status and failed Windows Update error codes
Hostname, machine GUID, and agent version

We do not collect user files, keystrokes, process lists, browsing history, screenshots, or any personally identifying information from end users of the endpoint.

Website analytics

Our website collects minimal analytics (page views, referrer, coarse geographic region). We do not use cross-site tracking cookies. We do not share analytics data with advertising networks.

Communications

When you email us, submit a form, or start a chat, we retain the content of that communication to respond to it and maintain a record of our correspondence.

4. How we use your data

We use the data described above to:

Provide the Beakn service, including generating reports
Authenticate and secure MSP accounts and agent installations
Process payments and manage subscriptions
Respond to support requests
Send service announcements and, if you opt in, product updates
Detect and prevent fraud or abuse
Comply with legal obligations

We do not sell your data. We do not use your data to train machine-learning models for any purpose unrelated to providing the Beakn service.

5. Service providers (subprocessors)

We rely on the following subprocessors to run Beakn. Each is contractually bound to protect your data:

Supabase: database and authentication (US)
Fly.io: API and application hosting (US)
Vercel: marketing site and serverless functions (US)
Stripe: payment processing (US)
Resend: transactional email (US)

We will update this list if we add new subprocessors. MSP customers on paid plans can request notification of subprocessor changes in writing.

6. Data retention

We retain endpoint telemetry for as long as the MSP's subscription is active, plus 90 days after cancellation to allow for account reactivation. After that, telemetry is permanently deleted.

Account and billing records are retained for seven years to comply with tax and financial regulations.

Generated reports (PDFs) are retained for the lifetime of the MSP's subscription. MSP customers can request earlier deletion at any time.

7. Security

We take reasonable technical and organizational measures to protect your data, including:

TLS encryption for all data in transit
Encryption at rest for databases and object storage
Bcrypt hashing with a peppered lookup index for API credentials
Least-privilege access controls for employees and contractors
Logging and monitoring of access to production systems

No system is perfectly secure. If we become aware of a breach that affects your data, we will notify you without undue delay and consistent with applicable law.

8. Your rights

Depending on where you live, you may have the following rights over your personal data:

Access a copy of the data we hold about you
Correct inaccurate data
Delete your data (subject to legal retention requirements)
Export your data in a portable format
Object to certain uses of your data
Withdraw consent where processing is based on consent

To exercise any of these rights, contact legal@beakn.app. We will respond within 30 days.

9. End users of managed endpoints

If you are an employee or end user of a device that runs the Beakn agent, the MSP that installed it is the data controller for the telemetry collected from your device. Please direct privacy requests to your IT provider. Beakn will cooperate with your IT provider to fulfill your requests where applicable.

10. International transfers

Beakn is hosted in the United States. If you access the service from outside the US, your data will be transferred to and processed in the US. By using Beakn, you consent to this transfer. For EU/UK customers, we rely on Standard Contractual Clauses for international transfers where applicable.

11. Children's privacy

Beakn is a B2B service and not directed to individuals under 16. We do not knowingly collect personal data from children.

12. Changes to this policy

We may update this policy from time to time. If we make material changes, we will notify MSP customers by email at least 30 days before the change takes effect. The "Last updated" date at the top of this page reflects the most recent revision.

13. Contact

Questions about this policy or your data? Email legal@beakn.app.