Last Updated: January 18, 2026
Overview
This Privacy Policy explains how ChangeGuard ("we", "us", or "our") collects, uses, discloses, and safeguards information when you use (a) our website and (b) the ChangeGuard software, including the self-hosted agent that runs inside your Kubernetes environment.
Self-hosted agent model: The ChangeGuard agent runs in your Kubernetes cluster (or your infrastructure) and connects outbound to a ChangeGuard control plane only if you enable cloud-connected features. There is no inbound access into your cluster from ChangeGuard.
Information We Collect
Website & Sales
- Contact details you submit (name, email, company) for demos, trials, or support
- Basic website analytics (IP address, browser/device info, pages visited, and cookies)
Account, Billing, and Licensing
- Account information (admin names, emails, organization details)
- Subscription and billing metadata (payment processing is handled by our payment provider; we do not store full card details)
- License keys, entitlement status, and license usage signals (for example, active agents and heartbeat)
Product Data (when cloud-connected features are enabled)
Depending on how you deploy ChangeGuard, the in-cluster agent may transmit limited operational and safety signals to the ChangeGuard control plane so we can provide the product experience (dashboards, safety scoring display, audit trails, notifications).
This product data may include:
- Kubernetes version and platform information (for example, distro, node OS/image identifiers)
- Health and readiness signals needed to compute and explain safety decisions (for example, node conditions, pod status summaries, and relevant Kubernetes events)
- Identifiers for resources involved in a change workflow (for example, object kind, namespace/name) when needed to produce an audit trail you can view
- Agent operational telemetry (version, uptime, performance, and error logs)
What We Do Not Collect
We are designed to minimize data collection. Unless you explicitly provide it to us (for example, in a support ticket), we do not collect:
- Application source code or container images
- Kubernetes Secrets or raw secret values
- Full manifests/configuration bodies for your workloads
- Customer data stored inside your applications
How We Use Information
- Provide, operate, and secure the website and ChangeGuard services
- Issue licenses, validate entitlement, and provide support
- Deliver product functionality you enable (for example, dashboards, audit trails, notifications)
- Improve reliability and performance (for example, debugging crash reports)
- Comply with legal obligations and enforce agreements
Data Retention
We retain information only as long as needed for the purposes described in this policy, including to provide the service and meet legal obligations. Product telemetry and operational logs are retained for limited periods consistent with security and troubleshooting needs.
Security
We use administrative, technical, and physical safeguards designed to protect information. The agent connects outbound over encrypted channels (TLS). You control where the agent runs and what features are enabled.
Your Choices
- You can choose deployment modes (fully self-hosted vs. cloud-connected) and disable optional telemetry where available.
- You can request access, correction, or deletion of your account information, subject to legal requirements.
Contact Us
If you have questions about this Privacy Policy, contact us via the Contact page.