Privacy Policy

Who we are

Sagentum is an independent quality assessment platform for MCP servers, operated as a sole trader based in the United Kingdom. Contact: privacy@sagentum.com

What data we collect and why

Email addresses (launch notification list)

If you submit your email address on the methodology page, we collect and store it to notify you when Sagentum launches. Lawful basis: legitimate interest. You can unsubscribe at any time by emailing privacy@sagentum.com with the subject line "unsubscribe".

Vendor-submitted API credentials

If you submit test credentials via the vendor self-submission form, those credentials are used only to run the live testing harness against your server. They are not stored after assessment completion and are deleted within 30 days of the assessment being published. Credentials never appear in published assessment records in unredacted form.

Analytics

We use Google Analytics 4 to understand how developers use the site. This collects anonymised usage data including pages visited and search queries. No personally identifiable information is collected via analytics.

How long we keep your data

• Email addresses: until you unsubscribe or request deletion
• Vendor API credentials: deleted within 30 days of assessment completion
• Analytics data: retained per Google Analytics default retention settings

Your rights under UK GDPR

You have the right to access, correct, or delete any personal data we hold about you. To exercise any of these rights, email privacy@sagentum.com. We will respond within 30 days.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe your data has been handled incorrectly.

Data sharing

We do not sell personal data. We do not share personal data with third parties except where required by law. Assessment data (server scores, methodology, evidence) is public by design — this is not personal data.