Skip to content
Start free
Legal

Privacy Policy

How Blaast collects, uses and protects your data. EU-first, GDPR-compliant.

Last updated: 17 May 2026. Blaast SAS, Paris, France.

1. Data controller

Blaast SAS is the data controller for personal data processed via blaast.app. Contact: Reveal privacy contact .

2. What we collect

  • Account data: email, name, company.
  • Usage data: prompts, build runs, agent telemetry, cost metering.
  • Technical data: IP, user agent, privacy-first analytics (Plausible, no cookies).

3. Why we process it

  • To operate the autonomous agent platform (contract performance).
  • To meter token usage and bill accurately (legitimate interest).
  • To improve the product in aggregate (legitimate interest).

4. Where it lives

All data is stored in the EU, OVHcloud Gravelines & Roubaix, France. We never transfer personal data outside the EEA without an adequacy decision or SCCs.

5. Your rights

Under GDPR you can access, rectify, erase, restrict, port, and object. Email Reveal privacy contact , we respond within 30 days. You may lodge a complaint with the CNIL.

6. Retention

Account data: for the life of the account + 3 years. Billing records: 10 years (legal obligation). Logs: 90 days.

7. Subprocessors

See the live list on our Security page.