Privacy Policy
Last updated: April 2026
Placeholder page. This is a draft outline only. Have a privacy attorney review and replace this content before public launch — particularly if you'll be serving EU/UK customers (GDPR), California residents (CCPA), or processing health data. Remove this notice once finalized.
MSPbrief ("we", "us") provides a platform for managed service providers to generate and deliver branded service reports to their clients. This page describes the categories of data we process and how.
Data we collect from MSPs (our customers)
- Account information: company name, email, password hash, branding (logo URL, brand color).
- Integration credentials: encrypted at rest with AES-256-GCM.
- Client records: names and integration mapping IDs you enter.
- Schedule configuration and report run history.
Data we collect about your clients (the recipients)
- Recipient email addresses you configure for report delivery.
- Aggregated metrics fetched from your connected tools at report-generation time (ticket counts, device counts, CSAT scores, etc.) and the rendered report HTML.
We act as a data processor for this content. Your contracts with your clients govern how their data may be used; we follow your instructions.
Subprocessors
We use the following third-party services to operate MSPbrief:
- Supabase — application database and authentication
- Vercel — hosting
- Anthropic — AI-generated executive summaries
- SMTP2GO — email delivery
- The MSP-side integrations you choose to connect (ConnectWise, NinjaRMM, etc.)
Retention
Account and report data is retained for the life of your account plus 30 days after cancellation, after which it is deleted.
Contact
Privacy questions or data requests: privacy@mspbrief.io.