DecidR

Privacy Policy

DecidR privacy and data handling

This policy explains how DecidR handles information for the DecidR website, the hosted DecidR app at app.decidrmcp.com, and the DecidR Governance ChatGPT/MCP app.

Effective date: June 19, 2026

Scope

DecidR is a decision governance workspace for creating and reviewing initiatives, projects, decisions, tasks, audit evidence, linked documents, and related operational records. DecidR Governance is also available as a hosted MCP app for connected clients such as ChatGPT and MCPViews.

The hosted MCP endpoint is OAuth protected. DecidR uses organization-scoped grants so requests are limited to the organization selected during the connection flow and to the permissions available to the signed-in user.

Data we process

Account and organization data

Name, email address, avatar, organization membership, role, preferences, session state, authentication records, and consent records used to sign you in and scope your access.

Governance workspace content

Initiatives, projects, decisions, tasks, bridges, lifecycle history, audit events, linked document metadata, comments, approvals, and user-provided descriptions or rationale stored in DecidR or linked from Ludflow.

Connected-app and MCP activity

Tool calls, tool arguments, timestamps, requested organization context, response metadata, errors, and security checks generated when a connected client such as ChatGPT or MCPViews calls DecidR Governance tools.

Integration data

Configuration and metadata from user-enabled integrations, including GitHub repository, issue, pull request, and account details when you connect GitHub. GitHub access credentials are stored encrypted and are used only to operate the integration you enable.

Support, diagnostics, and analytics

Support messages, device/browser metadata, IP address, user agent, referrer, page activity, error logs, performance events, and website analytics where analytics are configured.

How we use data

  • Authenticate users, maintain sessions, and issue organization-scoped OAuth grants.
  • Operate the DecidR Governance MCP tools, website, hosted app, dashboards, audit trails, lifecycle records, and linked Ludflow document workflows.
  • Return requested, permission-scoped data to the connected client you choose to use, including ChatGPT, MCPViews, or another MCP-compatible client.
  • Protect accounts, prevent abuse, debug errors, monitor reliability, and enforce organization boundaries and tool permissions.
  • Provide support, respond to privacy or security requests, maintain business records, and comply with legal obligations.
  • Improve product quality using operational and analytics signals. Private workspace content is not sold and is not used to train general-purpose AI models.

Sharing and processors

Connected clients you authorize

When you use DecidR through ChatGPT, MCPViews, or another client, that client sends DecidR MCP requests and receives DecidR responses for your requested workflow. The client controls its own processing under its own terms and privacy policy.

Infrastructure and service providers

Hosting, database, storage, email, authentication, analytics, observability, security, and support vendors that help operate DecidR and Ludflow.

User-enabled integrations

Third-party services such as GitHub when you connect them and request integration-backed actions or synchronization.

Legal and safety recipients

Authorities, advisors, or counterparties when disclosure is required to comply with law, protect rights, investigate abuse, or complete a business transaction under appropriate safeguards.

Retention

Account, organization, governance, and audit records are retained while the account or organization remains active and as needed for security, legal, backup, dispute-resolution, or audit purposes. Some governance history is intentionally durable so teams can understand what was approved, by whom, and what evidence supported the work.

MCP OAuth access tokens are short lived, refresh tokens are revocable, and expired or revoked credentials are rejected. Diagnostic logs are kept only as long as needed for reliability, security, troubleshooting, and compliance. Backup copies age out under our normal backup lifecycle.

Your controls

  • Access, correct, export, or delete personal information by contacting DecidR support.
  • Revoke ChatGPT or other connected-client access from that client's connected-app settings when available.
  • Disconnect GitHub or other integrations from DecidR/Ludflow settings or by contacting support.
  • Ask us to delete an organization or user account, subject to legal, security, backup, and audit-retention requirements.
  • Use browser controls to limit cookies or local storage. Some authentication and analytics features may not work without required storage.

Security

DecidR uses authentication, organization-scoped authorization, encrypted credential storage for supported integrations, audit logging, and operational monitoring to protect the service. No internet service can be guaranteed completely secure, so please report suspected security issues promptly.

DecidR Governance write tools are permission checked and scoped to the active organization. Destructive or high-risk behavior is excluded from public claims unless it is explicitly available in the reviewed app version.

Contact

For privacy requests, support questions, or security concerns, email [email protected]. You can also use the DecidR support page.

Public site: https://decidrmcp.com