TapPass
Request beta access

Privacy Policy

Last updated: March 1, 2026

Cogniqor BV ("we", "TapPass") is committed to protecting your privacy. This policy explains how we collect, use, and safeguard information when you use our website (tappass.ai) and our AI runtime governance platform.

1. Data Controller

Cogniqor BV
Belgium
Email: jens@tappass.ai

2. What we collect

Website visitors

  • Contact form submissions: Name, email address, company name, and message content when you reach out through our forms.
  • Technical data: We use Cloudflare for hosting, which may process IP addresses, browser type, and page views for security and performance purposes. We do not use analytics cookies or tracking scripts.

Platform users

  • Account information: Name, email address, and organization provided during account setup or SSO authentication.
  • Agent interaction data: AI agent requests and responses processed through TapPass for governance purposes. This data is stored according to your organization's retention policy.
  • Audit logs: Hash-chained records of policy decisions, detections, and enforcement actions.

3. How we use your data

  • To respond to your inquiries and schedule demos.
  • To provide the TapPass governance platform as contracted with your organization.
  • To generate compliance evidence and audit trails as configured by your security team.
  • To improve our platform and services.
  • To comply with legal obligations.

4. Data processing and storage

TapPass deploys on your infrastructure or your cloud environment. Agent interaction data processed by the platform stays within your perimeter. We do not access, read, or transfer your agent data to our own servers.

Contact form submissions are processed via Resend (email delivery) and delivered to our team inbox. Resend processes data in compliance with GDPR.

5. Data sharing

We do not sell, rent, or share your personal data with third parties for marketing purposes. We use the following processors:

  • Cloudflare: Website hosting and CDN (USA, with EU data processing commitments).
  • Resend: Email delivery for contact form submissions.

6. Your rights (GDPR)

If you are in the European Economic Area, you have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Object to or restrict processing.
  • Data portability.
  • Lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit).

To exercise these rights, contact us at jens@tappass.ai.

7. Cookies

This website does not use cookies. We do not use analytics tools, advertising trackers, or third-party scripts that set cookies.

8. Data retention

Contact form data is retained for as long as necessary to respond to your inquiry and maintain the business relationship. Platform data retention is governed by your organization's contract and configuration.

9. Security

All data in transit is encrypted via TLS. The TapPass platform uses AES-256-GCM encryption at rest, hash-chained audit trails, and zero-trust identity (SPIFFE/SPIRE) for agent authentication.

10. Changes

We may update this policy from time to time. Changes will be posted on this page with an updated date.