Privacy Policy for MCPHERE
This Privacy Policy explains how MCPHERE collects, uses, shares, stores, and protects personal information when you use the MCPHERE website, accounts, watchlists, alerts, submissions, sponsor flows, billing features, and related services.
1. Scope and operator
This Policy applies to MCPHERE public pages, authenticated product surfaces, application programming interfaces, submission and sponsor forms, newsletter subscriptions, and related communications. If a separate legal entity, order form, invoice, or commercial agreement identifies a specific contracting party, that party controls the processing covered by that agreement in addition to this Policy.
2. Information we collect
Depending on how you use MCPHERE, we may collect: identifiers such as email address and account ID; authentication and session data; watchlist, alert, and workspace preferences; newsletter subscription choices; sponsor and submission form details; limited billing-related identifiers and subscription status; webhook endpoint details; device, browser, IP address, and usage events; and repository or project metadata you choose to submit.
3. Sources of information
We collect information directly from you, automatically from your device or browser when you use the service, from service providers that help us run authentication, billing, analytics, CAPTCHA, email, and hosting, and from public repository or ecosystem sources when operating the MCP registry.
4. How we use information
We use information to provide and secure the service, authenticate accounts, operate watchlists and alerts, process submissions and sponsorship applications, manage billing, send transactional or service emails, understand usage and improve reliability, prevent abuse or fraud, comply with law, and enforce our product and legal policies.
5. Legal bases for processing
Where required by applicable law, MCPHERE processes personal information on one or more of the following bases: your consent, performance of a contract, compliance with legal obligations, and our legitimate interests in operating, securing, improving, and defending the platform.
6. How we disclose information
We may disclose information to infrastructure and service providers that act on our behalf, including hosting, database, analytics, CAPTCHA, email, payment, logging, and security vendors; to professional advisers; to law enforcement or regulators when legally required; and in connection with a merger, sale, financing, or reorganization. We do not state that personal information is sold for money through the current product experience.
7. International data transfers
MCPHERE expects traffic from multiple jurisdictions. Information may therefore be processed in countries other than your own, including countries that may not provide the same level of protection as your home jurisdiction. Where legally required, we rely on appropriate transfer mechanisms and contractual protections.
8. Retention
We retain information only for as long as reasonably necessary for the purposes described in this Policy, including security, audit, fraud prevention, legal compliance, service continuity, dispute resolution, and recordkeeping. Retention periods can vary by data type, relationship, and applicable law.
9. Your rights and choices
Depending on where you live, you may have rights to request access, correction, deletion, restriction, portability, objection, withdrawal of consent, or information about categories of personal information collected, disclosed, or retained. Where such rights apply, requests should be sent through the support or contact channel made available on the site, in your account, or in relevant billing or service communications.
10. California, EEA, UK, and similar disclosures
California users may have rights under state privacy law, including rights related to access, deletion, correction, and certain disclosures. Users in the EEA, UK, and similar jurisdictions may also have rights under local data protection law. MCPHERE currently does not promise automated handling of browser Do Not Track signals, and any future support for mechanisms such as Global Privacy Control will be described in updated notices if implemented.
11. Children
MCPHERE is intended for professional and general business or technical use, not for children. If you believe a child has provided personal information in violation of applicable law, contact us through the service contact channel so we can review and remove it where appropriate.
12. Security
We use administrative, technical, and organizational safeguards designed to protect personal information. No system can guarantee absolute security, but MCPHERE applies reasonable controls appropriate to the sensitivity of the data and the nature of the service.
13. Changes to this Policy
We may update this Policy from time to time to reflect legal, technical, operational, or product changes. If we make material changes, we may provide notice through the site, the product, or service communications as appropriate.