Legal

Privacy Policy

Last updated: June 2026

1. Who we are

Planning Ace ("we", "us") provides Fibonacci estimation, refinement, and sprint capacity tooling for teams using Azure DevOps. This policy explains what we collect when you use the product and how we use it.

2. Information we collect

We collect only what we need to run the product:

  • Account data — your email, name, and authentication identifiers.
  • Azure DevOps data — work item IDs, titles, descriptions, acceptance criteria, and story points for tickets you add to a session.
  • Session activity — votes, estimates, capacity inputs, and comments you contribute.
  • Meeting transcripts — when you attach our bot to a Microsoft Teams call, we receive a transcript of the meeting strictly for generating refinement summaries.
  • Usage metadata — basic logs (timestamps, IPs, error reports) used to keep the service running.

3. How we use it

We use the data to run sessions, write story points back to Azure DevOps when you ask us to, generate AI-assisted ticket summaries and refinement notes, and to debug and improve the service. We do not sell your data and we do not use it to train third-party models.

4. Azure DevOps & Microsoft Teams

Planning Ace acts on your behalf using credentials you provide. We request only the scopes needed to read work items and (optionally) write back accepted points and refinement comments. Meeting transcripts are processed by our transcription provider and our AI provider only for as long as needed to generate a summary; raw transcripts are deleted with the session.

5. AI processing

Ticket summaries and refinement notes are generated by large language model providers we contract with. Your prompts (ticket text and relevant transcript segments) are sent to the provider for inference and are not retained for training.

6. Subprocessors

We rely on infrastructure and service providers (hosting, database, email, transcription, AI). Each is bound by contract to handle data only on our instructions.

7. Data retention & deletion

Session data is kept while your account is active. You can delete sessions at any time from the app. To delete your account and all associated data, email us at the address below and we will action the request within 30 days.

8. Your rights

Depending on where you live (GDPR, UK GDPR, CCPA, and similar), you may have rights to access, correct, export, or delete your personal data. Contact us using the details below to exercise them.

9. Security

We use encryption in transit, scoped database access, and row-level security. No system is perfectly secure; if you believe you have found a vulnerability, please disclose it responsibly via the contact below.

10. Changes

We will update this page when our practices change. Material changes will be communicated in-product or by email.

11. Contact

Questions, requests, or complaints? Email jpzcms2418@gmail.com.