Terms of Service

Fractal Terms and Conditions for MCP Providers and Consumers

Fractal Privacy Policy

SpectreAI Company (Delaware C-Corp)

Effective Date: July 1, 2025

1. Introduction

SpectreAI Company (“we,” “our,” or “us”) operates Fractal, a platform that enables registration and discovery of Model Context Protocol (MCP) services. This Privacy Policy explains how we collect, use, store, and protect personal and system data from both MCP Providers and Consumers.

By using Fractal, you agree to the terms described in this Privacy Policy.

2. What We Collect

We collect the following categories of information:

2.1 Account & Identity Data

  • Name, email, organization, and authentication credentials for Providers and Consumers.
  • API key or OAuth tokens associated with your account.

2.2 Usage & Transactional Data

  • Logs of requests routed through Fractal (timestamps, source, endpoint accessed).
  • Monetization events, including tool usage statistics and payment-related metadata.

2.3 Technical Data

  • IP addresses, device and browser types, user-agent headers.
  • Service metadata required for MCP discovery and routing.

2.4 Optional MCP Data

  • Certain MCP services may transmit data payloads via Fractal.
  • We do not inspect or persist MCP response content unless needed for security monitoring, debugging, or billing.

3. How We Use Your Data

We use your data to:

  • Authenticate users and authorize access
  • Route requests between Consumers and Providers
  • Monitor system health and performance
  • Enforce platform security and compliance
  • Facilitate payments and monetization
  • Prevent abuse or fraud
  • Communicate updates and provide support

We do not sell your personal data to third parties.

4. Data Retention

  • Log data may be retained for up to 90 days for auditing and abuse prevention.
  • Billing-related data may be retained for longer per financial or legal obligations.
  • You may request deletion of your account and associated data, subject to legal or contractual retention requirements.

5. Sharing of Data

We may share data with:

  • Payment processors (e.g., Stripe) for monetization
  • Cloud infrastructure providers (e.g., AWS, GCP)
  • Legal authorities if required by court order or law
  • Third parties only with your explicit consent

We ensure all vendors adhere to confidentiality and data protection obligations.

6. Security Measures

We implement industry-standard security practices, including:

  • HTTPS encryption of all traffic
  • Token-based authentication and access scoping
  • Rate limiting and anomaly detection
  • Isolated service environments for sensitive operations

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the data we hold about you
  • Request corrections or deletions
  • Object to certain uses of your data
  • File a complaint with a data protection authority

Contact us at privacy@spectreai.com to exercise your rights.

8. International Users

Fractal is operated from the United States. If you access the service from outside the U.S., your data may be transferred to and processed in the U.S. By using the platform, you consent to this transfer.

9. Updates

We may update this Privacy Policy periodically. We will notify users via the Platform or email before material changes take effect.

10. Contact

SpectreAI Company

Email: privacy@spectreai.com

Registered in Delaware, USA