Linky

Privacy Policy

Last updated: June 30, 2026

Linky is an AI-assisted Odoo support tool operated by HBS d.o.o. (Hermes Business Solutions) (“we”, “us”). It connects to systems you authorize — your Odoo instances, and optionally GitHub or Azure DevOps — and exposes read access to them through the Model Context Protocol (MCP) so an AI assistant (such as Claude) can answer questions grounded in your real data. This policy explains what we collect, how we use it, and your choices.

Data we collect

  • Account data — your name, email, and organization membership, used to sign you in and control access.
  • Connection credentials — the Odoo API keys, GitHub App installation, and Azure DevOps tokens you provide so the tools can read your systems. These are encrypted at rest.
  • Content accessed on your behalf — when a tool runs, it reads records from your Odoo instance or files from your connected repos and returns them to the AI assistant to answer your request. We do not copy your business data into a separate store; it is fetched on demand.
  • Usage metadata — which tools were called, by which user, and when, for security, billing, and rate limiting.

How we use data

We use the above solely to operate the service: to authenticate you, resolve your organization’s connections, run the read-only tools you (or your AI assistant) invoke, and return the results. We do not sell your data, and we do not use your business content to train models.

Sharing & third parties

  • Your AI assistant (e.g. Anthropic’s Claude) receives the tool results it requested, in order to answer you. Their handling is governed by their own privacy terms.
  • Your connected systems (Odoo, GitHub, Azure DevOps) are the sources we read from, using the credentials you supply. We only read what your tools request.
  • We do not share your data with any other third parties for their own purposes.

Storage & security

Data is hosted on our infrastructure in the EU. Credentials are encrypted at rest and transmitted over TLS. All MCP tools are read-only — Linky never writes to your connected systems. Access is scoped per organization and per user, and can be suspended at any time.

Retention

Connection credentials are kept until you disconnect them or delete your organization, after which they are removed. Usage metadata is retained for operational and billing purposes and then deleted. Business content read on demand is not retained by us.

Your choices

You can disconnect any system, revoke access, or delete your account at any time, which removes the associated credentials. For access, correction, or deletion requests, contact us at the address below.

Contact

Questions about this policy or your data? Email privacy@hbs.si. Data controller: HBS d.o.o. (Hermes Business Solutions).

We may update this policy; material changes will be reflected by the “Last updated” date above.