Privacy and data handling.
TigerNellyOS designs automation with data protection by design in mind. This page is a practical summary, not legal advice.
Principles
How data should be handled
Automation workflows should collect only the data needed for the task, keep sensitive actions reviewable, and make ownership clear. Client data should not be placed into unnecessary tools or exposed to public systems.
- Use clear purposes for data processing.
- Keep raw credentials out of project notes and public code.
- Prefer approved systems for secrets and access management.
- Use human approval for sensitive customer, finance, HR, or external communications workflows.
- Review retention, access, and data processor responsibilities before production rollout.