Submit a request

Brightidea MCP Data and Privacy

Follow
Print Friendly and PDF

Table of Contents

Data the Server May Access

Depending on your request and Brightidea permissions, the MCP server may access:

  • Your Brightidea user profile information
  • Campaigns, initiatives, and communities
  • Ideas, descriptions, comments, votes, tags, categories, and statuses
  • Submission form schemas and user-provided submission content
  • Pipeline stages, steps, status counts, and evaluation information
  • Reports, analytics summaries, and campaign activity metrics
  • Member profiles and groups
  • Automation rules, polls, widgets, page layout details, and site branding
  • File or attachment metadata when used by a supported Brightidea API workflow

Data the Server Is Not Intended to Collect

Do not provide any of the following in chat messages or tool inputs:

  • Brightidea passwords
  • MFA codes or one-time passwords
  • API keys, OAuth client secrets, private keys, or access tokens
  • Payment card data
  • Government identifiers
  • Protected health information or clinical records

Data Storage

The MCP server stores OAuth session and token state required to keep your connection working. It does not create a separate database of Brightidea business records for general reuse.

Operational logs may record metadata such as tool name, user subject identifier, tenant, request status, duration, and request/response size. These logs are used for reliability, security, support, and usage analysis.

Secret Redaction

The MCP server attempts to redact known secret fields and secret-like values from tool responses before sending results back to your AI client. Redaction is a safety control — it is not a reason to intentionally request or paste secrets into chat.

AI Client Data Handling

After the MCP server sends a response to your AI client, the AI client's own data handling, retention, and admin controls apply. Review your organization's AI client policy before connecting Brightidea.

User Responsibilities

  • Use the MCP server only with approved AI clients.
  • Ask for the minimum data needed to complete the task.
  • Review generated summaries and recommendations before sharing them.
  • Review previews and confirmations before approving changes.
  • Disconnect access when it is no longer needed.
  • Brightidea MCP Authentication and Access
  • Use Brightidea MCP Safely
Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments