Privacy Policy

We use the information we collect for the following purposes:

• Service Delivery: To provide, maintain, and improve our audit trail and compliance automation platform
• Account Management: To create and manage your account, process payments, and provide customer support
• Communications: To send you service updates, security alerts, and administrative messages
• Product Improvement: To analyze usage patterns, identify issues, and develop new features
• Security: To detect, prevent, and respond to security incidents and fraudulent activity
• Compliance: To comply with legal obligations and enforce our terms of service
• Marketing: To send promotional communications (with your consent, where required)

We do not sell your personal information. We may share your information in the following circumstances:

• Service Providers: We share data with trusted third-party vendors who help us provide our services (hosting, payment processing, analytics)
• Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred
• Legal Requirements: When required by law, court order, or government request
• Protection of Rights: To protect our rights, privacy, safety, or property, and that of our users
• With Your Consent: When you explicitly authorize us to share information

We implement comprehensive security measures to protect your information:

• Industry-standard encryption for data in transit and at rest
• Regular security audits and vulnerability assessments
• Access controls and authentication mechanisms
• Secure infrastructure with continuous monitoring
• Employee training on data protection and security practices
• Incident response procedures and breach notification protocols

While we strive to protect your information, no method of transmission or storage is completely secure. We cannot guarantee absolute security but are committed to maintaining the highest security standards.

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this policy:

• Account Data: Retained while your account is active and for a reasonable period after account closure
• Audit Trail Data: Retained according to your configured retention policies and compliance requirements
• Legal Obligations: Some data may be retained longer to comply with legal or regulatory requirements
• Aggregated Data: De-identified or aggregated data may be retained indefinitely for analytics and research

You can request deletion of your data by contacting us. We will respond to your request in accordance with applicable data protection laws.

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request access to the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to certain exceptions)
• Portability: Request a copy of your data in a structured, machine-readable format
• Restriction: Request restriction of processing of your information
• Objection: Object to processing of your information for certain purposes
• Withdraw Consent: Withdraw consent for processing where we rely on consent

To exercise these rights, please contact us using the information provided below. We will respond to your request within the timeframe required by applicable law.

We use cookies and similar technologies to enhance your experience and analyze platform usage:

• Essential Cookies: Required for basic platform functionality and security
• Analytics Cookies: Help us understand how users interact with our platform
• Preference Cookies: Remember your settings and preferences
• Marketing Cookies: Used to deliver relevant advertisements (with your consent)

You can control cookies through your browser settings. Note that disabling certain cookies may affect platform functionality.

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers, including:

• Standard contractual clauses approved by regulatory authorities
• Data processing agreements with service providers
• Compliance with applicable data protection frameworks

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete such information promptly.

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by:

• Posting the updated policy on our website with a new "Last updated" date
• Sending you an email notification (for significant changes)
• Displaying a prominent notice on our platform

Your continued use of our services after changes become effective constitutes acceptance of the updated policy.