Privacy Policy
Your data privacy rights and our commitments
Our Privacy Commitment
We believe in data minimization, transparency, and user control. We collect only what's necessary and give you full control over your information.
What We Collect & Why
Usage Data
What: System logs, performance metrics
Why: Monitor system health and improve service
Retention: 90 days rolling
Evidence Bundles
What: Policy decisions, governance outcomes
Why: Provide audit trail and compliance verification
Retention: As configured by your organization
Contact Information
What: Name, email when you contact us
Why: Respond to your inquiries
Retention: Until request is resolved + 30 days
Your Rights
- Access: Request a copy of your data
- Portability: Receive your data in a machine-readable format
- Deletion: Request deletion of your personal information
- Correction: Update or correct inaccurate data
- Opt-Out: Stop processing for certain purposes
Data Security
We protect your data using:
- Encryption in transit (TLS 1.3+) and at rest (AES-256)
- Least-privilege access controls
- Regular security audits and penetration testing
- Incident response and breach notification procedures
Data Processing Principles
Minimization: Collect only what's necessary
Purpose Limitation: Use data only for stated purposes
Transparency: Clear communication about data practices
User Control: You decide what happens with your data
Contact for Privacy Matters
Questions about your data or want to exercise your rights?
compliance@orchintel.com