Privacy

Collect less. Explain why. Protect what remains.

This page states the intended privacy posture for the public site. Contractual notices and live-service details must be reviewed before production publication.

Public site

The public experience is designed without advertising trackers or behavioural profiling. Standard server security logs may record request metadata for reliability and abuse prevention.

European Buyer identity

The login page passes the approved organization email as an optional login hint to the configured identity provider. Authentication, access policy and account lifecycle are enforced server-side.

Customer records

  • Access is tenant-, organization- and role-aware.
  • Evidence is retained according to configured contractual and legal requirements.
  • Original documents remain distinct from OCR, translation and redaction derivatives.
  • Cross-customer model training is disabled by default.

Choices and requests

Production contact details, jurisdiction-specific notices, retention periods, subprocessors and individual-rights procedures must be populated from the approved operating entity before launch.

This draft is product copy, not a substitute for an approved privacy notice.