Privacy Policy

Information We Collect

We collect information you provide directly to us, such as when you create an account, use our services, or contact us. This includes your name, email address, company information, and any data you upload to our platform for analytical processing.

We automatically collect certain information about your device and usage of our services, including IP address, browser type, operating system, and interaction data with our platform features.

How We Use Your Information

We use the information we collect to provide, maintain, and improve our AI-powered analytical services. This includes processing your historical decision data, generating analytical insights, and delivering structured reports and framework recommendations.

Your data may be used for benchmarking analysis against external market signals and policy reference points, while maintaining high standards of privacy and security.

Data Processing and AI Analysis

Our AI systems process your organizational data to identify patterns, assess risk factors, and generate actionable insights. All processing occurs within secure, encrypted environments with strict access controls.

We employ advanced anonymization techniques to ensure individual privacy while maintaining analytical accuracy. Your sensitive business data never leaves our secure processing environment.

Information Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties without your explicit consent, except as described in this policy. We may share information with trusted service providers who assist in operating our platform, subject to strict confidentiality agreements.

We may disclose information when required by law, to protect our rights, or to ensure the safety and security of our users and services.

Data Security and Protection

We implement industry-leading security measures including end-to-end encryption, SOC2 Type II compliance, and regular security audits. Your data is protected both in transit and at rest using advanced cryptographic protocols.

Access to your data is strictly limited to authorized personnel who require it for service delivery, and all access is logged and monitored.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses and adequacy decisions.

All international transfers comply with applicable data protection laws and maintain the same level of protection as provided domestically.

Data Retention and Deletion

We retain your information for as long as necessary to provide our services and comply with legal obligations. Historical analysis data may be retained longer to maintain the integrity of longitudinal risk assessments.

You may request deletion of your personal data at any time, subject to legal and contractual obligations. We provide clear processes for data deletion and account termination.

Your Privacy Rights

You have the right to access, update, or delete your personal information. You may also request data portability, restrict processing, or object to certain uses of your data.

For users in the European Union, you have additional rights under GDPR, including the right to lodge complaints with supervisory authorities.

California Privacy Rights

California residents have specific rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected, the right to delete personal information, and the right to opt-out of the sale of personal information.

We do not sell personal information and provide clear mechanisms for exercising your California privacy rights.

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage patterns, and improve our services. You can control cookie preferences through your browser settings or our cookie management tools.

Essential cookies are necessary for platform functionality, while analytics and preference cookies help us improve our services and remember your settings.

Third-Party Integrations

Our platform integrates with various third-party services to provide comprehensive risk analysis. We carefully vet all integration partners and ensure they meet our privacy and security standards.

Data shared with integration partners is limited to what is necessary for service functionality and is governed by strict data processing agreements.

Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware of such collection, we will take steps to delete the information promptly.

Privacy Policy Updates

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of material changes through email or prominent notices on our platform.

Continued use of our services after policy updates constitutes acceptance of the revised terms.

Contact Information

If you have questions about this Privacy Policy or our privacy practices, please contact us at privacy@hindsightgrid.com or through our contact form.

For urgent privacy matters, you may also contact our Data Protection Officer directly through the contact information provided on our website.

Compliance and Certifications

HindsightGrid maintains compliance with major privacy frameworks including GDPR, CCPA, SOC2 Type II, and industry-specific regulations. We undergo regular third-party audits to ensure continued compliance.

Our privacy practices are designed to meet the highest standards of data protection while enabling effective risk management insights for our clients.