Legal

Privacy Policy

Last updated: March 14, 2026

Griot Data Technologies Ltd (“Griot,” “we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, website, and services.

1. Information We Collect

Information you provide to us

  • Account information (name, email address, company name, job title)
  • Billing and payment information (processed by our third-party payment provider)
  • Communications you send to us (support requests, feedback, demo booking details)
  • Data contracts, schemas, and configurations you create on the platform
  • Team and organization information

Information collected automatically

  • Log data (IP address, browser type, pages visited, timestamps)
  • Device information (operating system, device identifiers)
  • Usage data (features used, actions taken, performance metrics)
  • Cookies and similar tracking technologies

2. How We Use Your Information

  • To provide, maintain, and improve our platform and services
  • To process transactions and send related information
  • To send administrative messages, updates, and security alerts
  • To respond to your comments, questions, and support requests
  • To monitor and analyze usage trends to improve user experience
  • To detect, prevent, and address technical issues and security threats
  • To comply with legal obligations and enforce our terms

3. Data Storage and Security

We implement industry-standard security measures to protect your data, including encryption in transit (TLS 1.2+) and at rest (AES-256). Our infrastructure is hosted on Google Cloud Platform with data centers that maintain SOC 2 Type II compliance.

Your data contracts and platform data are logically isolated per tenant. We do not access your data except as necessary to provide the service or as required by law.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

  • Service providers: Third-party vendors who assist in operating our platform (hosting, analytics, email delivery, CRM)
  • Legal requirements: When required by law, regulation, or legal process
  • Business transfers: In connection with a merger, acquisition, or sale of assets
  • With your consent: When you explicitly authorize us to share your information

5. Third-Party Services

Our platform integrates with or uses the following third-party services, each governed by their own privacy policies:

  • Google Cloud Platform (infrastructure and calendar services)
  • Google Analytics (usage analytics)
  • Resend (transactional email delivery)
  • Odoo (customer relationship management)

6. Cookies and Tracking

We use essential cookies to maintain your session and preferences. We may use analytics cookies to understand how our platform is used. You can control cookie preferences through your browser settings. Disabling essential cookies may affect platform functionality.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data, subject to legal obligations
  • Portability: Request your data in a structured, machine-readable format
  • Objection: Object to processing of your data for certain purposes
  • Restriction: Request restriction of processing in certain circumstances

To exercise any of these rights, contact us at info@griotdata.com.

8. Data Retention

We retain your personal information for as long as your account is active or as needed to provide services. Upon account deletion, we will remove your personal data within 30 days, except where retention is required by law or for legitimate business purposes (such as fraud prevention or audit compliance). Anonymized and aggregated data may be retained indefinitely.

9. International Data Transfers

Your data may be processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses and data processing agreements with our service providers.

10. Children's Privacy

Our platform is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the “Last updated” date. Your continued use of the platform after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Griot Data Technologies Ltd

Email: info@griotdata.com

Website: griotdata.com