Privacy Policy

How we collect, use, and protect your personal information.

Last updated: September 23, 2025

Introduction

OrchIntel ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website orchintel.com or use our services.

Information We Collect

Information You Provide Directly

  • Newsletter Subscription: Email address when you subscribe to our newsletter
  • Contact: If you email us, we receive your email address and message

Information We Collect Automatically

We do not use cookies or analytics by default. If analytics are added in the future, they will be opt-in. See our Cookies Policy.

Information from Third Parties

  • GitHub: If you authenticate via GitHub, we may receive your GitHub profile information
  • Analytics Providers: Aggregated usage statistics and performance metrics

How We Use Your Information

We use the information we collect to:

  • Provide Services: Deliver and maintain our AI governance platform
  • Communication: Respond to inquiries, send newsletters, and provide support
  • Improvement: Analyze usage patterns to improve our services
  • Security: Protect against fraud, abuse, and security threats
  • Legal Compliance: Comply with applicable laws and regulations

Legal Basis for Processing (GDPR)

If you are in the European Union, we process your personal data based on:

  • Consent: When you subscribe to our newsletter or provide explicit consent
  • Legitimate Interest: For service improvement, security, and analytics
  • Contract Performance: To provide services you have requested
  • Legal Obligation: To comply with applicable laws

Information Sharing and Disclosure

We do not sell, trade, or rent your personal information. We may share your information in the following circumstances:

Service Providers

  • Cloud hosting providers (AWS, Cloudflare)
  • Analytics services (Google Analytics)
  • Email service providers
  • Customer support platforms

Legal Requirements

  • When required by law or legal process
  • To protect our rights and property
  • To prevent fraud or abuse
  • In case of emergency to protect user safety

Data Security

We implement appropriate technical and organizational measures to protect your personal information:

  • Encryption: Data encrypted in transit and at rest
  • Access Controls: Limited access to personal information
  • Regular Audits: Security assessments and vulnerability testing
  • Staff Training: Privacy and security awareness training

Data Retention

We retain newsletter emails for up to 12 months. You may opt out at any time by emailing help@orchintel.com.

Your Rights

Depending on your location, you may have the following rights:

General Rights

  • Access: Request copies of your personal information
  • Correction: Request correction of inaccurate information
  • Deletion: Request deletion of your personal information
  • Portability: Request transfer of your data to another service

GDPR Rights (EU Residents)

  • Right to be Forgotten: Request deletion of personal data
  • Data Portability: Receive your data in a structured format
  • Objection: Object to processing based on legitimate interests
  • Restriction: Request restriction of processing

CCPA Rights (California Residents)

  • Right to Know: Information about data collection and use
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt-out of sale of personal information
  • Non-Discrimination: Equal service regardless of privacy choices

Exercising Your Rights

To exercise your rights or opt out of communications, contact us at help@orchintel.com. We will respond within 30 days.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:

  • Adequacy Decisions: Transfers to countries with adequate protection
  • Standard Contractual Clauses: EU-approved data transfer agreements
  • Certification Schemes: Privacy Shield or similar frameworks

Children's Privacy

Our services are not intended for children under 13. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete the information promptly.

Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these sites. We encourage you to read their privacy policies.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Sending email notification to registered users
  • Updating the "Last updated" date

Contact Information

If you have questions about this Privacy Policy, please contact us:

Data Protection Officer (GDPR)

For EU residents, our Data Protection Officer can be reached at:

  • Email: help@orchintel.com
  • Subject Line: "Data Protection Officer - GDPR Inquiry"