Business Data Privacy Policy

Secure handling of business data and compliance with enterprise requirements

Business Data Collection

We collect business data only through explicit, opt-in agreements. Our collection policy follows these strict guidelines:

  • API integration metadata
  • Enterprise account activity logs
  • Usage statistics with 30-day retention
  • Custom field data from opt-in partners

Enterprise-Grade Security

We implement business-specific protections including:

256-bit AES

End-to-end encrypted data transit

Zero-Knowledge

No access to decrypted data

SOC 2 Type II

Annual third-party audits required

Business Compliance

For enterprise clients, we maintain compliance with:

  • ISO 27701 Data Privacy Framework
  • CCPA for business-to-business data
  • EU SCCs for Cross-boundary transfers
  • GLBA Safeguards rule for financial data
Annual
Documentation updates
Quarterly
Security reviews

Business Data Rights

Enterprise clients maintain full control over their data with these management options:

Data Deletion

Complete removal of all business records on demand

Export

Download encrypted data in standard formats

Audit

Access our compliance documentation archive