Particle

Privacy Policy

Privacy Policy for Unnamed ERP manufacturing platform.

Effective Date: [Date]
Last Updated: [Date]

[Company Name] ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Unnamed ERP manufacturing platform ("Service").

1. Information We Collect

1.1 Account and Profile Information

  • Name, email address, job title, and contact details
  • Company information and organizational structure
  • User preferences and account settings
  • Authentication credentials (encrypted)

1.2 Manufacturing and Business Data

  • Work order details and production schedules
  • Quality control records and inspection data
  • Inventory levels and material specifications
  • Supplier and customer information
  • Cost codes and financial data related to manufacturing
  • Machine data and operational metrics

1.3 Usage and Technical Data

  • Log files and access records
  • Device information (IP address, browser type, operating system)
  • Usage patterns and feature interactions
  • Performance metrics and error reports
  • Session data and timestamps

1.4 Communications Data

  • Support tickets and correspondence
  • Comments and collaboration within the platform
  • Notifications and alerts
  • Training session recordings (with consent)

1.5 Integration Data

  • Data from third-party systems (CAD software, accounting systems)
  • API usage and integration logs
  • Synchronized data from connected manufacturing equipment

2. How We Use Your Information

2.1 Service Provision

  • Provide and maintain the manufacturing ERP platform
  • Process work orders and manage production workflows
  • Enable quality control and inspection processes
  • Facilitate inventory and materials management
  • Generate analytics and reports

2.2 Service Improvement

  • Analyze usage patterns to improve functionality
  • Develop new features and capabilities
  • Optimize system performance and reliability
  • Enhance user experience and interface design

2.3 Communication

  • Send service-related notifications and updates
  • Provide customer support and technical assistance
  • Share product updates and new features
  • Conduct training and onboarding sessions

2.4 Security and Compliance

  • Monitor for unauthorized access and security threats
  • Maintain audit logs for compliance requirements
  • Implement security measures and access controls
  • Respond to legal requests and regulatory obligations

2.5 Business Operations

  • Process payments and manage subscriptions
  • Analyze business metrics and usage trends
  • Plan capacity and infrastructure scaling
  • Conduct research and development activities

3. Legal Basis for Processing (GDPR)

We process personal data based on the following legal grounds:

3.1 Contractual Necessity

  • Providing the ERP services you've subscribed to
  • Managing your account and subscription
  • Processing payments and billing

3.2 Legitimate Interests

  • Improving service functionality and performance
  • Ensuring platform security and preventing fraud
  • Analyzing usage for business development
  • Providing customer support

3.3 Consent

  • Marketing communications (with explicit consent)
  • Cookies and tracking technologies (where required)
  • Recording training sessions or calls

3.4 Legal Compliance

  • Responding to legal requests and court orders
  • Meeting regulatory and audit requirements
  • Maintaining records as required by law

4. Data Sharing and Disclosure

4.1 Within Your Organization

  • Data is accessible to authorized users within your organization
  • Access controls are managed by your organization's administrators
  • User permissions determine data visibility and modification rights

4.2 Service Providers

We may share data with trusted third-party service providers for:

  • Cloud hosting and infrastructure services
  • Payment processing and billing
  • Customer support tools
  • Analytics and monitoring services
  • Security and backup services

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity.

4.4 Legal Requirements

We may disclose information when required by law, regulation, or court order, or to protect our rights and safety.

4.5 Integrations

With your consent, we may share data with third-party applications you choose to integrate with our Service.

5. Data Security

5.1 Security Measures

  • Encryption in transit and at rest
  • Regular security audits and penetration testing
  • Access controls and multi-factor authentication
  • Network security and firewalls
  • Employee security training and background checks

5.2 Data Centers

  • Data is stored in certified, secure data centers
  • Physical security controls and environmental protections
  • Redundancy and backup systems
  • Geographic distribution for reliability

5.3 Incident Response

  • 24/7 security monitoring
  • Incident response procedures
  • Breach notification protocols
  • Regular security updates and patches

6. Data Retention

6.1 Active Accounts

We retain your data while your account is active and as needed to provide services.

6.2 Account Termination

  • Data may be retained for up to 30 days after account termination
  • You may request immediate data deletion
  • Some data may be retained longer for legal or compliance reasons

6.3 Legal Requirements

Certain data may be retained longer to comply with legal, regulatory, or audit requirements.

6.4 Anonymized Data

We may retain anonymized, aggregated data indefinitely for analytics and research purposes.

7. Your Rights (GDPR and Other Privacy Laws)

7.1 Access Rights

  • Request a copy of the personal data we hold about you
  • Receive information about how your data is processed

7.2 Rectification

  • Correct inaccurate or incomplete personal data
  • Update your profile and account information

7.3 Erasure (Right to be Forgotten)

  • Request deletion of your personal data
  • Subject to legal and contractual obligations

7.4 Data Portability

  • Receive your data in a structured, machine-readable format
  • Transfer your data to another service provider

7.5 Restriction of Processing

  • Limit how we process your personal data in certain circumstances

7.6 Objection

  • Object to processing based on legitimate interests
  • Opt out of marketing communications

7.7 Consent Withdrawal

  • Withdraw consent where processing is based on consent
  • Does not affect the lawfulness of processing before withdrawal

8. International Data Transfers

8.1 Global Operations

Our Service may involve data transfers to countries outside your jurisdiction.

8.2 Safeguards

We implement appropriate safeguards for international transfers:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by relevant authorities
  • Other legally recognized transfer mechanisms

8.3 EU-US Data Transfers

For EU data subjects, we comply with applicable data protection frameworks and regulations.

9. Cookies and Tracking Technologies

9.1 Essential Cookies

  • Authentication and session management
  • Security and fraud prevention
  • Service functionality and preferences

9.2 Analytics Cookies

  • Usage analytics and performance monitoring
  • Error tracking and diagnostics
  • Feature usage and adoption metrics

9.3 Your Choices

  • Browser settings to control cookies
  • Opt-out mechanisms for non-essential cookies
  • Impact on service functionality when cookies are disabled

10. Children's Privacy

Our Service is not intended for individuals under 16 years of age. We do not knowingly collect personal information from children under 16.

11. California Privacy Rights (CCPA)

11.1 Information Collection and Use

California residents have the right to know what personal information we collect and how it's used.

11.2 Right to Delete

California residents may request deletion of their personal information.

11.3 Right to Non-Discrimination

We will not discriminate against you for exercising your privacy rights.

11.4 Sale of Personal Information

We do not sell personal information to third parties.

12. Third-Party Links and Services

Our Service may contain links to third-party websites or integrate with external services. This Privacy Policy does not apply to third-party sites or services.

13. Updates to This Privacy Policy

13.1 Notification of Changes

  • We will notify you of material changes to this Privacy Policy
  • Notice will be provided through email or platform notifications
  • Continued use constitutes acceptance of updated terms

13.2 Review Frequency

We review and update this Privacy Policy annually or as needed for legal compliance.

14. Data Controller and Processor Roles

14.1 Data Controller

Your organization acts as the data controller for employee and business data entered into the system.

14.2 Data Processor

We act as a data processor, processing data on behalf of your organization according to your instructions.

14.3 Data Processing Agreement

A separate Data Processing Agreement (DPA) governs our processing of your data as a processor.

15. Contact Us

15.1 Privacy Questions

For questions about this Privacy Policy or our privacy practices:

15.2 Data Protection Officer

Our Data Protection Officer can be reached at:

15.3 Exercising Your Rights

To exercise your privacy rights or make a request:

  • Submit a request through your account settings
  • Email us at [privacy@company.com]
  • Contact our support team

15.4 Supervisory Authority

EU residents have the right to lodge a complaint with their local supervisory authority.

Company Information:
[Company Name]
[Company Address]
Email: [privacy@company.com]

This Privacy Policy is effective as of [Date] and was last updated on [Date].