Privacy Policy - Your organizational data privacy is our priority

When you use Critelytics, we collect information that helps us provide AI-powered organizational assessments:

• Organizational information: Company name, size, industry, and structure

• Assessment data: Survey responses, performance metrics, and organizational indicators

• User information: Names, email addresses, and job titles of assessment participants

• Technical data: IP addresses, browser information, and platform usage analytics

• Integration data: Information from connected HR, project management, and communication platforms

We use collected information exclusively to provide and improve our services:

• Generate AI-powered organizational assessments and insights

• Create personalized dashboards and reports for your organization

• Provide predictive analytics and risk identification

• Facilitate integrations with your existing organizational tools

• Improve our AI models and platform functionality (using anonymized data only)

• Communicate with you about your assessments and account

We implement enterprise-grade security measures to protect your organizational data:

• Industry-standard security compliance and regular audits

• End-to-end encryption for all data transmission and storage

• Complete data isolation - your information is never mixed with other organizations

• Regular security penetration testing and vulnerability assessments

• Role-based access controls and multi-factor authentication

• Data centers with physical security and environmental controls

We never sell your organizational data. Limited sharing occurs only in these circumstances:

• With your explicit consent for specific integrations or partnerships

• To service providers who assist in platform operations (under strict confidentiality agreements)

• When required by law or to protect legal rights

• In anonymized, aggregated form for industry research (no identifying information)

• In the event of a merger or acquisition (with advance notice and opt-out options)

You maintain control over your organizational data:

• Access: Request copies of all data we have about your organization

• Correction: Update or correct any inaccurate information

• Deletion: Request removal of your data (subject to legal retention requirements)

• Portability: Export your data in machine-readable formats

• Objection: Opt out of certain data processing activities

• Withdrawal: Remove consent for specific data uses at any time

Critelytics operates globally while ensuring data protection:

• Primary data processing occurs within the European Union

• International transfers use approved mechanisms (Standard Contractual Clauses)

• Enterprise customers can request data residency in specific regions

• We comply with GDPR, CCPA, and other applicable privacy regulations

• Regular assessments ensure ongoing compliance with international standards

We retain data only as long as necessary for legitimate business purposes:

• Active assessment data: Retained while your account is active

• Historical assessments: Kept for trend analysis (up to 7 years)

• Technical logs: Automatically deleted after 90 days

• Marketing communications: Until you unsubscribe

• Legal requirements may require longer retention in some cases

• Upon account deletion, most data is removed within 30 days