Your privacy matters. Learn how we protect your data with enterprise-grade security and transparent practices.
At Siragai, we are committed to protecting your privacy and ensuring the security of your personal information. We collect and process data only as necessary to provide our AI and automation services, and we never sell or share your data with third parties for marketing purposes.
This privacy policy covers all information collected through our website, services, and interactions with Siragai. It applies to personal data, business data, and any information you provide during consultations, pilots, or ongoing AI implementations.
Yes, Siragai is fully compliant with GDPR, CCPA, and other major data protection regulations. We have implemented comprehensive data protection measures and respect all rights granted under these regulations, including the right to access, correct, delete, and port your data.
We retain data only as long as necessary to provide our services and meet legal obligations. Personal data is typically retained for the duration of our business relationship plus 7 years for legal compliance. You can request deletion of your data at any time, subject to legal requirements.
We will notify you of any material changes to our privacy policy via email and by posting updates on our website. We recommend reviewing our privacy policy periodically. Continued use of our services after changes indicates acceptance of the updated policy.
For any privacy-related questions or concerns, please contact our Data Protection Officer at admin@siragai.com. We are committed to addressing your concerns promptly and transparently, typically responding within 48 hours.
We collect information necessary to provide our AI services including: name, email, company details, project requirements, usage data, and technical specifications. We only collect data that is essential for service delivery and business communications.
We collect information through various channels: website forms, email communications, phone consultations, demo sessions, and during the implementation of our AI solutions. We also collect technical data through cookies and analytics tools to improve our services.
We only collect sensitive data when absolutely necessary for AI model training or compliance purposes, and only with explicit consent. This may include industry-specific data for healthcare, finance, or other regulated sectors, always under strict security protocols.
Yes, you have control over your data collection. You can opt out of non-essential data collection, manage cookie preferences, and specify what information you're comfortable sharing. We will always respect your data preferences and boundaries.
We use essential cookies for website functionality and analytics cookies to understand user behavior and improve our services. We also use tracking pixels for email communications. You can manage your cookie preferences through our cookie settings.
After project completion, we retain only essential data for legal compliance and ongoing support. Project-specific data is archived securely and can be deleted upon request. We follow strict data minimization principles to reduce our data footprint.
We use your data to provide AI services, improve our solutions, communicate with you, and fulfill contractual obligations. This includes training AI models, generating insights, providing support, and ensuring service quality. We never use your data for purposes beyond what you've agreed to.
We only share data with trusted service providers who help us deliver our services (cloud providers, analytics tools, payment processors). We never sell your data or share it for marketing purposes. All third-party access is governed by strict contractual agreements.
Data used for AI training is anonymized and aggregated whenever possible. We only use your specific data to train models for your project with your explicit consent. Training data is secured, and models are designed to protect individual privacy while improving overall performance.
We process data based on legitimate business interests, contractual necessity, legal compliance, and your consent. For AI services, we rely on contractual necessity and legitimate interests. For marketing communications, we require your explicit consent, which you can withdraw anytime.
We may use automated analysis to improve our services and provide personalized recommendations, but we don't make significant automated decisions about individuals without human oversight. You have the right to request human review of any automated decisions that affect you.
Yes, you can opt out of non-essential data uses including marketing communications, analytics, and certain data processing activities. However, opting out of essential data processing may limit our ability to provide some services. We'll clearly explain any limitations.
We implement enterprise-grade security measures including encryption at rest and in transit, multi-factor authentication, regular security audits, and SOC 2 compliance. Our infrastructure is hosted on secure cloud platforms with 99.9% uptime guarantees and comprehensive backup systems.
In the unlikely event of a data breach, we have incident response procedures in place. We will notify affected customers within 72 hours and provide detailed information about what happened, what data was involved, and steps we're taking to address the issue and prevent future breaches.
Data is stored in secure, tier-1 data centers with physical security, environmental controls, and redundant systems. We primarily use AWS and Microsoft Azure with data residency options to meet regional compliance requirements. All storage locations are SOC 2 Type II certified.
Yes, we maintain SOC 2 Type II certification, ISO 27001 compliance, and undergo regular third-party security assessments. Our security practices are audited annually, and we maintain cyber insurance to provide additional protection for our clients.
All data transmission uses TLS 1.2 or higher encryption with perfect forward secrecy. We implement certificate pinning, HSTS headers, and encrypted VPN connections for all data transfer. API communications use OAuth 2.0 and JWT tokens with time-limited access.
We implement role-based access controls (RBAC), principle of least privilege, and multi-factor authentication for all system access. Employee access is regularly reviewed and immediately revoked upon role changes. All access is logged and monitored for suspicious activity.
Under GDPR and CCPA, you have the right to access, correct, delete, port, and restrict processing of your personal data. You can also object to certain processing activities and withdraw consent for marketing communications. We provide easy-to-use tools to exercise these rights.
You can request a copy of your personal data by contacting admin@siragai.com or using our data request portal. We'll provide a comprehensive report within 30 days, including all data we hold about you, its sources, and how it's being used.
Yes, you have the right to request deletion of your personal data ("right to be forgotten"). We'll process deletion requests within 30 days, though some data may be retained for legal compliance. We'll notify you if any data cannot be deleted and explain why.
You can request corrections to your personal data through our customer portal or by contacting our support team. We'll verify and update inaccurate information within 30 days. For some corrections, we may need additional verification to ensure data integrity.
Yes, you have the right to data portability. We provide your data in machine-readable formats (JSON, CSV, XML) so you can transfer it to other services. This includes all personal data you've provided and data generated through your use of our services.
If you're unsatisfied with our privacy practices, contact admin@siragai.com first. If we can't resolve your concern, you have the right to file a complaint with your local data protection authority
For privacy-related inquiries, contact our Data Protection Officer at admin@siragai.com. For urgent privacy concerns, we're available 24/7. Regular inquiries are responded to within 48 hours.
Privacy policy updates are posted on our website at siragai.com/privacy, and we maintain a change log showing all modifications. We also email notifications to active users about significant changes. Version history is available for transparency.
Our Data Protection Officer is available Monday-Friday, 9 AM-6 PM EST for privacy consultations. For urgent privacy matters or data breaches, we have 24/7 emergency support. Email inquiries are monitored continuously with response within 48 hours.
Yes, we offer privacy training sessions for client teams working with AI systems. This includes data handling best practices, GDPR compliance training, and privacy-by-design principles. Training can be customized for your industry and specific use cases.
Report privacy concerns immediately to admin@siragai.com. We treat all reports seriously and investigate promptly. You can also report anonymously through our secure web portal. Whistleblower protections apply to all good-faith reports.