Back to Home
TradeEximOSTradeEximOS

Privacy Policy

Effective date: 1 April 2026  ·  Last updated: 5 April 2026

TradeEximOS is committed to handling your data responsibly. This Policy explains what we collect, why we collect it, how we protect it, and what rights you have.

AES-256 Encryption at Rest
TLS 1.2+ In Transit
GCP India Region
Daily Encrypted Backups
RBAC + MFA Access Controls

1. Data We Collect

  • Account data: name, email address, organisation name, and billing details provided during registration or subscription.
  • Usage data: pages visited, features used, session duration, and interaction logs — collected automatically via cookies and server logs.
  • Business data: leads, contacts, orders, quotations, products, email campaigns, social posts, and any other content you upload or create within the platform.
  • Integration data: when you connect third-party services (Gmail, Outlook, LinkedIn, HubSpot, etc.), we store the OAuth tokens and any data synced through those integrations.
  • AI interaction data: prompts, queries, and outputs generated through AI features, used to improve model accuracy and platform quality (see Section 6).

2. How We Protect Your Data

  • All data is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption on cloud storage.
  • Our infrastructure runs on Google Cloud Platform (GCP) with data hosted in India (asia-south1 region) to comply with data localisation norms.
  • Access to production databases is restricted to authorised personnel only, via role-based access controls (RBAC) and multi-factor authentication.
  • We conduct regular vulnerability scans and penetration tests. Security findings are triaged and resolved according to severity SLAs.
  • We maintain an incident response plan. In the event of a data breach, affected users will be notified within 72 hours as required by applicable law.
  • Backups are taken daily, encrypted, and stored in geographically separate storage for disaster recovery.

3. How We Use Your Data

  • To operate and deliver the TradeEximOS platform, including processing your subscriptions, running your campaigns, and powering AI features.
  • To communicate with you about your account, billing changes, product updates, and support queries.
  • To analyse aggregated, anonymised usage patterns to improve the platform. We never use individual business data (leads, orders, etc.) for this purpose.
  • To comply with legal obligations, including tax regulations, court orders, or lawful requests from regulatory authorities.

4. Data Sharing & Third Parties

  • We do not sell, rent, or trade your personal or business data to any third party for marketing or commercial purposes.
  • We share data with trusted sub-processors only to the extent necessary to run the platform (e.g., cloud infrastructure, email delivery, payment processors). All sub-processors are bound by data processing agreements.
  • If you use a third-party connector (e.g., LinkedIn, Salesforce), data you choose to sync is governed by both this Policy and the third party's own privacy policy.
  • We may disclose data if required by law, regulation, or a valid governmental request, and will notify you where permitted to do so.

5. Your Rights

  • Access: you may request a copy of all personal data we hold about you at any time.
  • Correction: if any data we hold is inaccurate or incomplete, you may request a correction.
  • Deletion: you may request deletion of your account and associated personal data. Business data (leads, orders, etc.) is deleted within 30 days of account closure.
  • Data portability: you may export your business data (leads, contacts, orders, products) in CSV format from within the platform at any time.
  • Withdrawal of consent: where processing is based on consent (e.g., marketing emails), you may withdraw consent at any time without affecting prior processing.
  • To exercise any of these rights, contact privacy@tradeeximOS.com. We will respond within 15 business days.

6. AI & Data Usage

  • AI features (win probability, content generation, market strategy, buyer discovery) process your data locally within our infrastructure — your business data is never sent to third-party AI providers in a way that trains their public models.
  • We use anonymised, aggregated signals across the platform to improve our own AI models. Individual business data (specific leads, orders, customers) is never used for cross-customer model training.
  • AI-generated outputs are suggestions only. TradeEximOS is not liable for business decisions made on the basis of AI recommendations.

7. Data Retention

  • Paid subscription data is retained for the duration of your subscription plus 12 months, to support billing disputes and regulatory requirements.
  • Free plan data is retained for as long as the account is active plus 6 months following account deletion.
  • After the retention period, data is securely purged from all systems including backups within 90 days.
  • Certain metadata (e.g., billing records) may be retained for up to 7 years as required by Indian tax and accounting laws.

8. Cookies & Tracking

  • We use essential cookies required for the platform to function (session management, authentication). These cannot be disabled.
  • We use analytics cookies to understand how the platform is used. These are anonymised and you may opt out via your account settings.
  • We do not use third-party advertising or tracking cookies.

Privacy questions or data requests?

privacy@tradeeximOS.com

© 2026 TradeEximOS. All rights reserved.  · Terms of Service