Privacy Policy
Last updated: July 2026
1. Information We Collect
AzurCompass™ ("we," "us," or "our") collects information you provide directly, including account registration data (name, email, company), business data you upload or connect (financial, operational, HR, program data), scorecard submissions, and contact form inquiries. We also collect usage data including dashboard interactions, AI copilot conversations, and feature usage patterns to improve our service.
2. AI Output Disclaimers
AI suggestions generated by AzurCompass are high-level, concept-stage suggestions and are NOT financial, legal, tax, accounting, medical, or investment advice. All AI-generated content is produced from your connected data and general business knowledge. Figures shown are estimates with stated assumptions. You must consult qualified professionals before acting on any suggestion. We make no guarantees about the accuracy, completeness, or applicability of AI-generated insights.
3. How We Use Your Data
Your identifiable business data is used to power your personalized dashboards, AI insights, and reports, and is kept under per-tenant isolation. Your data is never sold to third parties.
Anonymized data used for training and improvement. Some data derived from your use of the Service may be de-identified, anonymized, and/or aggregated — with all personally identifiable information and company-identifying details removed and privacy safeguards applied (including k-anonymity and enforced minimum cohort sizes) — and such anonymized data may be used to train, evaluate, and improve AzurCompass™ and its AI models, to develop benchmarks, and to build new features and services. Anonymized and aggregated data cannot reasonably be used to identify you, your organization, or any individual. Customers on Enterprise agreements may request a contractual opt-out from having their anonymized data used for AI model training; contact [email protected].
4. Data Sharing & Consent
No business data is shared with Tech-Azur consulting or any third party without your explicit, signed consent. The "Engage Tech-Azur" flow requires a detailed consent screen itemizing exactly which data will be shared, for what purpose, and the retention period. You may withdraw consent at any time.
5. Personal Performance Vault
Data stored in the Personal Performance Vault is encrypted with a key derived from your credentials. Company administrators, other users, and Tech-Azur staff cannot access your vault data. Only you can view, export, or delete this data.
6. Data Retention
Active account data is retained for the duration of your subscription. Upon cancellation, you have 90 days to export your data before deletion. Scorecard submissions are retained for 24 months. Contact inquiries are retained for 12 months. Audit logs are retained for 7 years for compliance purposes.
7. Benchmark Data
Cross-client benchmark data is strictly opt-in. When you opt in, your data is k-anonymized (minimum cohort sizes enforced) with differential-privacy noise injection. No individual company can be identified from benchmark reports. Benchmark applicability varies by industry and company size — benchmarks are directional indicators, not absolute standards.
8. Your Rights
You have the right to: access all data we hold about you; request correction of inaccurate data; request deletion of your data ("right to be forgotten"); export your data in standard formats; opt out of benchmark participation; withdraw consent for data sharing at any time.
9. Cookies
We use essential cookies for authentication and session management. Analytics cookies (optional) help us understand platform usage. You can manage cookie preferences in your browser settings.
10. Sub-Processors
We use the following categories of sub-processors: cloud infrastructure (hosting and storage), AI model providers (for copilot functionality), authentication services, and email delivery. A current list of sub-processors is available upon request.
11. Security
We employ TLS 1.3 encryption in transit, AES-256 encryption at rest, per-tenant encryption keys, role-based access control, two-factor authentication, and comprehensive audit logging. See our Security page for full details.
12. Contact
For privacy-related inquiries, contact us at [email protected] or through our contact form.
