Aegis

Privacy Policy

Last updated: December 2024

1. Introduction

Euraika B.V. ("Aegis," "we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Aegis compliance platform and related services.

We process personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Information We Collect

2.1 Information You Provide

  • Account information (name, email, company name)
  • Profile information and preferences
  • Content you upload (policies, risks, evidence)
  • Communications with us
  • Payment information (processed by our payment providers)

2.2 Information Collected Automatically

  • Usage data (features used, actions taken)
  • Device information (browser, OS, IP address)
  • Log data and analytics
  • Cookies and similar technologies

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and send related information
  • Send technical notices and support messages
  • Respond to your comments and questions
  • Analyze usage patterns and improve user experience
  • Detect, prevent, and address security issues
  • Comply with legal obligations

4. Legal Basis for Processing (GDPR)

We process personal data under the following legal bases:

  • Contract performance: To provide our services under your subscription agreement
  • Legitimate interests: For analytics, security, and service improvement
  • Legal obligation: To comply with applicable laws and regulations
  • Consent: For marketing communications (where required)

5. Your Rights (GDPR)

Under GDPR, you have the following rights:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your personal data
  • Restriction: Request limitation of processing
  • Portability: Receive your data in a portable format
  • Object: Object to processing based on legitimate interests
  • Withdraw consent: Where processing is based on consent

To exercise these rights, contact us at privacy@aegis.io.

6. Data Sharing

We may share your information with:

  • Service providers: Cloud hosting, payment processing, analytics
  • Legal requirements: When required by law or legal process
  • Business transfers: In connection with mergers or acquisitions

We do not sell your personal data to third parties.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including encryption at rest and in transit, access controls, regular security assessments, and employee training. However, no method of transmission over the Internet is 100% secure.

8. Data Retention

We retain your personal data for as long as necessary to provide our services and fulfill the purposes described in this policy. After account termination, we retain data for a reasonable period to comply with legal obligations and resolve disputes.

9. Cookies

We use cookies and similar technologies for:

  • Essential cookies: Required for platform functionality
  • Analytics cookies: To understand how you use our services
  • Preference cookies: To remember your settings

You can control cookies through your browser settings.

10. International Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure appropriate safeguards are in place, such as Standard Contractual Clauses, for any international transfers.

11. Contact Us

For privacy-related inquiries or to exercise your rights:

Data Protection Officer

Euraika B.V.

Amsterdam, Netherlands

privacy@aegis.io

You also have the right to lodge a complaint with your local data protection authority.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.