We use cookies to enhance your experience and analyze site usage.

Cookie Policy

Cookie Preferences

EAPWorks Studio

Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your information.

Last updated: March 15, 2024

Information We Collect

Personal Information

We collect information you provide directly to us, such as when you:

  • Create an account or use our services
  • Contact us for support or inquiries
  • Subscribe to our communications
  • Participate in surveys or feedback
  • Register for webinars or training sessions
  • Download whitepapers or technical documentation
  • Request product demonstrations or consultations
  • Submit support tickets or technical questions
  • Engage with our customer success team

This may include your name, email address, phone number, company information, job title, industry sector, network configuration details, and other contact or professional details necessary for service provision.

Technical Information

We automatically collect certain information when you use our platform:

  • Device information (IP address, browser type, operating system, device identifiers)
  • Usage data (pages visited, time spent, features used, click patterns)
  • Network configuration data (for service provision and troubleshooting only)
  • Log files and performance metrics
  • Authentication and access logs
  • Error reports and diagnostic information
  • Security event logs and threat detection data
  • API usage statistics and integration data
  • Session recordings for support and improvement purposes
  • Geolocation data (country and region level only)
  • Referral sources and marketing attribution data

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services and platform functionality
  • Process transactions and send related information including confirmations and invoices
  • Send technical notices, updates, security alerts, and support messages
  • Respond to your comments, questions, and customer service requests
  • Monitor and analyze trends, usage, and activities to improve user experience
  • Detect, investigate, and prevent fraudulent transactions and other illegal activities
  • Comply with legal obligations and protect our rights and those of our users
  • Conduct security assessments and vulnerability testing
  • Provide personalized recommendations and technical guidance
  • Generate anonymized analytics and industry benchmarking reports
  • Facilitate customer onboarding and training programs
  • Maintain audit trails for compliance and regulatory requirements

Information Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties except in the following circumstances:

Service Providers

We may share your information with third-party service providers who perform services on our behalf, such as:

  • Cloud hosting and infrastructure providers (AWS, Microsoft Azure)
  • Payment processing services and financial institutions
  • Customer support platforms and helpdesk systems
  • Analytics and monitoring services
  • Email marketing and communication platforms
  • Security scanning and threat detection services
  • Backup and disaster recovery providers
  • Legal and professional services consultants
  • Audit and compliance verification services

Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities, including to meet national security or law enforcement requirements.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your personal information is transferred and becomes subject to a different privacy policy.

Consent-Based Sharing

We may share your information with your explicit consent for specific purposes, such as integration with third-party business applications or participation in industry research studies.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • End-to-end encryption of data in transit using TLS 1.3 and at rest using AES-256
  • Regular security assessments, penetration testing, and vulnerability scans
  • Multi-factor authentication and role-based access controls
  • Employee training on data protection practices and security awareness
  • Incident response and breach notification procedures
  • Network segmentation and intrusion detection systems
  • Regular security audits by independent third-party assessors
  • Secure development practices and code review processes
  • Data loss prevention (DLP) systems and monitoring
  • Physical security controls for data centers and office facilities
  • Vendor security assessments and contractual data protection requirements

Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this policy. Specific retention periods include:

  • Account information: Retained for the duration of your subscription plus 7 years for legal compliance
  • Transaction records: Retained for 7 years as required by financial regulations
  • Support communications: Retained for 3 years for service improvement and training
  • Usage logs: Retained for 2 years for security monitoring and analytics
  • Marketing communications: Retained until you unsubscribe or request deletion
  • Security logs: Retained for 5 years for incident investigation and compliance
  • Backup data: Retained for 1 year in encrypted, secure storage

When we no longer need your personal information, we will securely delete or anonymize it in accordance with our data retention policies and applicable legal requirements.

Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

  • Access: Request access to your personal information and details about how we process it
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information (subject to legal retention requirements)
  • Portability: Request a copy of your information in a structured, machine-readable format
  • Restriction: Request restriction of processing under certain circumstances
  • Objection: Object to certain types of processing, including direct marketing
  • Withdraw Consent: Withdraw consent for processing based on consent
  • Lodge Complaints: File complaints with relevant data protection authorities
  • Opt-out: Unsubscribe from marketing communications at any time

To exercise these rights, please contact us using the information provided below. We will respond to your request within 30 days and may require verification of your identity.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your use of our services. These technologies help us:

  • Remember your preferences and settings
  • Analyze website traffic and user behavior
  • Provide personalized content and recommendations
  • Detect and prevent fraud and security threats
  • Measure the effectiveness of our marketing campaigns
  • Improve our services and user experience

For detailed information about our use of cookies, including how to manage your cookie preferences, please see our Cookie Policy.

International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States where our primary servers are located. We ensure that such transfers are conducted in accordance with applicable data protection laws and implement appropriate safeguards to protect your information, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions for countries with equivalent data protection standards
  • Binding Corporate Rules for intra-group transfers
  • Certification schemes and codes of conduct

Children's Privacy

Our services are not intended for children under the age of 16, and we do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

  • Posting the updated policy on this page with a new "Last updated" date
  • Sending email notifications to registered users
  • Displaying prominent notices on our platform
  • Providing in-app notifications for significant changes

We encourage you to review this policy periodically for any changes. Your continued use of our services after the effective date of any changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: [email protected]

Phone: +1 (646) 284-0951

Address:
EAPWorks Studio
Data Protection Officer
2335 W Caribbean Ln
Phoenix, AZ 85023, USA

For EU residents, you may also contact our EU representative at [email protected].