Privacy Policy

Last updated · Placeholder — pending legal review

This Privacy Policy describes how SimpliKeys (“we”, “our”, or “us”) collects, uses, and protects information when you use our website, products, and services. The text below is a working draft and will be finalized by counsel before launch.

01

Information we collect

We collect information you provide directly (e.g., contact form submissions, account details), information collected automatically as you use the service (e.g., usage logs, device and browser metadata, IP address), and information from integrated systems you connect (identity providers, cloud accounts, SaaS apps) strictly for the purpose of delivering the SimpliKeys service.

02

How we use information

We use collected information to operate, secure, and improve the service; to authenticate users and authorize access; to monitor for fraud and abuse; to communicate with you about your account and the service; and to comply with our legal and regulatory obligations.

03

How we share information

We do not sell personal information. We share information only with: (a) sub-processors who help us operate the service under appropriate contractual safeguards; (b) your own organization’s administrators and authorized users; and (c) authorities when required by law. A current list of sub-processors will be published on this site.

04

Data retention

We retain information only as long as necessary to provide the service, meet our legal obligations, resolve disputes, and enforce our agreements. You can request deletion of personal information you provided to us at any time, subject to legal exceptions.

05

Security

We implement administrative, technical, and physical safeguards designed to protect information from unauthorized access, disclosure, alteration, and destruction. No method of transmission or storage is 100% secure. Specific safeguards (encryption-at-rest, encryption-in-transit, access controls, incident response) are described in our Trust Center.

06

International data transfers

Where information is transferred across jurisdictions, we rely on appropriate legal mechanisms, including Standard Contractual Clauses and equivalent transfer frameworks, to safeguard the information.

07

Your rights

Depending on your jurisdiction (e.g., GDPR, CCPA), you may have rights to access, correct, delete, port, or restrict processing of your personal information. To exercise these rights, contact us at the email address below.

08

Changes to this policy

We may update this policy from time to time. We will post any updates here and revise the “last updated” date above. Material changes will be communicated through the service or by email.

Questions? Reach the team at [email protected].