Privacy Policy

This Privacy Policy (“Policy”) describes how DataDots Inc. (“DataDots,” “we,” “our,” or “us”) collects, uses, discloses, and protects information in connection with our enterprise analytics and manufacturing intelligence platform (the “Services”).

This Policy applies to:

Visitors to our corporate website and communications channels;

Authorized users of the DataDots Services under enterprise contracts; and

Customer organizations (“Customers”) that integrate their systems and data sources with our platform.

By using our Services or interacting with DataDots, you agree to this Policy.

1. Who We Are

DataDots Inc. is a Delaware-incorporated C Corporation that provides data intelligence software enabling manufacturing and engineering organizations to analyze and connect complex enterprise data systems (e.g., PLM, ERP, CAD, SAP, SharePoint, etc.).

DataDots acts as a data processor (or “service provider”) with respect to Customer Data processed on behalf of Customers, and as a data controller only for limited administrative and marketing activities.

2. Information We Collect

2.1. Information You Provide Directly

We may collect information that you or your organization provide, including:

  • Account Information: Name, business email address, role, and authentication credentials.

  • Billing and Contract Information: Company name, billing address, and payment details (processed via secure third-party payment providers).

  • Communications: Emails, chat messages, and feedback provided during support interactions or sales communications.

  • Integrations and Configurations: Metadata or credentials necessary to connect enterprise systems (e.g., API tokens, OAuth keys) — always stored securely and encrypted.

2.2. Information We Process on Behalf of Customers (“Customer Data”)

Our Services enable Customers to connect and analyze their business and technical data, Metadata and analytics extracted from connected systems, and User activity within the Customer’s enterprise environment.

DataDots does not sell, share, or use Customer Data for any purpose other than providing and improving the Services.

2.3. Automatically Collected Information

When you access our platform or website, we may automatically collect:

  • Usage Data: Log files, device identifiers, IP addresses, browser types, pages viewed, and timestamps;

  • Telemetry: Performance metrics and diagnostic data used for security, debugging, and product improvement;

  • Cookies & Similar Technologies: Only functional and analytics cookies; no tracking or advertising cookies are used.

3. How We Use Information

We use collected information to:

  • Provide, maintain, and secure our Services;

  • Authenticate users and manage accounts;

  • Deliver technical support and customer success;

  • Analyze and improve system performance and functionality;

  • Comply with legal obligations; and

  • Communicate with Customers regarding updates, service notices, and contract matters.

We may use aggregated or anonymized data to improve our algorithms and insights — never in a form that identifies any Customer or individual.

4. Legal Basis for Processing (EEA/UK Customers)

For Customers or users in the European Economic Area or United Kingdom, our legal bases for processing include:

  • Contract Performance: To deliver the Services per our agreements.

  • Legitimate Interests: To improve security, functionality, and product reliability.

  • Legal Obligations: To comply with applicable law.

  • Consent: When required for specific optional activities (e.g., newsletters).

5. Data Sharing and Transfers

We may share data as follows:

  • Service Providers: With trusted vendors who perform hosting, billing, or security functions under written confidentiality and data-processing agreements.

  • Legal Compliance: When required by law, subpoena, or governmental request.

  • Business Transfers: In the event of a merger, acquisition, or sale of assets, subject to confidentiality safeguards.

DataDots may process data in the United States and other jurisdictions where it or its subprocessors operate. All international transfers are governed by appropriate safeguards such as Standard Contractual Clauses (SCCs) under the GDPR.

6. Data Security

We employ administrative, technical, and organizational measures consistent with ISO 27001 and SOC 2 Type II standards, including:

  • AES-256 encryption at rest and TLS 1.3 encryption in transit;

  • Access control and least-privilege policies;

  • Continuous monitoring and vulnerability management;

  • Annual third-party security assessments.

7. Data Retention

We retain Customer Data for the duration of the enterprise agreement or as required to fulfill contractual or legal obligations. Upon termination or Customer request, DataDots will delete or return Customer Data in accordance with its Data Processing Addendum (DPA) and data retention policy.

8. Customer Rights

  • Depending on applicable law, you may have rights to:

  • Access, correct, or delete personal data;

  • Object to or restrict certain processing;

  • Request portability of your personal data; or

  • Lodge a complaint with a data-protection authority.

  • Customers may exercise these rights by contacting us at info@datum.co

9. Cookies and Analytics

We use first-party cookies and analytics tools (e.g., privacy-preserving telemetry) to monitor service performance. No advertising or cross-site tracking cookies are used. You can disable non-essential cookies through your browser settings.

11. Changes to This Policy

We may update this Policy periodically to reflect changes in our practices or legal requirements. Material changes will be communicated via email or through our platform.

12. Contact Us

If you have questions or requests regarding this Privacy Policy or our data-protection practices, please contact:

DataDots Inc.

Email: info@datum.co