Privacy Policy
Last updated: September 16, 2025
Orchetta Inc ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our customer journey mapping service (the "Service"), accessible at www.orchetta.com. This policy applies to all users worldwide.
Information We Collect
Personal Information
We collect information you provide directly to us, including:
- Name and contact information (email address)
- Account credentials (encrypted passwords)
- Profile information and preferences
- Customer journey mapping data and content you create
- Communication and support requests
Automatically Collected Information
When you use our Service, we automatically collect certain information:
- Device information (IP address, browser type, operating system)
- Usage data (pages viewed, features used, time spent)
- Log files and error reports
- Cookies and similar tracking technologies
How We Use Your Information
We use the collected information for the following purposes:
- Providing, operating, and maintaining our Service
- Improving and personalizing your experience
- Processing transactions and managing accounts
- Communicating with you about updates, support, and promotional offers
- Analyzing usage patterns to enhance our Service
- Detecting, preventing, and addressing security issues
- Complying with legal obligations
Information Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share your information in the following limited circumstances:
- Service Providers: Third-party vendors who assist in operating our Service (hosting, analytics, payment processing)
- Legal Requirements: When required by law, regulation, or legal process
- Business Transfers: In connection with mergers, acquisitions, or asset sales
- Consent: When you explicitly consent to the sharing
- Workspace Collaboration: With other members of your workspace as necessary for the Service functionality
Data Security
We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, secure data transmission, access controls, and regular security assessments.
Data Retention
We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When you delete your account, we will delete your personal information within a reasonable timeframe, except where retention is required for legal or business purposes.
Your Rights and Choices
Depending on your location and applicable privacy laws (including GDPR, CCPA, PIPEDA, and other regional regulations), you may have the following rights regarding your personal information:
- Access: Request access to your personal information
- Correction: Request correction of inaccurate information
- Deletion: Request deletion of your personal information
- Portability: Request transfer of your data to another service
- Objection: Object to certain processing of your information
- Restriction: Request restriction of processing in certain circumstances
To exercise these rights, please contact us at support@orchetta.com. We will respond to your request within a reasonable timeframe and in accordance with applicable law.
Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your experience on our Service. You can control cookie settings through your browser preferences, though disabling cookies may limit certain functionality of the Service.
Third-Party Services
Our Service may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to these third parties, and we encourage you to review their privacy policies before providing any personal information.
International Data Transfers
As we serve users globally, your personal information may be transferred to and processed in Canada, the United States, or other countries where we or our service providers operate. These countries may have different data protection laws than your country of residence. When we transfer personal information internationally, we ensure appropriate safeguards are in place to protect your information, including using standard contractual clauses, adequacy decisions, or other lawful transfer mechanisms as required by applicable privacy laws.
Children's Privacy
Our Service is not intended for children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information promptly.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of the Service after such changes constitutes acceptance of the updated Privacy Policy.
Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:
Global Privacy Compliance
As a Canadian company serving users worldwide, we comply with applicable privacy laws in the jurisdictions where we operate and serve users, including:
- Canada: Personal Information Protection and Electronic Documents Act (PIPEDA) and provincial privacy laws
- European Union: General Data Protection Regulation (GDPR)
- United States: California Consumer Privacy Act (CCPA) and other applicable state privacy laws
- Other jurisdictions: Applicable local privacy and data protection regulations
We are committed to protecting your personal information in accordance with the highest privacy standards and best practices, regardless of your location.