Effective: May 2026
When you create a workspace, we collect your email address, company name, and the product profiles you choose to upload for compliance analysis. We collect page-view analytics (which pages you visit) to understand how the product is used.
We never sell your data. We never share your compliance evidence or gap analysis results with third parties.
Your data is used exclusively to:
We share the minimum necessary data with:
You have the right to:
To exercise any of these rights, email privacy@regulink.xyz.
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). API keys are stored as SHA-256 hashes — plaintext keys are never persisted. Evidence artifacts are logically isolated per workspace and retained for 90 days by default.
We use a single cookie to remember your cookie consent preference. We do not use third-party tracking cookies or advertising pixels.
If we change this policy, we will notify you by email and update the effective date above. Continued use of the platform after changes constitutes acceptance.
Questions? privacy@regulink.xyz