Privacy Policy

Last updated: November 10, 2025

InfoXiom (“we”, “our”, “us”) provides data governance, analytics, and AI services. This Privacy Policy explains what personal data we collect, how we use it, and your choices. If you have questions, contact info@infoxiom.com.

1. Scope

This Policy applies to our website (including landing pages) and to our sales, support, and service-delivery activities with clients and prospective clients.

2. Data We Collect

Website & Analytics: IP address, device/browser info, pages viewed, referral URLs, approximate geolocation, cookies (see Cookie Policy).
Contact & Sales: name, work email, phone, company, role, message content, meeting details, and related communications.
Service Delivery: client stakeholder data, user access records, configuration metadata, logs/telemetry needed to provide our services.
Billing: invoicing details and limited payment metadata (we do not store raw card numbers).
Recruitment: CVs, profiles, and interview notes for candidates.

3. How We Use Data

Provide and improve our website, products, and services.
Respond to inquiries, schedule demos, and manage client relationships.
Secure our environments, prevent abuse, and diagnose performance issues.
Comply with legal obligations and enforce agreements.
With consent, send updates or marketing you can opt out of anytime.

4. Legal Bases

Where applicable (e.g., GDPR/UAE PDPL), we rely on one or more of: consent, contract performance, legitimate interests (e.g., security, product improvement), and legal obligations.

5. Sharing & Processors

We may share data with vetted service providers (hosting, security, analytics, communications, billing) who process data on our behalf under contractual safeguards. We may disclose data to comply with law, to protect rights/safety, or in corporate transactions (e.g., merger). We do not sell personal data.

6. International Transfers

We operate globally (e.g., UAE, KSA, Canada). When transferring data across borders, we use appropriate safeguards such as standard contractual clauses or equivalent mechanisms, plus technical/organizational measures.

7. Retention

We keep personal data only as long as necessary for the purposes described or as required by law and contractual obligations. Typical retention: marketing contacts (until opt-out or inactivity), service logs (90–365 days unless required longer), contracts and billing (statutory periods).

8. Security

We apply defense-in-depth controls aligned with industry practices (access control, encryption in transit/at rest where applicable, monitoring, and least-privilege). No method of transmission or storage is 100% secure.

9. Your Rights

Depending on your location (e.g., GDPR, UAE PDPL, UK GDPR, CPRA), you may have rights to access, correct, delete, restrict, or object to processing; portability; and to withdraw consent. You may also have the right to lodge a complaint with a supervisory authority. To exercise rights, email info@infoxiom.com.

10. Cookies

See our Cookie Policy for details on types of cookies and how to control them.

11. Children

Our site and services are for business use and not directed to children. We do not knowingly collect data from children.

12. Changes

We may update this Policy from time to time. Material changes will be indicated by a new “Last updated” date.