Legal

Privacy Policy

Last updated: May 2025

1. Information We Collect

We collect information you provide directly — such as your name, email address, company name, and payment details when you register for a demo, create an account, or subscribe to a plan. We also collect usage data automatically when you interact with the platform, including IP addresses, browser type, pages visited, and feature usage, to help us operate and improve the service.

2. How We Use Your Information

We use collected information to provide and operate the ERP5SOL platform, process payments, send transactional communications (invoices, receipts, security alerts), respond to support requests, and improve the product. We do not sell your personal data to third parties. We may share data with trusted service providers (payment processors, infrastructure providers) under strict data-processing agreements.

3. Multi-Tenant Data Isolation

Each tenant (client) on the ERP5SOL platform operates within an isolated database schema. Tenant data is logically and physically separated. Super admins have platform-level access; tenant admins can only access their own schema. We enforce row-level access controls and audit all cross-tenant operations.

4. Data Retention

We retain account data for as long as your subscription is active and for a period thereafter as required by applicable law or legitimate business purposes. Upon account closure, we will delete or anonymize your personal data within 90 days, unless we are required to retain it for legal compliance.

5. Cookies

We use strictly necessary cookies to maintain your session and authenticate requests. We use analytics cookies (with your consent where required) to understand feature usage. You can control cookie preferences through your browser settings or our cookie consent banner.

6. Security

ERP5SOL is built on an ISO 27001-certified security framework. Data is encrypted in transit (TLS 1.2+) and at rest (AES-256). We perform regular penetration testing, vulnerability scanning, and access reviews. Employees with access to production data are bound by confidentiality agreements.

7. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, delete, or port your personal data. To exercise these rights, contact us at privacy@erp5sol.com. We will respond within 30 days. ERP5SOL is GDPR-compliant for EU/EEA users and follows applicable data protection laws in other jurisdictions.

8. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date and notify active subscribers via email for material changes. Continued use of the platform after notice constitutes acceptance of the updated policy.

9. Contact

If you have questions about this policy or our data practices, contact us at privacy@erp5sol.com or write to: [FILL: Legal Company Name], Data Protection Officer, [FILL: Registered Address].