Privacy Policy
Last updated: February 23, 2026
1. Information We Collect
We collect account, organization, and usage data required to deliver the Varentus service, including policy workflow activity and governance configuration data.
2. Discovery Data
Discovery sources may include workspace activity events, employee declarations, and uploaded spend data. We focus on tool names, metadata, and governance signals, not employee message content.
3. How We Use Data
We use collected data to provide governance workflows, generate compliance outputs, improve product quality, secure the platform, and communicate service updates.
4. Data Sharing
We do not sell personal information. We share data only with service providers needed to operate the platform (for example hosting, billing, and email delivery).
5. Data Retention and Security
We retain data only as needed for service delivery, legal obligations, and security operations. Data is protected with technical and organizational safeguards.
6. Your Rights
Depending on your jurisdiction, you may have rights to access, correct, export, or delete your data. Contact us to submit privacy requests.
7. International Transfers
If data is transferred across regions, we use appropriate contractual and security controls consistent with applicable law.
8. Contact
For privacy questions or requests, contact [email protected].