Privacy Policy

1. Information We Collect

1.1 Information You Provide

We collect information that you voluntarily provide to us, including:

• Account Information: Name, email address, phone number, company name, job title
• Business Information: Company size, industry, procurement needs, supplier preferences
• Payment Information: Billing address, payment method details (processed securely through third-party payment processors)
• Communications: Messages, feedback, and support requests you send to us
• Profile Data: Preferences, settings, and customizations you make to your account

1.2 Automatically Collected Information

When you use our Platform, we automatically collect certain information:

• Usage Data: Pages visited, features used, time spent, click patterns
• Device Information: IP address, browser type, operating system, device identifiers
• Log Data: Access times, error logs, performance data
• Cookies: Session cookies, preference cookies, analytics cookies

1.3 Information from Third Parties

We may receive information about you from:

• Business partners and suppliers in our network
• Public databases and industry sources
• Social media platforms (if you choose to connect your account)
• Analytics and service providers

2. How We Use Your Information

We use the collected information for the following purposes:

Purpose	Description
Service Delivery	Provide, maintain, and improve our Platform services
AI Matching	Power our AI algorithms to provide accurate supplier recommendations
Personalization	Customize your experience and provide relevant content
Communications	Send service updates, newsletters, and marketing materials (with consent)
Analytics	Analyze usage patterns to improve our Platform
Security	Detect, prevent, and address fraud and security issues
Compliance	Comply with legal obligations and enforce our Terms of Service

3. Data Sharing and Disclosure

3.1 When We Share Your Information

We may share your information in the following circumstances:

• With Your Consent: When you explicitly authorize us to share your information
• Service Providers: With trusted third-party vendors who help us operate the Platform
• Business Partners: With suppliers in our network (only information necessary for matching)
• Legal Requirements: When required by law, court order, or government request
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Protection of Rights: To protect our rights, property, or safety, or that of our users

3.2 What We Don't Share

We never sell your personal information to third parties for their marketing purposes.

4. Data Security

We implement industry-leading security measures to protect your information:

• Encryption: AES-256 encryption for data at rest and TLS 1.3 for data in transit
• Access Controls: Role-based access with multi-factor authentication
• Security Audits: Regular third-party security assessments and penetration testing
• Compliance: SOC 2 Type II, ISO 27001, and GDPR compliant
• Monitoring: 24/7 security monitoring and incident response
• Data Centers: Secure, certified data centers with physical security

While we implement robust security measures, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security but continuously work to protect your information.

5. Your Privacy Rights

5.1 Access and Control

You have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your personal information (subject to legal requirements)
• Portability: Receive your data in a structured, machine-readable format
• Opt-Out: Unsubscribe from marketing communications at any time
• Restriction: Request limitation of how we process your data
• Objection: Object to certain types of processing

5.2 Exercising Your Rights

To exercise any of these rights, please contact us at privacy@supplysphere.xyz. We will respond to your request within 30 days.

6. Cookies and Tracking Technologies

6.1 Types of Cookies We Use

• Essential Cookies: Required for the Platform to function properly
• Performance Cookies: Help us understand how users interact with the Platform
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Collect data about usage patterns

6.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of the Platform.

7. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy. Specific retention periods include:

• Account Data: Retained while your account is active plus 90 days after closure
• Transaction Records: Retained for 7 years for legal and accounting purposes
• Marketing Data: Retained until you opt-out or request deletion
• Log Data: Retained for 90 days for security and troubleshooting

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions for data transfers
• Binding Corporate Rules where applicable

9. Children's Privacy

Our Platform is not intended for children under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date
• Sending an email notification for significant changes

Your continued use of the Platform after such changes constitutes acceptance of the updated Privacy Policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

• Email: privacy@supplysphere.xyz
• Phone: +1 (431) 340-7979
• Address: 123 Supply Chain Avenue, Suite 500, New York, NY 10001
• Data Protection Officer: dpo@supplysphere.xyz

12. Regulatory Compliance

12.1 GDPR (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with your local supervisory authority.

12.2 CCPA (California Users)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect and the right to opt-out of the sale of personal information (we do not sell personal information).