How We Use Your Information

What Information We Collect

We only collect information that is necessary to provide, improve, and secure our geospatial infrastructure services. This includes:

• Account Information: Name, email address, organization, and role when you register or manage your team.
• Geospatial Data: Maps, layers, coordinates, metadata, and associated files you upload or process through our platform.
• Usage & Analytics Data: API calls, rendering metrics, session duration, feature usage, and performance logs to optimize service delivery.
• Technical Information: IP address, browser type, device identifiers, and connection logs required for security and troubleshooting.
• Communication Records: Emails, support tickets, and survey responses submitted voluntarily.

How We Use Your Information

We use collected information strictly for the following purposes:

• Service Delivery: Processing, rendering, and delivering map layers, spatial queries, and API responses in real time.
• Platform Optimization: Monitoring server performance, reducing latency, and scaling infrastructure based on usage patterns.
• Security & Compliance: Detecting unauthorized access, preventing fraud, and meeting legal/regulatory obligations.
• Communication: Sending service alerts, maintenance notices, billing statements, and security updates.
• Product Improvement: Analyzing aggregated, anonymized usage trends to develop new features and enhance user experience.

How We Share & Protect Data

We do not sell, trade, or rent your personal information. Data is only shared under controlled circumstances:

• Trusted Service Providers: Cloud hosting, email delivery, and analytics vendors bound by strict data processing agreements.
• Legal Requirements: When compelled by law, regulation, or legitimate legal process.
• Business Transfers: In the event of a merger or acquisition, with appropriate notice and continued confidentiality obligations.

All data in transit is encrypted using TLS 1.3+. Data at rest is encrypted with AES-256. Access to internal systems follows principle of least privilege, multi-factor authentication, and regular security audits.

Data Retention & Deletion

We retain information only as long as necessary to fulfill the purposes outlined in this policy:

• Active account data is retained for the duration of your subscription.
• Deleted accounts and associated geospatial data are permanently purged within 30 days, subject to backup rotation cycles.
• Usage logs and security records are retained for up to 12 months for compliance and troubleshooting.
• Aggregated, anonymized analytics may be retained indefinitely as they cannot be linked back to individuals.

Your Rights & Choices

Depending on your jurisdiction, you may have the right to:

• Access, export, or correct your personal information
• Request deletion of your data (subject to legal retention requirements)
• Opt out of non-essential communications
• Restrict or object to certain processing activities
• Lodge a complaint with a relevant data protection authority

To exercise these rights, contact our Privacy Team. We will respond within 30 days and verify your identity before processing requests.

Updates to This Policy

We may update this page periodically to reflect changes in our practices, technology, or legal requirements. Significant changes will be communicated via email or platform notification. The 'Last Updated' date at the top of this page will always reflect the most recent revision.

Questions? Contact Us

If you have concerns about how we handle your information, need assistance with data access, or want to discuss enterprise data processing agreements, our Privacy & Compliance team is here to help.