Privacy Policy
CustomerNode provides software and AI-assisted workflow tools for organizations. This Privacy Policy describes how CustomerNode collects, uses, stores, and protects personal information in connection with the Services. For additional details regarding customer data processing, please refer to the Data Processing Addendum and the Trust Center.
1. GDPR Compliance
We are committed to complying with the GDPR for users in the EU/EEA. This includes respecting your rights to data access, rectification, erasure ("right to be forgotten"), data portability, and objection to processing. EU users can exercise these rights through their account settings or by contacting us at [email protected]. To submit a data deletion request, please use our Data Deletion Request Form.
2. International Data Transfer
Where data originates in the EEA and is transferred outside it, CustomerNode relies on Standard Contractual Clauses approved by the European Commission, as further described in the Data Processing Addendum.
3. Cookies and Tracking Technologies
The CustomerNode site uses cookies and similar technologies for site functionality, session management, and basic analytics. You can manage your cookie preferences through your browser settings. We do not sell personal information to third parties for advertising purposes.
4. Information Collection and Use
4.1 Personal Information
We collect personal information when you interact with our website, create an account, or use the Services. This includes details such as your name, business email address, organization, and authentication metadata. Within the platform, tenants configure the fields they wish to collect from their users; users have discretion over the information they provide. Access and changes to personal information are logged.
4.2 Usage Information
We collect non-personal data about your interactions with the Services for analytical and operational purposes, including usage metrics, browser types, and activity logs.
5. Information Security
5.1 Data Protection Measures
CustomerNode maintains administrative, technical, and organizational safeguards designed to protect personal information, including encryption in transit (TLS 1.2 or higher) and encryption at rest for data stored in production databases and object storage. Additional detail is available in the Security overview.
5.2 Third-Party Service Providers
CustomerNode uses a defined set of third-party subprocessors to deliver the Services. The current list, along with the purpose, region, and disablement status for each, is published on the Subprocessors page.
5.3 Generative AI Data Protections
CustomerNode does not use customer data to train shared or general-purpose foundation models. CustomerNode may perform tenant-specific AI functionality, optimization, retrieval augmentation, embeddings, fine-tuning, or model adaptation where explicitly enabled for that tenant; any such processing is logically isolated to the applicable tenant environment, may be disabled by tenant administrators, and is not used to improve shared models across customers. CustomerNode configures supported third-party AI providers to prohibit training on submitted customer data for shared models where such controls are available.
6. Data Storage and Retention
6.1 Data Storage
Customer data is stored on cloud infrastructure located in the United States.
6.2 Data Retention
We retain personal information for as long as necessary to provide the Services and to comply with applicable legal obligations, after which it is securely deleted or anonymized. Specific retention and deletion timing for customer data is set in the Data Processing Addendum.
7. Information Sharing
7.1 Third-Party Disclosure
We do not sell or trade personal information. We share personal information with third parties only as necessary to provide the Services, to comply with legal obligations, or to protect the safety of CustomerNode, our users, or the public.
7.2 Specifics on Third-Party Sharing
Personal information may be shared with third parties under legal obligations, in connection with a merger or acquisition, or with subprocessors as listed on the Subprocessors page.
7.3 Anonymized Aggregated Data
We may share aggregated and anonymized data with third parties for analytical purposes.
8. Your Rights and Choices
8.1 Access and Correction
You can access and update your personal information through your account or by contacting us at [email protected].
8.2 Opt-Out
You may opt out of marketing communications at any time. Essential service-related communications will continue.
9. Consent and Withdrawal
Where consent is required by applicable law, CustomerNode obtains consent through explicit user action prior to the relevant processing activity. Where consent has been given, it may be withdrawn at any time through account settings or by contacting us at [email protected].
10. Children's Privacy
The Services are intended for use by businesses. CustomerNode does not knowingly collect personal information from individuals under 16; any such information identified will be promptly deleted.
11. Tenant Data Access and Control
CustomerNode is a multi-tenant platform. Tenants share infrastructure but are logically isolated at the application layer, with each tenant's data segregated and protected by access controls evaluated on every privileged request. Additional detail is in the Tenant isolation section of the Security overview.
11.1 Tenant Control
Each tenant administers its own data, including managing internal and external access permissions for users of that tenant.
11.2 Profile Visibility
Certain user profile information, such as display names and profile images, may be visible to other authenticated users of the platform as part of collaboration and identity features.
12. Updates to this Privacy Policy
This Privacy Policy may be updated from time to time. Continued use of the Services following any such update constitutes acceptance of the revised Policy.
13. Contact Us
If you have questions or concerns about this Privacy Policy or the handling of your personal information, please contact us at [email protected].
Effective Date: 6/23/2023
Last Updated: 5/19/2026