What we collect, and what we don't.
Last updated 2026-06-30. We collect the minimum needed to run an identity-lifecycle pipeline (joiner, mover, leaver) and reply to your pilot application. Nothing is shared, sold, or used for advertising.
Contact
For privacy questions or data-subject requests (access, correction, deletion), email matei_necula@outlook.com or use the pilot application form. We respond within 30 days. A dedicated privacy@ alias will replace this address once our domain is live.
What we collect from this website
- Pilot application form: your name, work email, company, and the stack you tell us about. Submitted via Formspree; reaches our inbox; deleted after 12 months if the pilot doesn't move forward.
- No analytics, no cookies, no fingerprinting. This site doesn't run Google Analytics, Plausible, or any other third-party tracker. Fonts are self-hosted, so the page makes no third-party requests at all.
What we collect during a pilot
- Per-tenant API credentials stored in HashiCorp Vault, encrypted at rest, rotated per documented schedule. We never copy these out of Vault.
- Lifecycle decision records — the intent packet, the OPA decision, the executed actions, the audit chain entries. Retained for the duration of your contract plus 7 years (typical SOC 2 retention).
- Minimal employee personal data: the work email and HRIS ID of the person being onboarded, moved, or offboarded — plus the given/family name where provisioning a new account requires it. No salary, no personal contact info, no manager relationships beyond what's required to route HITL approvals.
Where data lives
Production deployments run on Fly.io (US East regions by default; EU regions available on request). Postgres for application state. Vault for credentials and signing keys. Kafka for the audit chain. All in the same region as your tenant's primary residency.
Subprocessors
- Cloudflare — DNS, CDN, this website.
- Fly.io — application hosting.
- Google (Gemini API) — natural-language parsing of intake messages. Zero data retention per Vertex AI data processing.
- Formspree — pilot form intake.
Lawful basis (GDPR)
- Pilot application data — our legitimate interest in responding to your enquiry, plus steps taken at your request before entering a contract.
- Customer operational data — performance of our contract with the customer. For the personal data of offboarded employees, the customer is the data controller and we act as a processor under a Data Processing Agreement.
International transfers
Deployments default to US regions (Fly.io US-East); EU regions are available on request and keep data in-region. Where EU personal data is transferred to the US, we rely on the Standard Contractual Clauses (SCCs) and the safeguards set out in our Data Processing Agreement.
Your rights
Under GDPR and CCPA you can request access to, correction of, deletion of, or a portable copy of your personal data, and you can object to or restrict its processing. To exercise any of these, email matei_necula@outlook.com or use the pilot form with the subject "data request". We respond within 30 days and never charge for a first request. For personal data we process on a customer's behalf, we forward your request to that customer (the controller) and assist them in responding.
Changes to this policy
If we change anything material, we'll email every active pilot. The current version always lives at this URL.