← Back to Home

Privacy Policy

Last updated: December 12, 2025

1. Introduction

PartnerAlly, Inc. ("PartnerAlly," "we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (partnerally.com) or use our services.

This policy applies to all users worldwide and includes specific provisions for residents of the European Economic Area (EEA), United Kingdom (UK), and California, USA.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide when you:

  • Fill out forms on our website (demo requests, newsletter signups, contact forms)
  • Create an account or register for our services
  • Upload documents for compliance analysis
  • Use our platform features
  • Contact us via email, chat, or phone
  • Participate in surveys or promotions

This may include: name, email address, company name, job title, phone number, billing information, and content you upload to our platform.

2.2 Information Collected Automatically

When you visit our website or use our services, we automatically collect:

  • Device information (browser type, operating system, device identifiers)
  • IP address and approximate location
  • Pages visited and features used
  • Time spent on pages and interaction data
  • Referring website or source
  • Cookies and similar tracking technologies

2.3 Information from Third Parties

We may receive information from:

  • Business partners and integration providers (with your authorization)
  • Publicly available sources
  • Social media platforms (if you connect your account)

3. How We Use Your Information

We use collected information to:

  • Provide, operate, and improve our services
  • Process and analyze compliance documents using our AI (see our Ethical AI Policy)
  • Personalize your experience
  • Communicate with you about our services, updates, and support
  • Send marketing communications (with your consent where required)
  • Process transactions and billing
  • Detect, prevent, and address security issues and fraud
  • Comply with legal obligations
  • Enforce our terms and policies

3.1 Legal Bases for Processing (EEA/UK)

For users in the EEA and UK, we process personal data based on:

  • Contract: Processing necessary to provide our services to you
  • Consent: Where you have given explicit consent (e.g., marketing emails)
  • Legitimate Interests: For our business operations, security, and improving services
  • Legal Obligation: To comply with applicable laws

4. AI Processing of Your Data

PartnerAlly uses Ethical AI to analyze documents and provide compliance insights. When you use our AI-powered features:

  • Your documents are processed to identify compliance gaps and generate recommendations
  • AI processing is transparent — you can see how decisions are made
  • You maintain control and can override AI recommendations
  • Complete audit trails are maintained
  • We do not use your data to train AI models without explicit consent

For more details, please see our Ethical AI Policy.

5. How We Share Your Information

We do not sell your personal information. We may share information with:

  • Service Providers: Third parties that help us operate our business (hosting, analytics, payment processing, customer support)
  • Business Partners: With your consent, for integrations you enable
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with mergers, acquisitions, or asset sales
  • With Your Consent: For any other purpose with your explicit consent

6. Data Retention

We retain personal information for as long as necessary to:

  • Provide our services to you
  • Comply with legal obligations (including audit trail requirements)
  • Resolve disputes and enforce agreements

When you delete your account, we will delete or anonymize your personal information within 30 days, except where retention is required by law or for legitimate business purposes.

7. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • Encryption of data in transit (TLS 1.3) and at rest (AES-256)
  • Access controls and authentication requirements
  • Regular security assessments and penetration testing
  • Employee security training
  • Incident response procedures

For more details, see our Security page.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. When we transfer data internationally, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • UK International Data Transfer Agreement where applicable
  • Other legally recognized transfer mechanisms

9. Cookies and Tracking Technologies

We use cookies and similar technologies for:

  • Essential Cookies: Required for website functionality and security
  • Analytics Cookies: Help us understand how visitors use our site
  • Marketing Cookies: Used to deliver relevant advertisements (with consent)

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect website functionality.

10. Your Rights Under GDPR (EEA/UK Residents)

If you are located in the European Economic Area or United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR):

  • Right to Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
  • Right Not to be Subject to Automated Decision-Making: Request human review of automated decisions that significantly affect you

To exercise these rights, contact us at privacy@partnerally.com. We will respond within 30 days.

You also have the right to lodge a complaint with your local data protection authority.

11. Your Rights Under CCPA (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

11.1 Right to Know

You have the right to request that we disclose:

  • Categories of personal information we collected
  • Categories of sources from which information was collected
  • Business or commercial purpose for collecting or selling information
  • Categories of third parties with whom we share information
  • Specific pieces of personal information we collected about you

11.2 Right to Delete

You have the right to request deletion of personal information we collected from you, subject to certain exceptions.

11.3 Right to Correct

You have the right to request correction of inaccurate personal information.

11.4 Right to Opt-Out of Sale/Sharing

We do not sell your personal information. We do not "share" your personal information for cross-context behavioral advertising as defined by the CPRA.

11.5 Right to Limit Use of Sensitive Personal Information

If we collect sensitive personal information, you have the right to limit its use. Currently, we only use sensitive personal information as necessary to provide our services.

11.6 Right to Non-Discrimination

We will not discriminate against you for exercising any of your CCPA rights.

11.7 How to Exercise Your Rights

To exercise your California privacy rights, you may:

We will verify your identity before processing requests. You may designate an authorized agent to submit requests on your behalf.

11.8 Categories of Personal Information Collected

In the past 12 months, we have collected the following categories of personal information:

CategoryCollected
Identifiers (name, email, IP address)Yes
Commercial information (transaction history)Yes
Internet activity (browsing, usage data)Yes
Professional information (job title, company)Yes
Inferences (preferences, characteristics)Yes

11.9 Financial Incentive Programs

We do not offer financial incentives for the collection of personal information.

12. Other U.S. State Privacy Rights

Residents of Virginia, Colorado, Connecticut, Utah, and other states with comprehensive privacy laws have similar rights to access, delete, and correct personal information. Contact us at privacy@partnerally.com to exercise your rights.

13. Children's Privacy

Our services are not directed to children under 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

14. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to review their privacy policies.

15. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we will provide additional notice via email.

16. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

PartnerAlly, Inc.

Email: privacy@partnerally.com

Data Protection Officer: dpo@partnerally.com

For GDPR inquiries, you may also contact our EU representative at: eu-representative@partnerally.com

Related Policies

Ethical AI PolicyTerms of ServiceSecurity