Privacy Policy | AutomateSOC2

Last updated: January 1, 2026

1. Information We Collect

AutomateSOC2 collects information you provide directly, including your name, email address, organization details, and compliance data you upload to the platform.

2. How We Use Your Information

We use your information solely to provide and improve our SOC 2 compliance management services. We do not sell your personal data to third parties.

3. Data Security

All data is encrypted at rest and in transit. We maintain comprehensive audit logs and follow industry best practices for data protection. Evidence files are stored in encrypted cloud storage with strict access controls.

4. Data Retention

We retain your data for as long as your account is active. Upon account deletion, your data will be permanently removed within 30 days.

5. Contact

For privacy-related inquiries, contact us at privacy@automatesoc2.com.