EAscope

Privacy Policy

Last updated: February 2025

1. Introduction

EAscope ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our enterprise architecture mapping platform (the "Service").

By using the Service, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, and organization details when you create an account
  • Authentication Data: Credentials used for login, including Microsoft Entra ID tokens when using SSO
  • Business Data: Information you input into the Service, including capability models, application inventories, business drivers, and roadmap data
  • Communications: Information you provide when contacting us for support or feedback

2.2 Information Collected Automatically

  • Usage Data: Pages visited, features used, and actions taken within the Service
  • Device Information: Browser type, operating system, and device identifiers
  • Log Data: IP addresses, access times, and referring URLs
  • Cookies: Session cookies to maintain your login state and preferences

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Authenticate users and maintain account security
  • Process and store your business data as you use the Service
  • Send important notifications about the Service
  • Respond to your inquiries and provide support
  • Analyze usage patterns to improve user experience
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

4. Data Storage and Security

Your data is stored securely using industry-standard practices:

  • Data is encrypted in transit using TLS/SSL
  • Data is encrypted at rest in our database
  • Access to data is restricted to authorized personnel only
  • We use secure cloud infrastructure providers
  • Regular security audits and monitoring are performed

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

  • With Your Organization: Data within your organization's account is accessible to authorized members of your organization
  • Service Providers: We use third-party services for hosting, analytics, and other operations, bound by confidentiality agreements
  • Legal Requirements: When required by law, court order, or governmental authority
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you explicitly authorize us to share your information

6. Your Rights and Choices

You have the following rights regarding your data:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data, subject to legal retention requirements
  • Export: Request export of your data in a portable format
  • Opt-out: Opt out of non-essential communications

To exercise these rights, contact us at beta@eascope.com.

7. Cookies and Tracking

We use the following types of cookies:

  • Essential Cookies: Required for authentication and basic functionality
  • Preference Cookies: Remember your settings and preferences (e.g., dark mode)
  • Analytics Cookies: Help us understand how users interact with the Service

You can control cookie settings through your browser preferences.

8. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. After account termination:

  • Business data may be retained for 30 days before permanent deletion
  • Account information may be retained longer for legal compliance
  • Anonymized usage data may be retained for analytics purposes

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

10. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. Third-Party Services

The Service integrates with third-party services that have their own privacy policies:

  • Microsoft Entra ID: For single sign-on authentication
  • Cloud Hosting Providers: For data storage and processing

We encourage you to review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the Service. Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at beta@eascope.com.

Back to Home