Your Privacy Matters

Privacy Policy

We are committed to protecting your privacy and ensuring the security of your personal information. This policy explains how we collect, use, and safeguard your data.

Last updated: October 19, 2025

Effective: October 1, 2025

Table of Contents

1. Introduction2. Information We Collect3. How We Use Your Information4. Information Sharing and Disclosure5. Data Security6. Your Privacy Rights7. Data Retention8. Cookies and Tracking Technologies9. International Data Transfers10. Children's Privacy11. Changes to This Policy

1. Introduction

At Ordavia, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our inventory management platform. By using our services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We collect several types of information to provide and improve our services:

Personal Information

  • Name, email address, and contact information
  • Account credentials (encrypted passwords)
  • Profile information and preferences
  • Business information (company name, tax ID, address)

Business Data

  • Inventory and product information
  • Customer and supplier data
  • Order and transaction history
  • Financial information related to your business operations

Usage Information

  • Device information (browser type, OS, device ID)
  • IP address and location data
  • Activity logs and feature usage patterns
  • Performance metrics and error reports

Payment Information

  • Processed securely through third-party payment providers
  • We do not store full credit card numbers
  • Billing address and payment method type
  • Transaction history and invoices

3. How We Use Your Information

We use the collected information for various purposes:

Service Delivery

  • Provide, maintain, and improve our platform
  • Process transactions and send related notifications
  • Enable core features like inventory tracking and reporting
  • Provide customer support and respond to inquiries

Communication

  • Send technical notices and security alerts
  • Provide product updates and feature announcements
  • Send marketing communications (with your consent)
  • Request feedback and conduct surveys

Analytics and Improvement

  • Analyze usage patterns to improve user experience
  • Develop new features and functionality
  • Monitor and analyze trends and performance
  • Conduct research and development

Legal Compliance

  • Comply with legal obligations and regulations
  • Enforce our Terms of Service
  • Protect against fraud and security threats
  • Respond to legal requests and prevent harm

4. Information Sharing and Disclosure

We may share your information in the following circumstances:

Service Providers

  • Cloud hosting and infrastructure providers
  • Payment processors and billing services
  • Email and communication service providers
  • Analytics and monitoring tools

Business Transfers

  • In connection with mergers, acquisitions, or asset sales
  • During bankruptcy or similar proceedings
  • With your consent or at your direction

Legal Requirements

  • To comply with applicable laws and regulations
  • In response to valid legal requests
  • To protect our rights and property
  • To prevent fraud and ensure platform security

Important Note

  • We do not sell your personal information to third parties
  • We do not share your data for advertising purposes
  • All third-party providers are bound by confidentiality agreements

5. Data Security

We implement robust security measures to protect your information:

Technical Security

  • TLS/SSL encryption for data in transit
  • AES-256 encryption for data at rest
  • Secure database access with role-based permissions
  • Regular security audits and penetration testing

Operational Security

  • Multi-factor authentication for user accounts
  • Secure password hashing with bcrypt
  • Regular security training for employees
  • Incident response and breach notification procedures

Infrastructure Security

  • SOC 2 compliant data centers
  • DDoS protection and firewalls
  • Regular backups and disaster recovery plans
  • 24/7 security monitoring and alerting

6. Your Privacy Rights

You have the following rights regarding your personal information:

Access and Portability

  • Request a copy of your personal data
  • Export your data in a machine-readable format
  • View all data we have collected about you

Correction and Updates

  • Correct inaccurate or incomplete information
  • Update your account and profile settings
  • Modify your communication preferences

Deletion and Restriction

  • Delete your account and associated data
  • Request deletion of specific information
  • Restrict processing of your data
  • Object to certain data processing activities

Marketing Communications

  • Opt-out of promotional emails at any time
  • Unsubscribe from newsletters and updates
  • Manage notification preferences in your account

7. Data Retention

We retain your information for different periods depending on the type of data:

Account Data

  • Retained while your account is active
  • 30 days after account deletion for recovery
  • Permanently deleted after 30-day grace period

Business Data

  • Retained for as long as you use our service
  • Available for export before account deletion
  • May be retained longer if required by law

Usage and Analytics Data

  • Aggregated data retained for up to 2 years
  • Individual activity logs retained for 6 months
  • Anonymized data may be retained indefinitely

Legal and Compliance Data

  • Financial records retained for 7 years (tax compliance)
  • Support communications retained for 3 years
  • Security logs retained for 1 year

8. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

Essential Cookies

  • Authentication and session management
  • Security and fraud prevention
  • Core functionality and preferences

Analytics Cookies

  • Usage statistics and performance monitoring
  • Feature adoption and user behavior analysis
  • Error tracking and debugging

Cookie Control

  • You can control cookies through browser settings
  • Disabling cookies may affect functionality
  • We respect Do Not Track browser signals

9. International Data Transfers

Your information may be transferred and processed in different countries:

Data Location

  • Primary data storage in United States data centers
  • Backup systems in multiple geographic regions
  • Cloud infrastructure across multiple availability zones

International Compliance

  • We comply with GDPR for European users
  • Standard contractual clauses for data transfers
  • Adequate data protection measures in all regions

10. Children's Privacy

Our service is not intended for children under 13 years of age:

Age Requirements

  • Users must be at least 13 years old to use our service
  • Business accounts require users to be 18 or older
  • We do not knowingly collect data from children
  • We will delete children's data if discovered

11. Changes to This Policy

We may update this Privacy Policy from time to time:

Notification Process

  • Material changes will be communicated via email
  • Updates posted on this page with revision date
  • Continued use constitutes acceptance of changes
  • You can review previous versions upon request

Questions About This Policy?

If you have any questions about this Privacy Policy or our data practices, please don't hesitate to contact us.

Privacy Team Email

contact@ordavia.com

This Privacy Policy is governed by the laws of the United States and the State of California. We reserve the right to update this policy at any time. Material changes will be communicated via email or through prominent notices in our service.