ACX | PRIVACY

01. Data Collection

ACX Technologies Inc. ("ACX", "we", "us") collects only the minimum data required to operate its platforms. We do not sell, trade, or lease personally identifiable information to third parties under any circumstances. Data ingested by our systems remains within the operational enclave assigned to each client and is never shared across tenants.

02. Information We Collect

Identity Data. Name, organizational affiliation, and role designation provided during access requests.

Technical Data. IP address, browser type, operating system, and session telemetry for system integrity monitoring.

Usage Data. Anonymous interaction patterns to optimize platform performance. No behavioral profiling is conducted.

03. Data Security

All data in transit is encrypted using TLS 1.3 with forward secrecy. Data at rest is encrypted using AES-256. Our infrastructure operates across air-gapped and hybrid environments meeting or exceeding NIST 800-53 and ISO 27001 standards. Penetration testing is conducted continuously by independent third parties.

04. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy. Upon termination of a client contract, all associated data is cryptographically shredded within 30 days unless regulatory obligations require extended retention.

05. Your Rights

You have the right to access, rectify, or request deletion of your personal data at any time. All requests are processed within 72 hours. For data subject requests, contact our compliance team through the secure channel provided during onboarding.

06. Contact

For privacy-related inquiries: privacy@acx.systems