Privacy Policy

Your privacy and data security are fundamental to everything we do at Orchestrator. This policy outlines our commitment to protecting your information and maintaining your trust.

Effective Date: November 4, 2025

GDPR Compliant
SOC 2 Type II
ISO 27001
Zero Data Breaches

What Information We Collect

Consultation Requests

When you schedule a consultation, we collect:

  • First and last name
  • Email address
  • Your automation goals and transformation objectives

Website Usage Analytics

We collect minimal, privacy-focused website usage data to improve our services:

  • Pages visited and time spent
  • Referral sources (where you came from)
  • General location (country/region only)
  • Device type and browser (no fingerprinting)

No cookies, no personal data, no tracking across sites. All data is aggregated and anonymized.

How We Use Your Information

Communication

Respond to consultation requests and provide information about our services.

Service Delivery

Coordinate meetings and deliver AI consulting services tailored to your needs.

Data Security & Protection

Technical Safeguards

  • End-to-end encryption
  • Secure data transmission (TLS/SSL)
  • Regular security audits
  • Access controls and authentication

Operational Security

  • Data sovereignty
  • Privacy by design
  • Minimal data collection
  • Zero data selling or sharing

Third-Party Services

We use carefully selected third-party services to deliver our consultation scheduling system:

Resend Email Service

Used exclusively for sending consultation confirmation emails. Your data is processed securely and never stored permanently by the email service.

Your Privacy Rights

Data Access & Control

  • • Request access to your personal data
  • • Request correction of inaccurate data
  • • Request deletion of your data
  • • Data portability (export your data)

Communication Preferences

  • • Opt-out of communications at any time
  • • Withdraw consent for data processing
  • • Request information about data usage
  • • Lodge complaints with supervisory authorities

Data Retention & Deletion

We retain your personal information only as long as necessary to fulfill the purposes outlined in this policy:

Consultation Requests

Retained for 2 years or until you request deletion

Project Data

Deleted within 30 days after project completion

Website Analytics

Anonymized and aggregated, retained for 13 months

Client Confidentiality

For our consulting clients, we maintain the highest standards of confidentiality:

Business Clients

  • • All case studies require explicit client approval
  • • Data anonymization for public materials
  • • NDA protection for all project work
  • • Client-controlled data access and retention

Individual Clients

  • • Consent-first approach to all data use
  • • Identity protection through anonymization
  • • Local processing where possible
  • • No data tracking or behavioral profiling

Policy Updates

We may update this privacy policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. When we make material changes, we will:

  • Update the effective date at the top of this policy
  • Notify existing clients via email if the changes are significant
  • Provide a 30-day notice period for material changes
  • Maintain a version history for transparency

Privacy Questions?

If you have any questions about this privacy policy or how we handle your data, we're here to help. Transparency is a core value at Orchestrator.

Privacy Officer: privacy@orchestrator.ai

General Inquiries: hello@orchestrator.ai

Schedule a Privacy Consultation