Privacy Policy

1. Information We Collect

We collect the following categories of information:

• Account information: Name, email address, and password (stored as a secure hash)
• AWS metadata: Resource names, ARNs, configuration states, security findings, and cost data from your connected AWS accounts
• Usage data: Pages visited, features used, and actions taken within the platform
• Technical data: IP address, browser type, and device information for security and troubleshooting purposes

We do not access or store the content of data within your AWS resources (e.g., S3 object contents, database records, or secrets).

2. How We Use Your Information

We use the information collected to:

• Provide, operate, and improve the PerchOps platform
• Run security scans, compliance checks, and cost analyses on your AWS infrastructure
• Send account-related emails (verification, alerts, product updates)
• Detect and prevent fraud, abuse, and security incidents
• Comply with legal obligations

We do not sell your personal data to third parties.

3. Data Storage and Security

All data is stored on AWS infrastructure in the United States. We implement the following security measures:

• Encryption in transit using TLS 1.2 or higher
• Encryption at rest using AES-256
• AWS Secrets Manager for credential storage
• Role-based access controls limiting internal data access
• Regular security audits and vulnerability assessments

4. AWS Access and Credentials

When you connect an AWS account, PerchOps stores IAM role ARNs and external IDs to assume your AWS roles. We use AWS STS (Secure Token Service) with temporary credentials — we never store long-lived AWS access keys unless you explicitly choose access key authentication. You can revoke our access at any time by deleting the IAM role from your AWS account.

5. Data Sharing

We may share your data with:

• Service providers: AWS (infrastructure), email delivery providers, and analytics services that help us operate the platform
• Legal authorities: When required by law, court order, or to protect the rights and safety of PerchOps and its users

All third-party service providers are contractually required to handle your data securely and only for the purposes we specify.

6. Data Retention

We retain your account data for as long as your account is active. Scan results and compliance reports are retained for up to 12 months. You may request deletion of your account and associated data at any time by contacting support@perchops.com.

7. Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Object to or restrict processing of your data
• Data portability (receive your data in a machine-readable format)

To exercise any of these rights, contact us at support@perchops.com.

8. Cookies

PerchOps uses session cookies to keep you authenticated. We do not use third-party advertising or tracking cookies. You can disable cookies in your browser settings, but this may affect your ability to use the platform.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or an in-app notice. The "Last updated" date at the top of this page reflects the most recent revision.

10. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at:
support@perchops.com
Dovetail — operator of PerchOps