Privacy Policy

The Software (DataWarp X Enterprise)

1. Zero Data Collection Guarantee

DataWarp X is architected as an Air-Gapped, Local-First application.

• No Ingress/Egress: The software contains no code capable of transmitting data to external servers, including our own.
• No Telemetry: We do not collect usage statistics, feature tracking, or user behavior logs.
• No Auto-Updates: The software does not "call home" for updates. All updates are delivered via secure manual download links or physical media to maintain the air-gap.

2. Local Processing (Data Sovereignty)

All data ingestion, transformation, and analysis occur exclusively within the Volatile Random Access Memory (RAM) and the local hard drive of the Client’s host machine.

• Data Residency: Since data never leaves the device, data residency is determined solely by the physical location of the Client's hardware.
• AI Model Privacy: The embedded AI assistant ("Gemma") runs entirely on the local CPU. No prompts, queries, or text snippets are sent to cloud APIs (e.g., OpenAI/Anthropic).

3. PII & Sensitive Data

The software includes an automated PII Shield that masks sensitive fields (Credit Cards, National IDs) upon ingestion. This masking happens locally. At no point does DataWarp (the Vendor) view, process, or hold unmasked Client PII.

4. Crash Reports

In the event of a software failure, the application generates a local log file (error.log). This file is not automatically transmitted to us. It is the Client's discretion to manually email this log to our support team for debugging purposes.

The Website (datawarp.com)

1. Information We Collect

When you request a demo, purchase a license, or contact support via our website, we may collect:

• Identity Data: Name, Job Title, Company Name.
• Contact Data: Email address, Phone number.
• Technical Data: IP address, browser type (standard web analytics cookies).

2. How We Use This Information

• To process transactions and issue Commercial Invoices.
• To deliver the software binary and license keys.
• To verify "Entity Legitimacy" (KYC) before selling forensic tools.
• To send critical security alerts or update notifications.

3. Third-Party Processors

We do not sell your data. We use the following trusted processors for business operations:

• Payment Processing: Wise / Razorpay / Bank Transfer
• Email Communication: Google Gmail / Outlook
• Web Analytics: Simple Analytics / Google Analytics (Anonymized)

Your Rights & Compliance

1. GDPR (Europe) & UK GDPR

• Right to Access/Deletion: You may request a copy or deletion of your marketing data (Name/Email) at any time.
• Software Data: Since we do not hold your software processing data, we cannot "delete" it—it exists only on your hardware.

2. DPDP Act 2023 (India)

We function as a Data Processor providing a tool; the Client remains the Data Fiduciary. We adhere to Section 8 (Data Security Safeguards) by providing AES-256 encryption features within the tool.

3. PDPA (Singapore) & UAE Data Law

We comply with strict data transfer limitations. Our "Zero-Cloud" architecture ensures that by default, no cross-border transfer of Client Data occurs during the use of our software.

Security Measures

1. Website Security

Our website uses TLS 1.3 encryption. Customer databases are stored with Multi-Factor Authentication (MFA) access controls.

2. Software Integrity

Every executable (.exe) delivered to clients is cryptographically signed. We provide a SHA-256 Checksum upon delivery to verify that the software has not been tampered with or infected by malware during transit.