Enterwise

Privacy Policy

Last updated: November 23, 2024

Enterwise ("Enterwise", "we", "us", or "our") provides an AI-powered workspace for business analysts and enterprise teams. We are committed to protecting your privacy and handling your data responsibly.

This Privacy Policy explains how we collect, use, and share information when you visit www.enterwise.ai or use our products and services (collectively, the "Services").

By using the Services, you agree to the terms of this Privacy Policy.

1. Who we are

If you have questions about this Privacy Policy or how we handle your data, you can contact us at:

privacy@enterwise.ai

If you are located in the European Economic Area (EEA) or the UK, Enterwise is the data controller of your personal data, unless stated otherwise.

Pre-Incorporation Notice:

Enterwise is currently operated as a pre-incorporation project during early development and private beta. A formal legal entity will be established prior to commercial billing, contracted use, or enterprise onboarding.

These policies are provided for transparency and to establish expectations during this phase. Terms, governance, and legal ownership may be updated upon incorporation. Continued use of the Services after such updates will constitute acceptance of the revised documentation.

Enterwise does not currently engage in paid subscriptions or contractual agreements until incorporation is completed.

2. Information we collect

We collect information in three main ways: information you provide, information collected automatically, and information from third parties.

Enterwise does not currently process or intentionally store sensitive categories of personal data (such as health information, financial account numbers, or government identifiers). Users should avoid uploading such content during the beta phase.

2.1 Information you provide directly

Account information

Name, email address, password (hashed), role, and organization details when you sign up or are invited.

Workspace and content data

Information you or your organization upload or create in the product, such as:

  • Meeting notes and transcripts
  • Requirements, user stories, diagrams, models, and documentation
  • Comments, tags, labels, and metadata
  • Files or documents you upload

Communication data

When you contact us (support requests, feedback, surveys, interviews), we collect the information you choose to share.

Billing and subscription data (if applicable)

Payment-related information (handled by our payment provider), subscription tier, and invoicing details.

2.2 Information collected automatically

When you use the Services, we may automatically collect:

  • Device and browser information
  • Log data (IP address, timestamps, pages viewed, referring URLs)
  • Usage data (features used, clicks, time on page, error events)
  • Session metadata related to AI interactions (e.g., prompt length, response time)

We use this to operate, secure, and improve the Services.

2.3 Information from third parties

We may receive information from:

  • Your employer or organization (when they create accounts for you)
  • Identity providers (e.g., SSO providers)
  • Analytics or service providers that help us understand use of the Services

3. How we use your information

We use the information we collect for the following purposes:

To provide and operate the Services

  • Creating and managing your account and workspace
  • Processing content, prompts, and AI-generated outputs
  • Storing and displaying your models, notes, and deliverables

To improve and develop the Services

  • Debugging, monitoring, and analyzing usage
  • Training and improving product features and user experience
  • Running experiments and beta features

To communicate with you

  • Service-related emails (onboarding, updates, security alerts)
  • Responding to support requests and feedback
  • Optional product news and marketing communications (you can opt out)

To ensure security and prevent misuse

  • Detecting and preventing fraud, abuse, or technical issues
  • Enforcing our Terms of Service and policies

To comply with legal obligations

  • Responding to lawful requests from authorities
  • Meeting regulatory and accounting requirements

4. Legal bases for processing (EEA/UK)

If you are in the EEA or UK, we process your personal data under the following legal bases:

  • Performance of a contract: To provide you with the Services you or your organization requested.
  • Legitimate interests: To operate, secure, and improve the Services; prevent misuse; and communicate essential information.
  • Consent: For certain activities, such as some types of cookies or marketing communications, where required by law.
  • Legal obligation: Where processing is necessary to comply with applicable law.

5. How we use AI and your data

Enterwise uses AI models to help generate summaries, requirements, documentation, and other outputs from your data.

Your content (e.g., requirements, notes, transcripts) is processed to provide AI-powered features such as summarization, structuring, and suggestion.

We may use AI models from third-party providers as processors acting on our instructions.

We do not sell your personal data.

We do not use your workspace content to train public models. If we use data to improve our models or features, it is done in a way that respects confidentiality and applicable law (e.g., aggregation, anonymization, or with appropriate contractual safeguards).

You can reach out to privacy@enterwise.ai if you need more detail about AI-related processing for your organization.

6. How we share information

We may share your information with:

Service providers / processors

Third parties that help us operate the Services, such as:

  • Cloud hosting providers
  • Logging and monitoring services
  • Analytics tools
  • Payment processors
  • AI model providers

These providers only process data on our behalf and under contractual safeguards.

Your organization and collaborators

If your account is part of an organization workspace, authorized members of that organization may access your content according to workspace settings.

Legal and safety reasons

We may disclose information if we believe in good faith that it is necessary to:

  • Comply with law or lawful requests
  • Protect the rights, property, or safety of Enterwise, our users, or the public
  • Enforce our Terms of Service

Business transfers

In the event of a merger, acquisition, or similar transaction, your information may be transferred as part of that deal, subject to continued protections consistent with this Policy.

We do not sell or rent your personal data.

7. International data transfers

We may store and process information in countries outside your own, including outside the EEA/UK.

When we transfer personal data internationally, we use appropriate safeguards such as:

  • Standard Contractual Clauses approved by the European Commission, or
  • Other legally recognized transfer mechanisms.

8. Data retention

We retain personal data for as long as necessary to:

  • Provide the Services
  • Fulfill the purposes described in this Policy
  • Comply with legal, tax, or accounting obligations
  • Resolve disputes and enforce agreements

You or your organization may delete content from the Services, and we will follow your configuration and applicable retention rules. Backups may retain data for a limited period for security and recovery purposes.

9. Security

We take reasonable technical and organizational measures to protect your information, including:

  • Encryption in transit (HTTPS)
  • Access controls and authentication
  • Logging and monitoring

No system is completely secure. If you believe your account or data has been compromised, please contact us immediately at privacy@enterwise.ai.

10. Your rights

Depending on your location and applicable law, you may have rights regarding your personal data, such as:

  • Access: request a copy of your personal data
  • Rectification: correct inaccurate or incomplete data
  • Erasure: request deletion of certain data
  • Restriction: ask us to limit how we process your data
  • Portability: receive your data in a structured, commonly used format
  • Objection: object to certain processing based on legitimate interests
  • Withdrawal of consent: where processing is based on consent

To exercise your rights, contact us at privacy@enterwise.ai. We may ask you to verify your identity before responding.

You also have the right to lodge a complaint with your local data protection authority.

11. Children's privacy

The Services are not intended for children under 16, and we do not knowingly collect personal data from them. If you believe a child has provided us with personal information, please contact us and we will take appropriate steps to remove it.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top and, where appropriate, notify you through the Services or by email.

Your continued use of the Services after changes become effective means you accept the updated Policy.

13. Contact us

If you have questions or requests regarding this Privacy Policy, please contact us at:

privacy@enterwise.ai