Legal
Privacy Policy
Last updated: [Date] · Draft — pending legal review
This Privacy Policy explains how Enterprise Professional Systems, LLC (“EPSReady,” “we,” “us”), operator of VendMetric™ (the “Service”), collects, uses, and discloses information in connection with the Service.
1. Information We Collect
We collect the following categories of information:
- Account information: name, email address, organization, and role, provided when you or your organization create an account.
- Vendor and document data: information your organization uploads about its vendors, including contact details and compliance documents (such as certificates of insurance, licenses, and tax forms), which may contain personal information about vendor contacts.
- Usage data: log data, device information, and interactions with the Service.
- Communications: information you provide when you contact us, including through the demo request form.
2. How We Use Information
- To provide, operate, and maintain the Service.
- To process AI-based document extraction on behalf of your organization.
- To send compliance reminders and account-related notifications.
- To respond to inquiries and provide customer support.
- To improve and secure the Service.
3. AI Processing
Documents uploaded to VendMetric may be processed by third-party AI providers (such as Anthropic) to extract metadata like expiration dates and coverage amounts. This processing is used solely to power the Service’s document intelligence features.
4. Data Sharing
We do not sell personal information. We may share information with:
- Service providers who process data on our behalf (hosting, database, email delivery, AI processing).
- Other users within your organization, as determined by your organization’s configured roles.
- Authorities, where required by law.
5. Data Retention
We retain account and vendor data for as long as your organization maintains an active account, and as needed to comply with legal obligations, resolve disputes, and enforce agreements.
6. Data Security
We use industry-standard measures — including encryption in transit, role-based access control, and tenant isolation — to protect information. No system is completely secure, and we cannot guarantee absolute security.
7. Your Rights
Depending on your jurisdiction, you may have rights to access, correct, or delete your personal information. Contact us at hello@vendmetric.com to make a request.
8. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated to account administrators.
9. Contact
Questions about this policy can be sent to hello@vendmetric.com.
This is a template draft, not final legal advice. Have a licensed attorney review this policy — especially the AI-processing, data-retention, and jurisdiction-specific rights sections — before collecting real customer or vendor data in production.
