What we collect
Operational data customers explicitly send into Polymr — documents, drawings, BOMs, emails, ERP records — plus minimal account metadata (user email, role, login timestamps).
Privacy
Customer data, protected completely.
We process only what customers send us, only for the workflows they configure, and we delete it when the relationship ends. No model training on customer data. No third-party sharing.
How we use it
Customer operational data is used only to power the workflows that customer has configured. No model training, no cross-tenant analytics, no third-party data sharing.
Retention
Customer documents and operational data are retained for the life of the contract. On termination, all customer data is deleted within 30 days. Audit logs are retained per the customer's configured retention policy.
Access
Polymr employees access customer data only when explicitly authorized by the customer for support or implementation purposes. All such access is logged.
Sub-processors
A current list of infrastructure sub-processors (cloud, observability, email transport) is available on request. Customers are notified before changes.
Your rights
Customers can export, delete, or restrict data at any time through their admin console or by emailing privacy@polymr.tech. Standard DPA available.
Full privacy policy and DPA available on request via contact form or privacy@polymr.tech.