Last Updated: August 22, 2025
This Privacy Policy describes how EPYC X collects, uses, and protects your information when you use our enterprise digital experience services.
Information We Collect
As an enterprise digital experience partner, we collect information necessary to deliver our AI-native solutions and maintain enterprise-grade governance.
Personal Information
- Contact details (name, email, phone, company information)
- Professional information (job title, department, role)
- Communication preferences and interaction history
- Account credentials and authentication data
Business and Technical Information
- Project requirements and specifications
- System architecture and platform data
- Performance metrics and analytics data
- Usage patterns and experience optimization data
AI and Machine Learning Data
- User behavior patterns for predictive analytics
- Interaction data for AI model training
- Performance data for intelligent automation
- Anonymized datasets for experience optimization
How We Use Your Information
Service Delivery and Optimization
- Delivering end-to-end digital outcomes and AI-native solutions
- Providing strategy, design, development, and platform engineering services
- Optimizing user experiences through data analytics and AI insights
- Implementing intelligent automation and workflow improvements
AI and Machine Learning Enhancement
- Training AI models for predictive user journeys
- Improving intelligent assistants and agent workflows
- Enhancing automation and knowledge systems
- Developing AI-augmented UX capabilities
Business Operations
- Managing client relationships and project delivery
- Providing customer support and technical assistance
- Conducting research and development initiatives
- Ensuring compliance with regulatory requirements
Information Sharing and Disclosure
Service Partners and Vendors
We work with trusted partners across our global delivery model spanning the US, UK, Germany, and India. Information may be shared with:
Cloud infrastructure and platform service providers
Analytics and monitoring service partners
Security and compliance verification services
Professional services and consulting partners
Legal and Regulatory Requirements
We may disclose information when required by law or to:
Comply with legal processes and regulatory obligations
Protect our rights, property, and safety
Enforce our terms of service and agreements
Respond to government requests and investigations
Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction, subject to appropriate confidentiality protections.
Data Security and Protection
Enterprise-Grade Security Measures
- End-to-end encryption for data transmission and storage
- Multi-factor authentication and access controls
- Regular security audits and penetration testing
- SOC2 and ISO compliance frameworks
AI and ML Data Protection
- Privacy-by-design principles in AI model development
- Prompt safety and PII handling in AI systems
- Human-in-the-loop controls for sensitive operations
- Model observability and evaluation frameworks
Incident Response
We maintain comprehensive incident response procedures including immediate containment, investigation, notification, and remediation protocols to address any potential security incidents.
International Data Transfers
Global Delivery Model
Our services operate across multiple jurisdictions with client leadership in the US, UK, and Germany, and delivery hubs in India. We ensure:
- Appropriate data transfer mechanisms and safeguards
- Compliance with local data protection regulations
- Data residency options for regulated industries
- Cross-border security and privacy controls
Regulatory Compliance
We maintain compliance with applicable data protection laws including GDPR, CCPA, and other regional privacy regulations through our compliance-by-design approach.
Your Rights and Choices
Access and Control
- Request access to your personal information
- Correct inaccurate or incomplete data
- Request deletion of your personal information
- Object to or restrict certain processing activities
Data Portability
You have the right to receive your personal information in a structured, commonly used format and to transmit that data to another service provider where technically feasible.
Communication Preferences
You can opt out of marketing communications at any time while continuing to receive essential service-related communications necessary for our business relationship.
Cookies and Tracking Technologies
Types of Cookies We Use
- Essential Cookies: Required for website functionality and security
- Analytics Cookies: Help us understand usage patterns and optimize experiences
- Performance Cookies: Monitor system performance and user experience metrics
- Functionality Cookies: Remember preferences and personalization settings
Third-Party Integrations
We use trusted analytics and monitoring services to improve our platform performance and user experience. These services operate under their own privacy policies and data protection standards.
Data Retention
We retain personal information only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce our agreements. Retention periods vary based on:
- The nature of the information and its sensitivity
- Legal and regulatory retention requirements
- Business operational needs and contractual obligations
- Your preferences and requests for deletion
Updates to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. We will:
- Provide notice of material changes through our website
- Email notifications for significant policy updates
- Maintain previous versions for reference
- Allow reasonable time for review before changes take effect