Privacy Policy

Protecting the data that powers your automations

This policy explains the information NodeCompose collects, how we use it, and the choices you have. Our commitment is to safeguard client data so you can confidently scale automation programs with us.

Effective date

  • This Privacy Policy is effective as of 1 January 2024 and applies to nodecompose.com, our client portals, and the services we provide to customers and prospects (collectively, the “Services”).

Information we collect

  • Identity and contact data such as name, email address, company, and role when you request materials, schedule consultations, or participate in workshops.
  • Usage data related to how you interact with our website, portals, and automation solutions—this may include IP address, device identifiers, log files, and product telemetry.
  • Client-provided data that is required to configure, monitor, or troubleshoot automations. We only access this information under explicit instructions from your team.

How we use information

  • Deliver, maintain, and improve the Services, including tailored automation programs and consultative support.
  • Communicate about updates, security notices, onboarding resources, and engagement logistics.
  • Monitor platform health, prevent abuse, and meet contractual or legal obligations.

How we share information

  • We do not sell personal data. We only share information with trusted sub-processors that help us deliver the Services (for example, hosting providers and communications tools) and only under binding agreements.
  • We may disclose information when required by law, regulation, legal process, or to protect the rights, property, or safety of NodeCompose, our customers, or others.

Data retention

  • We retain personal data for as long as needed to deliver the Services, comply with legal obligations, resolve disputes, or enforce agreements. Client-provided data within automation environments follows the retention policies defined in your contract or statement of work.

Security

  • Our engineering pod implements administrative, technical, and physical safeguards to protect information against unauthorized access, alteration, or destruction. Access to client environments is restricted to authorized personnel with time-bound credentials.

Your choices

  • You may request access, correction, or deletion of your personal data by emailing privacy@nodecompose.com. Depending on your location, you may also have rights to object to processing or to data portability.
  • Customers can configure data collection settings within the automations we deploy and may instruct us to remove client data at any time.

International transfers

  • NodeCompose operates with distributed teams. When we transfer information across borders, we rely on appropriate safeguards such as Standard Contractual Clauses or frameworks approved by relevant data protection authorities.

Updates to this policy

  • We may update this Privacy Policy to reflect operational, legal, or regulatory changes. Material updates will be posted on this page with a revised effective date, and we will notify active customers via email.

Contact

  • Questions about this Privacy Policy or our data practices can be sent to privacy@nodecompose.com or by mail to NodeCompose, 548 Market Street, San Francisco, CA 94104, USA.

Need a data processing addendum?

We offer tailored agreements to meet your compliance requirements. Reach out and we will provide the documentation and security attestations your team needs.

Contact privacy team