Privacy Policy
At Opsora, your data privacy is not just a policy—it is a core technical requirement.
1. Commitment to Privacy
Opsora Limited ("we", "us", or "our") is committed to protecting and respecting your privacy. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. Data We Collect
Account Metadata
Name, email, and company details required to provision your tenant and manage your subscription.
Customer Data (PII)
Our platform collects customer contact details (PII) on your behalf. **This data is always stored with AES-256 field-level encryption.**
3. Data Storage & Security
Tenant Isolation
Every organization is isolated at the database schema level using Row-Level Security (RLS).
Field-Level Encryption
API keys, customer emails, and sensitive metadata are encrypted before touching the disk.
No Third-Party Tracking
We do not sell your data or use marketing trackers (like Facebook Pixel) inside the core dashboard.
4. Your Rights
Under UK GDPR, you have the following rights regarding your data:
- Right to be informed
- Right of access
- Right to rectification
- Right to erasure
- Right to data portability
Questions about your privacy?
Our Data Protection Officer (DPO) is available to handle any inquiries or SAR (Subject Access Requests).
Email: privacy@opsora.org