Back to home

Privacy Policy

Last updated: February 20, 2026

1. Information We Collect

We collect the following types of information:

  • Account information: Name, email address, company name, and password when you register for an account.
  • Usage data: Information about how you interact with the Service, including pages viewed, features used, and timestamps.
  • Device information: Browser type, operating system, IP address, and device identifiers.
  • Content data: Requests, approvals, documents, and other content you create or upload within the platform.

2. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Process transactions and manage your subscription
  • Send you transactional emails (account verification, password resets, notifications)
  • Provide customer support
  • Detect, prevent, and address security issues and fraud
  • Analyze usage patterns to improve the platform

3. Data Storage & Security

Your data is stored on secure servers with encryption at rest and in transit. We implement industry-standard security measures including bcrypt password hashing, JWT-based authentication, and regular security audits. Access to customer data is restricted to authorized personnel only.

4. Data Sharing

We do not sell your personal information. We may share data with:

  • Service providers: Third-party services that help us operate the platform (e.g., hosting, email delivery, payment processing).
  • Legal requirements: When required by law, regulation, or legal process.
  • Business transfers: In connection with a merger, acquisition, or sale of assets.

5. Multi-Tenant Data Isolation

EWA is a multi-tenant platform. Each company's data is logically isolated and cannot be accessed by other tenants. Platform administrators can view aggregate analytics but do not have access to individual tenant content.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. Upon account deletion, your data will be permanently removed within 30 days, except where retention is required for legal compliance or audit purposes.

7. Your Rights

You have the right to:

  • Access and download your personal data
  • Correct inaccurate information
  • Request deletion of your data
  • Object to or restrict processing of your data
  • Data portability — receive your data in a structured, machine-readable format

8. Cookies

We use cookies for authentication and session management. For more details, see our Cookie Policy.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page. Continued use of the Service after changes constitutes acceptance.

10. Contact

For privacy-related questions, contact us at privacy@ewasaas.com.