Privacy Policy & Cookie Policy

Last updated: 24th January 2026

1. Introduction

Xadata (“Xadata”, “we”, “us”, or “our”) is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit www.xadata.io (the “Website”) or interact with us in a professional or commercial context.

This Privacy Policy is designed to comply with applicable global data-protection and privacy regulations, including but not limited to:

  • EU & UK General Data Protection Regulation (GDPR / UK GDPR)

  • California Consumer Privacy Act / CPRA (CCPA/CPRA)

  • Brazil LGPD

  • Canada PIPEDA

  • Other applicable international privacy laws

2. Scope

This Privacy Policy applies to:

  • Visitors to our Website hosted on Framer

  • Business customers, prospects, and partners

  • Individuals contacting us via forms, email, or other channels

  • Marketing, content, events, and demonstrations

This Policy does not apply to:

  • Customer data processed within Xadata platforms or customer SAP environments under a separate Data Processing Agreement (DPA)

  • Third-party websites or platforms linked from our Website

3. Information We Collect

3.1 Information You Provide Directly

We may collect the following personal data when you complete forms or contact us:

  • Full name

  • Business email address

  • Company name

  • Job title

  • Phone number

  • Country or region

  • Any other information voluntarily provided in messages or inquiries

Framer forms may transmit this data to connected services (e.g., CRM, email, automation tools) configured by Xadata.

3.2 Information Collected Automatically

When you visit our Website, we may automatically collect:

  • IP address

  • Browser type and version

  • Device and operating system information

  • Referring URLs

  • Pages viewed and interaction data

  • Date and time of access

This information is collected via cookies, analytics tools, and standard web logging.

4. Cookies & Tracking Technologies (Cookie Policy)

4.1 What Are Cookies?

Cookies are small text files stored on your device when you visit a website. They help websites function properly, improve user experience, and provide analytical insights.

4.2 Types of Cookies We Use

a) Strictly Necessary Cookies

These cookies are essential for the Website to function and cannot be disabled.
They include:

  • Security cookies

  • Session management cookies

  • Form submission functionality (Framer core features)

b) Analytics & Performance Cookies

Used to understand how visitors interact with the Website, including:

  • Page views

  • Traffic sources

  • Navigation patterns

Examples may include:

  • Google Analytics or equivalent analytics services

  • Framer-integrated analytics tools

Data is aggregated and anonymized where possible.

c) Functional Cookies

These cookies enable enhanced functionality, such as:

  • Remembering user preferences

  • Improving form behavior

  • Optimizing page rendering

d) Marketing & Advertising Cookies (If Enabled)

Used to track visitors across websites and measure campaign effectiveness.
These cookies are only used where legally permitted and subject to consent.

4.3 Managing Cookies

You can manage or disable cookies via:

  • Your browser settings

  • Any cookie-consent banner provided on the Website

Disabling cookies may affect Website functionality.

5. Legal Bases for Processing (GDPR & Similar Laws)

Where applicable, we process personal data based on:

  • Consent – where you have explicitly agreed

  • Contractual necessity – to respond to requests or provide services

  • Legitimate interests – to operate, secure, and improve our Website and services

  • Legal obligations – to comply with applicable laws

6. How We Use Your Information

We use personal data to:

  • Respond to inquiries and requests

  • Provide information about our services and offerings

  • Operate and optimize our Website

  • Conduct analytics and performance measurement

  • Manage marketing communications (where permitted)

  • Maintain security and prevent fraud

  • Meet legal, regulatory, and compliance requirements

7. Enterprise Systems & Cloud Platforms

Xadata operates in enterprise environments and may use or integrate with industry-standard platforms, including:

  • SAP systems and SAP-certified solutions

  • Microsoft Azure

  • Amazon Web Services (AWS)

  • Google Cloud Platform (GCP)

Website-related data may be hosted or processed using cloud infrastructure operated by these providers or their equivalents. All such providers maintain industry-standard security and compliance certifications.

Customer production data processed in SAP or cloud platforms is governed by separate contractual agreements and DPAs.

8. Marketing Communications

You may receive communications from us if:

  • You have requested information

  • You have consented to receive marketing

  • We have an existing business relationship (where permitted by law)

You may opt out at any time by:

  • Clicking “unsubscribe” in emails

  • Contacting us directly

9. Sharing & Disclosure of Information

We may share personal data with:

  • Hosting and infrastructure providers (e.g., cloud platforms)

  • Analytics, CRM, and marketing tools

  • Professional advisers (legal, compliance, accounting)

  • Authorities where required by law

  • A successor entity in the event of a merger, acquisition, or sale

We do not sell personal data.

10. International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence.

Where required, we use appropriate safeguards such as:

  • Standard Contractual Clauses (SCCs)

  • Data-processing agreements

  • Other lawful transfer mechanisms

11. Data Retention

We retain personal data only as long as necessary to:

  • Fulfill the purposes described in this Policy

  • Comply with legal obligations

  • Resolve disputes and enforce agreements

Retention periods vary based on data type and jurisdiction.

12. Data Security

We implement appropriate technical and organizational security measures, including:

  • Secure cloud infrastructure

  • Access controls and least-privilege principles

  • Encryption where appropriate

  • Regular security reviews

No method of transmission or storage is completely secure; however, we follow industry best practices.

13. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access your personal data

  • Correct or update inaccurate data

  • Request deletion

  • Restrict or object to processing

  • Withdraw consent

  • Data portability

  • Lodge a complaint with a supervisory authority

Requests can be made using the contact details below.

14. California Privacy Rights (CCPA / CPRA)

California residents have the right to:

  • Know what personal data is collected and how it is used

  • Request deletion of personal data

  • Opt out of sale or sharing (Xadata does not sell data)

  • Non-discrimination for exercising privacy rights

15. Children’s Privacy

Our Website is intended for business users and is not directed to children under 16. We do not knowingly collect children’s personal data.

16. Third-Party Links

The Website may contain links to third-party sites. Xadata is not responsible for their privacy practices or content.

17. Changes to This Policy

We may update this Privacy Policy periodically. Updates will be posted on this page with a revised “Last updated” date.

18. Contact Information

For questions, requests, or privacy concerns, contact:

Xadata
Email: mgidwani@xadata.io
Website: www.xadata.io

The Osborne
233 E Main St
3rd & 4th Floor
Bozeman
MT 59175

Solutions

Data Migration

Company

Contact

Legal

Privacy Policy

Terms of Service

© 2026 xadata. All rights reserved.