Legal

Privacy Policy

Last updated: 16 April 2026 · Effective: 16 April 2026

This Privacy Policy describes how Matriq ("we", "us", "our") collects, uses, shares, and protects information in connection with our website (matriq.ai) and the Matriq product (together, the "Service"). We are the data controller for information we collect from visitors to our website. For information processed on behalf of our customers as part of the product, we act as a data processor; our customers are the data controllers.

Matriq in plain English: we don't train models on customer data. We store your data-source credentials encrypted. Our LLM calls go to zero-retention endpoints. You can ask us to delete your data at any time by emailing security@matriq.ai.

1. Information we collect

1.1 Information you give us

Account information: name, work email, and company name when you sign up for early access or create a Matriq workspace.
Communications: content of emails, support tickets, and messages you send to us.
Integrations: credentials, API keys, and OAuth tokens you provide to let Matriq connect to your data sources. These are stored encrypted at rest.

1.2 Information we collect automatically

Usage data: pages visited, buttons clicked, features used, timestamps, referring URLs, and general interaction events.
Device data: IP address, browser type and version, operating system, device type, and approximate location (country / region level) inferred from IP.
Cookies and similar technologies: we use first-party cookies for authentication and to remember preferences. We may use limited analytics cookies (described below).

1.3 Customer content (product)

When you use the Matriq product, the agent reads metadata and data from sources you connect (e.g., warehouse schemas, table rows, document content) in order to answer your questions. This content is processed to deliver the Service. Customer content is not used to train our or any third-party model. LLM inference is performed against zero-retention endpoints with our model providers.

2. How we use information

We use the information we collect to:

Provide, operate, and improve the Service;
Authenticate you, prevent abuse, and secure our systems;
Respond to your questions and provide support;
Send you product announcements, security notices, and (with your consent where required) marketing communications;
Understand aggregate usage trends to prioritise features and fixes;
Comply with legal obligations and enforce our Terms of Service.

3. How we share information

We do not sell personal data. We share information only as follows:

Sub-processors: a limited set of vendors who help us run the Service (e.g., cloud hosting, email delivery, LLM inference, analytics). A current list is published at /legal/sub-processors.
Compliance and safety: if required by law, court order, or to protect the rights, safety, and property of Matriq, our users, or others.
Business transfers: in connection with a merger, acquisition, or sale of assets, subject to confidentiality obligations.
With your direction: for example, when you share a report via a link you generate inside the product.

4. International transfers

Matriq is operated from India and our primary hosting region is AWS in the Asia-Pacific (Mumbai) region. If you access the Service from outside this region, your information may be transferred to, processed in, and stored in India or other countries where our sub-processors operate. Where such transfers are subject to cross-border transfer requirements (such as GDPR Chapter V), we rely on approved transfer mechanisms, including Standard Contractual Clauses.

5. Data retention

We retain personal data for as long as necessary to provide the Service and for legitimate business purposes such as meeting legal obligations, resolving disputes, and enforcing agreements. Customer content is retained for the duration of your subscription plus a short grace period, after which it is deleted or anonymised. You can request earlier deletion at any time.

6. Your rights

Depending on where you live, you may have rights under applicable law to:

Access the personal data we hold about you;
Correct inaccurate information;
Request deletion of your personal data;
Object to or restrict certain processing;
Request a portable copy of your data;
Withdraw consent where processing is based on consent.

To exercise any of these rights, email security@matriq.ai. We will respond within the timeframe required by applicable law.

7. Security

We maintain administrative, technical, and physical safeguards designed to protect information we process. Details of our security program are on the Security page. No method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

8. Cookies

We use a small set of first-party cookies that are strictly necessary for the Service to function (e.g., to keep you signed in). Where we use analytics or preference cookies, we do so in a privacy-respecting way and will honour any consent choice required in your jurisdiction. You can disable cookies in your browser settings, though some parts of the Service may not work as expected.

9. Children

The Service is intended for professional use and is not directed at children under 16. We do not knowingly collect personal data from children under 16. If you believe we have, contact us and we will delete it.

10. Changes to this policy

We may update this policy from time to time. If we make material changes, we will notify you by updating the "Last updated" date above and, where appropriate, by email or in-product notice. Continued use of the Service after changes take effect constitutes acceptance of the updated policy.

Questions or requests?

Email security@matriq.ai and we'll respond within a few business days.