Legal

Privacy Policy

Last updated: April 2, 2026

1. Information We Collect

When you request early access or create an account, we collect information you provide directly: your name, work email, company name, job title, team size, and approximate annual sourcing spend.

When you use ProcurIX, we collect data you upload (spend records, supplier information, bid data) and usage data (pages visited, features used, session duration).

We automatically collect technical information: IP address, browser type, device type, and referring URL.

2. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve ProcurIX
  • Process your early access request and communicate about the product
  • Send product updates, feature announcements, and relevant content (you can unsubscribe anytime)
  • Analyze usage patterns to improve the product experience
  • Detect and prevent fraud or security issues

3. Data Storage & Security

Your data is stored on Supabase infrastructure with SOC 2 compliance. All data is encrypted at rest using AES-256 and in transit using TLS 1.3.

Each customer's data is logically isolated. We implement role-based access controls and audit logging for all data access.

4. Data Sharing

We never sell your data. We do not share your supplier data, bid information, or spend records with any third party.

We may share anonymized, aggregated benchmark data (e.g., average cost by commodity region) that cannot be traced back to any individual customer. This is disclosed in your service agreement.

We use the following service providers to operate ProcurIX: Supabase (database), Vercel (hosting), Stripe (billing), Resend (email). Each processes data only as necessary to provide their service.

5. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a machine-readable format
  • Withdraw consent for marketing communications at any time

To exercise any of these rights, email privacy@procurix.net.

6. Cookies

We use essential cookies to maintain your session and preferences. We use analytics cookies (only with your consent) to understand how the site is used. You can decline non-essential cookies at any time.

7. GDPR Compliance

For users in the European Economic Area: we process data under legitimate interest (product operation) and consent (marketing). A Data Processing Agreement is available for Enterprise customers upon request.

8. Data Retention

We retain your account data for the duration of your subscription plus 90 days. Waitlist data is retained for 12 months. You may request earlier deletion at any time.

9. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email and a notice in the product. Continued use of ProcurIX after changes constitutes acceptance.

10. Contact

For privacy questions or data requests, contact us at privacy@procurix.net.