Privacy Policy

Privacy Policy

Introduction
FinOpsly is an enterprise Cloud Cost Management and FinOps platform. We understand that you are aware of and care about your own personal privacy interests, and we take that seriously. This Privacy Notice describes FinOpsly policies and practices regarding its collection and use of your personal data, and sets forth your privacy rights. We recognize that information privacy is an ongoing responsibility, and so we will from time to time update this Privacy Notice as we undertake new personal data practices or adopt new privacy policies. This Privacy Notice applies to all FinOpsly products, platforms, and applications, integrations such as Microsoft Teams applications

FI is a feature of the FinOpsly Application that uses AI to help you explore your organisation’s FinOps and cloud cost information (within the scope your organisation enables). Ask questions in plain language to instantly query your cloud costs, spot savings opportunities, track budgets, and get FinOps guidance; scoped to your organisation's data. Responses are AI-generated; always verify with your cloud billing tools.

This ensures that the same data protection principles apply regardless of how you access or use FinOpsly.

Data Protection Officer

FinOpsly is headquartered in Cincinnati, OH within the United States of America. FinOpsly has appointed an internal data protection officer for you to contact if you have any questions or concerns about FinOpsly personal data policies or practices. If you would like to exercise your privacy rights, please direct your query to FinOpsly’s data protection officer. FinOpsly’s data protection officer’s name and contact information are as follows:

Attention: Data Protection Officer
7100 Foundry Row Suite 288-76,
Liberty Township, Ohio 45069
privacy@finopsly.com

How We Collect and Use (Process) Your Personal Information
FinOpsly collects personal information about its website visitors and customers. With a few exceptions, this information is generally limited to:

· Name
· Title
· Organization Name
· Address
· Email
· Phone

We use this information to provide prospects and customers with services. We do not sell personal information to anyone and only share it with third parties who are facilitating the delivery of our services. From time to time, FinOpsly receives personal information about individuals from third parties. Typically, information collected from third parties will include further details on your employer or industry. We may also collect your personal data from a third-party website (e.g. LinkedIn).

Use of FinOpsly Applications and Microsoft Teams Integrations
In addition to website usage, FinOpsly collects and processes personal information when users interact with FinOpsly applications and integrations, including Microsoft Teams applications such as FI.

When using these services, FinOpsly may collect and process the following categories of information:

· Work email address or username (used to authenticate and verify access to the service)
· User-submitted queries, prompts, or messages (used to provide relevant responses and support functionality)
· Conversation session data (temporarily stored to enable continuity of interactions and follow-up questions within a session)
· Operational and usage data, including logs and aggregated analytics (used for service performance, monitoring, and improvement)

FinOpsly leverages AI or automated systems to interpret user inputs (such as queries or messages) and produce responses. These responses are for informational purposes only and should be cross-checked with your official cloud and billing data.

This information is collected solely for the purpose of delivering, maintaining, and improving FinOpsly services. FinOpsly does not use this data for unrelated purposes and limits access to authorized personnel and systems only.

Cookies and Third-party Tracking Technologies
FinOpsly’s websites may use “cookies” and other technologies to help us understand which parts of our websites are most useful to our visitors. Cookies often contain information that is transferred to your computer’s hard drive. These cookies are used to store information, such as the time that the current visit occurred, whether the visitor has been to the site before and what site referred the visitor to the web page. If, however, you prefer not to enable cookies, you can disable them in your browser.

Sharing Information with Third-Parties
The personal information FinOpsly collects from you is stored in one or more databases hosted by third parties located in the United States. These third parties do not use or have access to your personal information for any purpose other than cloud storage and retrieval. On occasion, FinOpsly engages third parties to send information to you, including information about our products, services, and events.

A list of our third-party sub processors can be obtained by contacting FinOpsly’s Data Protection Officer. We do not otherwise reveal your personal data to non-FinOpsly persons or businesses for their independent use unless:

(1) you request or authorize it;
(2) it’s in connection with FinOpsly-hosted and FinOpsly co-sponsored conferences;
(3) the information is provided to comply with the law (for example, compelled by law enforcement to comply with a search warrant, subpoena, or court order), enforce an agreement we have with you, or to protect our rights, property or safety, or the rights, property or safety of our employees or others;
(4) the information is provided to our agents, vendors or service providers who perform functions on our behalf;
(5) to address emergencies or acts of God; or
(6) to address disputes, claims, or to persons demonstrating legal authority to act on your behalf.

We may also gather aggregated data about our services and disclose the results of such aggregated (but not personally identifiable) information to our partners, service providers, advertisers, and/or other third parties for marketing or promotional purposes.

FinOpsly connects with third-party services such as Facebook, Google Analytics, LinkedIn, Twitter and others. If you choose to share information through these services, you should review their respective privacy policies.

How We Protect Your Information
FinOpsly implements appropriate technical and organizational measures to protect your personal data. These include:

· Access to personal data is restricted to authorized personnel and systems only
· Encryption of data in transit (and at rest where applicable)
· Secure cloud infrastructure and contractual safeguards with service providers
· Monitoring, logging, and auditing of systems to maintain security and integrity

While we take reasonable steps to protect your information, no system can be completely secure, and we encourage users to take appropriate precautions when sharing data.

Transferring Personal Data to the United States
FinOpsly has its headquarters in the United States. Information we collect about you will be processed in the United States. By using FinOpsly’s services, you acknowledge that your personal information will be processed in the United States.

The United States has not received a formal adequacy decision from the European Union under Article 45 of the GDPR. FinOpsly uses appropriate safeguards such as Standard Contractual Clauses under Article 46 of the GDPR.

FinOpsly processes data based on:
· Consent
· Contractual necessity
· Legitimate interests

FinOpsly also enters into data processing agreements with its vendors and applies safeguards to protect your data.

For more information, please contact: privacy@finopsly.com

Data Subject Rights
Under GDPR and similar laws, you have the following rights:

Right to be informed
Right of access
Right to rectification
Right to erasure
Right to restrict processing
Right to data portability
Right to object
Rights related to automated decision making including profiling

You may request access, correction, deletion, or restriction of your personal data. Reasonable access will be provided at no cost unless legally restricted.

For requests, contact: support@finopsly.com

You may also lodge complaints with your local data protection authority.

Data Storage and Retention

Your personal data is stored by FinOpsly on its servers, and on the servers of the cloud-based database management services FinOpsly engages, located in the United States. FinOpsly retains service data for the duration of the customer’s business relationship with FinOpsly and for a period of time thereafter, to analyze the data for FinOpsly’s own operations, and for historical and archiving purposes associated with FinOpsly’s services. FinOpsly retains prospect data until such time as it no longer has business value and is purged from FinOpsly systems. All personal data that FinOpsly controls may be deleted upon verified request from Data Subjects or their authorized agents. For more information on where and how your personal data is stored, and for information on your rights of erasure and portability, please contact us at: support@finopsly.com.

For FinOpsly applications and integrations, including Microsoft Teams applications such as FI, conversation and interaction data may be retained only for the duration necessary to support active user sessions and service functionality. In certain cases, limited data may be retained for a longer period where required for operational purposes, security monitoring, legal compliance, or service improvement.

Users may request deletion of their data at any time in accordance with the Data Subject Rights outlined in this Privacy Notice. FinOpsly will process such requests in line with applicable laws and will ensure that data is deleted or anonymized where feasible and appropriate.

Artificial Intelligence

Customer acknowledges, consents, and agrees that certain features and aspects of the Services are powered by artificial intelligence (“AI”), including but not limited to machine learning-based forecasts, optimization recommendations, and a copilot service powered by large language models (LLMs) and other AI technologies. These AI features may leverage either open-source LLMs, proprietary AI models developed by Provider, or AI services provided through third-party providers. Among other capabilities, the Services use AI to produce forecasts and optimization recommendations regarding Customer’s cloud costs and utilize natural language processing to assist with customer queries.

Provider is committed to ethical AI practices and adheres to strict enterprise security guidelines for all AI services utilized within the platform, whether they are proprietary or sourced from third parties. This includes ensuring transparency, fairness, and accountability in AI operations. Provider does not and will not send any Customer-specific identifiable information to any third-party AI services. All data used by Provider's AI services shall be anonymized and aggregated to ensure that no identifiable information is shared. Provider continuously updates and improves its AI algorithms and models to enhance performance and accuracy. Customer acknowledges, understands, and agrees that it may experience changes in AI-generated outputs from the Services as these improvements are implemented.

Any recommendations and insights generated by Services utilizing AI are based on algorithms and data models. While the AI components of the Services aim to provide valuable insights and recommendations, they are not infallible. Customers should exercise its own judgment and consider additional factors when making decisions based on insights or recommendations from the Services (including AI outputs). Customer is responsible for: (A) ensuring that its use of the AI components of the Services complies with all applicable laws and regulations; (B) providing accurate and relevant data inputs to the Services; and (C) understanding and considering the limitations of insights or recommendations generated by the Services (including to the extent generated by AI).

As between the parties, Provider retains all intellectual property rights to the AI algorithms, models, and related technologies used within the Services. During the Term of this Agreement, Customer is granted a non-exclusive, non-transferable right and license to use the AI services as part of the Services.

Children’s Data
We do not knowingly attempt to solicit or receive information from children.

Questions, Concerns or Complaints
If you have questions, concerns, complaints, or would like to exercise your rights, please contact us at:

FinOpsly Inc
ATTN: Data Protection Officer
7100 Foundry Row Suite 288-76,
Liberty Township, Ohio 45069
privacy@finopsly.com