Privacy Policy

1. Introduction

Inovexa ERP ("Inovexa", "we", "us", or "our") is committed to protecting the privacy and security of our customers, prospects, and visitors. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you visit our website at inovexa-erp.com, request a demo, or use our cloud-based ERP platform and related services (collectively, the "Services").

By accessing our website or using our Services, you acknowledge that you have read, understood, and agree to the practices described in this Policy. If you do not agree, please do not use our Services.

2. Information We Collect

We collect information in the following categories:

a) Information You Provide Directly

• Contact details such as your name, business email, phone number, company name, and job title when you request a demo, contact us, or subscribe to communications.
• Account credentials and profile information when you or your employer provisions an Inovexa ERP account.
• Business data you or your organization upload into the platform (financial records, HR data, supply chain information, customer records, and similar operational data).
• Communications you send to us, including support tickets and feedback.

b) Information Collected Automatically

• Device and browser information (IP address, browser type, operating system, device identifiers).
• Usage data (pages visited, features used, timestamps, referring URLs, session duration).
• Cookies and similar tracking technologies as described in Section 4.

c) Information from Third Parties

We may receive information about you from business partners, integration providers, payment processors, and publicly available sources to verify, supplement, or enhance the information we already hold.

3. How We Use Your Information

We use the information we collect for legitimate business purposes, including to:

• Provide, operate, maintain, and improve the Inovexa ERP platform and Services.
• Process demo requests, sales inquiries, and customer onboarding.
• Respond to support requests and communicate with you about your account.
• Send service announcements, security alerts, and administrative messages.
• Send marketing communications about products, features, and events (you can opt out at any time).
• Analyze usage patterns to understand how our Services are used and improve them.
• Detect, investigate, and prevent fraud, abuse, or security incidents.
• Comply with applicable laws, regulations, and lawful requests from authorities.

4. Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to remember your preferences, keep you signed in, measure website performance, and tailor content to your interests. You can control cookies through your browser settings, but disabling them may affect how the Services function. For more details, please refer to our Cookie Policy.

5. How We Share Your Information

We do not sell, rent, trade, or share your personal information with third parties for marketing, advertising, profiling, or any commercial purpose. We have never done so, and we never will. The only circumstances in which information may be disclosed are strictly limited and operationally necessary:

• Service providers (processors): A small number of trusted vendors who help us operate the Services (cloud hosting, email delivery, payment processing) act strictly as data processors on our behalf, under binding data processing agreements that prohibit any other use of the information.
• Within your organization: If your employer is our customer, your designated administrators may access information associated with your account.
• Legal compliance: Where strictly required to respond to a valid legal request, court order, or binding law - and only to the minimum extent necessary.
• Business transfers: In the event of a merger, acquisition, or restructuring, where the receiving party is bound to honor the commitments in this Policy.
• With your explicit consent: Whenever you have given us clear, informed, and revocable permission to do so.

We do not engage in cross-context behavioral advertising and we do not share data with advertising networks, data brokers, or analytics partners that re-use data for their own purposes.

6. Data Security

We implement industry-standard administrative, technical, and physical safeguards to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption in transit and at rest, role-based access controls, regular security audits, and employee training. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

7. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Policy, comply with our legal obligations, resolve disputes, and enforce our agreements. When information is no longer needed, we securely delete or anonymize it. Customer data uploaded to the platform is retained for the duration of the active subscription and deleted in accordance with the applicable service agreement after termination.

8. International Data Transfers

Inovexa serves businesses globally. Your information may be processed and stored in countries other than your own, including jurisdictions whose data protection laws may differ. When we transfer personal information internationally, we apply appropriate safeguards consistent with applicable law to protect your rights.

9. Regulatory Compliance & Supervisory Authorities

Inovexa is registered, declared, and compliant with the data protection authorities of every jurisdiction in which we operate. We maintain active filings, notifications, and authorisations with the relevant supervisory authorities, including:

• Tunisia: Instance Nationale de Protection des Données à Caractère Personnel (INPDP), under Organic Law n° 2004-63.
• North Africa & MENA: The competent national data protection authorities of Morocco (CNDP), Algeria (ANPDP), Egypt (PDPC), and the GCC supervisory bodies governing the markets we serve.
• Sub-Saharan Africa: Cooperation with national data protection authorities across the markets in which our customers operate, in line with the African Union Convention on Cyber Security and Personal Data Protection (Malabo Convention).
• International standards: Our processing practices are aligned with internationally recognised frameworks, including the principles of the EU General Data Protection Regulation (GDPR) where applicable.

You have the right to lodge a complaint with the data protection authority of your jurisdiction at any time. We will cooperate fully with any lawful inquiry or investigation initiated by a competent supervisory authority.

10. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

• Access the personal information we hold about you.
• Request correction of inaccurate or incomplete information.
• Request deletion of your personal information, subject to legal exceptions.
• Object to or restrict certain processing activities.
• Request data portability in a commonly used format.
• Withdraw consent where processing is based on consent.
• Lodge a complaint with the relevant data protection authority.

To exercise any of these rights, please contact us using the details in Section 13.

11. Children's Privacy

Our Services are intended for businesses and professional users. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us so we can take appropriate action.

12. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will revise the "Last updated" date at the top of this page and, where appropriate, notify you through the Services or by email. Your continued use of the Services after changes take effect constitutes your acceptance of the updated Policy.

13. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or our handling of your personal information, please contact us: