FluxAI Data Policy
Effective Date: April 2025 Version: 1.0
This Data Policy explains how Trinesis Technologies Private Limited ("Trinesis", "we", "us") collects, processes, stores, and protects your data when you use FluxAI.
1. Data We Collect
1.1 Manufacturing Data
Data collected from your manufacturing equipment and operations:
- Machine parameters (temperature, pressure, speed, etc.)
- Production counts and cycle times
- Quality metrics and defect data
- Downtime events and reasons
- Sensor readings (vibration, temperature, etc.)
- OEE metrics (Availability, Performance, Quality)
1.2 User Data
Data about authorized users of the platform:
- Name and email address
- Role and department
- Login credentials (encrypted)
- Activity logs and access history
1.3 System Data
Technical data for platform operation:
- Device identifiers and IP addresses
- Browser type and version
- Error logs and diagnostics
- Performance metrics
2. Data Ownership
2.1 Your Data Remains Yours
You retain full ownership of your manufacturing data. We process it solely to provide FluxAI services. We do not:
- Sell your data to third parties
- Use your data for advertising
- Share your data with other customers
- Claim intellectual property rights over your data
2.2 Aggregated & Anonymized Data
We may create aggregated, anonymized datasets that cannot identify you or your operations. This data may be used to:
- Improve our AI models
- Benchmark industry performance
- Develop new features
You may opt out of anonymized data usage by written request.
3. How We Use Your Data
We use your data to:
| Purpose | Data Used |
|---|---|
| Provide FluxAI services | Manufacturing data, user data |
| Display dashboards and reports | Manufacturing data |
| Train and improve AI models | Manufacturing data (for your instance) |
| Provide technical support | System data, user data |
| Send service notifications | User contact information |
| Ensure platform security | System data, access logs |
| Comply with legal obligations | As required by law |
4. Data Location & Storage
4.1 Edge Processing
Data is first processed locally on edge devices installed at your premises. This ensures:
- Real-time processing with minimal latency
- Continued operation during internet outages
- Local data buffering for up to 7 days
4.2 Cloud Storage
Data is transmitted to and stored on cloud infrastructure:
- Primary Region: India (Google Cloud Platform - Mumbai)
- Alternative Regions: Available upon request for enterprise customers
4.3 Data Residency
If you require data to remain within specific geographic boundaries, contact us to discuss data residency options.
5. Data Security
5.1 Encryption
| State | Method |
|---|---|
| Data in Transit | TLS 1.2+ encryption |
| Data at Rest | AES-256 encryption |
| Database | Encrypted at rest |
| Backups | Encrypted |
5.2 Access Controls
- Role-based access control (RBAC)
- Multi-factor authentication (available)
- Unique user credentials required
- Session timeout policies
- IP whitelisting (available for enterprise)
5.3 Infrastructure Security
- Hosted on Google Cloud Platform with SOC 2 Type II certification
- Regular security assessments and penetration testing
- 24/7 infrastructure monitoring
- DDoS protection
- Web Application Firewall (WAF)
5.4 Incident Response
We maintain incident response procedures including:
- 24-hour incident detection and response
- Customer notification within 72 hours of confirmed breach
- Root cause analysis and remediation
- Post-incident reporting
6. Data Isolation
6.1 Logical Separation
Your data is logically separated from other customers:
- Dedicated database schemas
- Tenant-specific encryption keys
- Access controls at application and database level
6.2 No Cross-Customer Access
- Your data is never accessible to other customers
- Our employees access your data only for support purposes with your authorization
7. Data Retention
7.1 During Subscription
| Data Type | Retention Period |
|---|---|
| Real-time metrics | 90 days (granular) |
| Aggregated data | 3 years |
| Alerts and events | 1 year |
| Audit logs | 1 year |
Extended retention available upon request.
7.2 After Termination
Upon termination of your license:
- We provide a copy of your data in standard format (CSV, JSON) upon request
- We delete your data within 30 days of termination
- We confirm deletion in writing upon request
- Backups are purged within 90 days
7.3 Legal Requirements
We may retain data longer if required by law or legal proceedings.
8. Data Portability
8.1 Export Formats
You can export your data in:
- CSV (spreadsheet-compatible)
- JSON (structured data)
- PDF (reports)
8.2 Export Methods
- Self-service export via dashboard
- Bulk export upon request
- API access (for enterprise customers)
8.3 No Lock-In
We do not use proprietary formats that prevent you from migrating your data.
9. Third-Party Services
9.1 Cloud Infrastructure
We use Google Cloud Platform (GCP) for hosting. GCP maintains:
- SOC 1, SOC 2, SOC 3 certifications
- ISO 27001 certification
- GDPR compliance
9.2 Sub-Processors
We may use sub-processors for:
- Email notifications
- Error monitoring
- Analytics
A list of sub-processors is available upon request. We ensure all sub-processors maintain appropriate security standards.
9.3 No Data Selling
We do not sell, rent, or trade your data to any third party.
10. Your Rights
You have the right to:
| Right | Description |
|---|---|
| Access | Request a copy of your data |
| Correction | Request correction of inaccurate data |
| Deletion | Request deletion of your data |
| Portability | Receive data in a portable format |
| Restriction | Request limited processing |
| Objection | Object to certain processing activities |
To exercise these rights, contact info@trinesis.com.
11. Compliance
11.1 Standards
We design our practices to align with:
- Information Technology Act, 2000 (India)
- SPDI Rules, 2011 (India)
- GDPR principles (for international customers)
- Industry best practices
11.2 Audits
Enterprise customers may request:
- Security questionnaire completion
- Third-party audit reports
- Compliance certifications
12. Changes to This Policy
We may update this policy with 30 days notice. Material changes will be communicated via email to your designated contacts. Continued use after changes constitutes acceptance.
13. Contact Us
Data Protection Inquiries: Email: info@trinesis.com
General Contact: Trinesis Technologies Private Limited Office No 19-26, B Building, City Vista Downtown, Kharadi, Pune, Maharashtra 411014, India
Phone: +91 9561444892 Email: info@trinesis.com
Last updated: April 2025