Effective date: January 1, 2024
This Privacy Policy explains how Enodia (LNI Software, Inc. and its affiliates, “Enodia,” “we,” “us,” or “our”) collects, uses, discloses, and safeguards personal data when you visit our websites, use our products and services, interact with our communications, or otherwise engage with us (collectively, the “Services”).
If you access our Services on behalf of an organization, you represent that you have authority to do so and that we may process your information as described here.
This Policy covers “Personal Data,” meaning information that identifies or relates to an identified or identifiable individual, including information defined as personal data, personal information, or similar terms under applicable laws. It does not cover practices of third parties we do not control.
We may collect the following categories of Personal Data:
We collect Personal Data directly from you, automatically from your devices and use of the Services, from your organization/administrator, from third-party integrations you connect (e.g., developer tools), from service providers (e.g., analytics, payments), and from publicly available sources as permitted by law.
We do not seek to collect Sensitive Personal Data (e.g., precise geolocation, health data, government IDs) unless you provide it to us for a specific purpose and we have a lawful basis to process it. Do not include Sensitive Personal Data in User Submissions unless strictly necessary.
We use Personal Data to: (a) provide, maintain, and improve the Services; (b) authenticate users and secure accounts; (c) process transactions, billing, and customer support; (d) operate integrations you authorize; (e) personalize content and measure performance; (f) comply with legal obligations; and (g) prevent fraud, abuse, and security incidents.
Where required by law (e.g., GDPR/UK GDPR), our lawful bases include: performance of a contract; legitimate interests (e.g., to secure and improve the Services); consent (e.g., for certain cookies/marketing); and compliance with legal obligations.
We and our providers use cookies, pixels, local storage, and similar technologies to enable core functionality, remember preferences, analyze usage, and (where applicable) provide advertising/attribution. You can manage non-essential cookies through our banner or your browser settings. If required in your location, we will seek consent before setting non-essential cookies.
We may disclose Personal Data to: (a) service providers/contractors who process data on our behalf under appropriate agreements; (b) integration partners you choose to connect; (c) professional advisors (e.g., legal, accountants); (d) authorities or third parties to comply with law, protect rights, or respond to lawful requests; and (e) a buyer or successor in connection with a merger, acquisition, or similar transaction. We do not permit service providers to use Personal Data for their own marketing.
We operate globally. Where Personal Data is transferred internationally, we rely on recognized transfer safeguards (e.g., Standard Contractual Clauses, UK IDTA/Addendum, and other mechanisms as applicable). We take steps designed to ensure an equivalent level of protection for transferred Personal Data.
We implement administrative, technical, and physical safeguards designed to protect Personal Data. No system is 100% secure, and we cannot guarantee absolute security. We retain Personal Data for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements, then delete or de-identify it per our retention schedules.
The Services are not directed to children under 13 (or under the age defined by local law). We do not knowingly collect Personal Data from children. If you believe a child has provided Personal Data to us, contact hello@enodia.io and we will take appropriate steps.
Depending on your state (e.g., California (CPRA/CCPA), Virginia (VCDPA), Colorado, Connecticut, Utah, and others as they become effective), you may have rights to:
We do not use or disclose Sensitive Personal Information to infer characteristics. We do not knowingly sell or share Personal Data of consumers under 16.
To exercise rights, submit a verifiable request from your account or email privacy@enodia.io. If we deny a request (in whole or part), you may appeal by replying to our decision or emailing privacy@enodia.io with “Appeal” in the subject. If your state provides a right to complain to the Attorney General, you may do so after our appeal response.
We honor browser-based Global Privacy Control (GPC) signals for “Do Not Sell or Share” where legally required and technically feasible.
Under PIPEDA and substantially similar provincial laws (e.g., Quebec Law 25, Alberta PIPA, BC PIPA), you may request access to, or correction of, your Personal Information in our control, withdraw consent (where processing is based on consent), and lodge a complaint with the Office of the Privacy Commissioner of Canada (OPC) or your provincial commissioner. We obtain consent for non-essential purposes as required and rely on appropriate legal bases for processing. To exercise rights, contact privacy@enodia.io.
Where GDPR/UK GDPR applies and Enodia acts as a controller, you have the right to request access, rectification, erasure, restriction, portability, and to object to processing based on legitimate interests or for direct marketing. Where processing is based on consent, you may withdraw consent at any time (without affecting lawfulness before withdrawal). You also have the right to lodge a complaint with your local supervisory authority.
If required, we will appoint an EU and/or UK representative. Contact details will be provided upon request at privacy@enodia.io.
If our practices constitute “selling” or “sharing” Personal Data (as defined by applicable law), you may opt out at any time through in-product controls or by emailing privacy@enodia.io. We will also process GPC signals as an opt-out request, where required.
We do not make decisions based solely on automated processing that produce legal or similarly significant effects about you without appropriate human involvement. If this changes, we will disclose the logic involved, significance, and envisaged consequences as required by law, and provide mechanisms to request human review and to contest the decision.
We may update this Policy from time to time. The “Effective date” above reflects the latest version. Material changes will be notified through the Services or by reasonable means.
Questions or concerns about this Policy or our privacy practices can be directed to privacy@enodia.io or hello@enodia.io. If you are in the EU/EEA or UK and wish to exercise rights or inquire about transfer safeguards, contact privacy@enodia.io.