Credentric
Legal

Privacy Policy

At Credentric, we are committed to protecting your privacy and ensuring the security of your data. This policy explains how we collect, use, and safeguard your information.

Last updated: January 15, 2024 | Effective: February 1, 2024

Credentric, Inc. ("Credentric," "we," "us," or "our") operates the private credit operations platform at credentric.com. This Privacy Policy describes how we collect, use, disclose, and protect information that applies to our platform and services, and your choices about the collection and use of your information. By using our services, you agree to the collection and use of information in accordance with this policy.

Information We Collect
  • Account Information: Name, email address, company name, job title, and contact information when you create an account.
  • Financial Data: Loan facility details, borrower information, covenant data, and other financial records you upload or create in the platform.
  • Usage Data: Information about how you interact with our services, including features used, pages visited, and actions taken.
  • Device Information: IP address, browser type, operating system, and device identifiers for security and analytics purposes.
  • Communications: Records of your communications with us, including support tickets and feedback.
How We Use Your Information
  • To provide, maintain, and improve our private credit management platform and services.
  • To process transactions, manage your account, and provide customer support.
  • To train and improve our AI models for covenant analysis, risk assessment, and document processing.
  • To send you important updates, security alerts, and service announcements.
  • To comply with legal obligations and enforce our terms of service.
  • To detect, prevent, and address fraud, security breaches, and technical issues.
Data Security
  • All data is encrypted at rest using AES-256 encryption and in transit using TLS 1.3.
  • We maintain SOC 2 Type II certification with annual third-party audits.
  • Access controls follow the principle of least privilege with role-based permissions.
  • We implement multi-factor authentication and session management controls.
  • Regular penetration testing and vulnerability assessments are conducted.
  • Incident response procedures are in place with 24/7 security monitoring.
Your Rights
  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete personal data.
  • Erasure: Request deletion of your personal data, subject to legal retention requirements.
  • Portability: Receive your data in a structured, machine-readable format.
  • Restriction: Request limitation of processing in certain circumstances.
  • Objection: Object to processing based on legitimate interests or direct marketing.
International Data Transfers
  • Data may be transferred to and processed in countries outside your residence.
  • We use Standard Contractual Clauses approved by the European Commission for EU data transfers.
  • All transfers are subject to appropriate safeguards and security measures.
  • We comply with applicable data protection laws in all jurisdictions where we operate.
Data Retention
  • Active account data is retained for the duration of your subscription plus 90 days.
  • Financial records are retained for 7 years to comply with regulatory requirements.
  • Audit logs are retained for 5 years for compliance and security purposes.
  • You may request earlier deletion subject to legal and contractual obligations.
  • Anonymized and aggregated data may be retained indefinitely for analytics.
AI and Machine Learning

Credentric uses artificial intelligence and machine learning to provide covenant analysis, risk assessment, document processing, and other intelligent features. We want you to understand how AI processes your data:

  • AI models are trained on anonymized and aggregated data to improve accuracy and performance.
  • Your specific data is used only to provide services to your organization and is not shared with other customers.
  • You can opt out of having your data used for model improvement by contacting privacy@credentric.com.
  • All AI-generated recommendations include confidence scores and human review options.
Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@credentric.com

Address: Credentric, Inc., 548 Market Street, Suite 95000, San Francisco, CA 94104

Data Protection Officer: dpo@credentric.com