Privacy Policy

# Privacy Policy

Effective date: March 22, 2026

97 Technologies ("97 Technologies", "we", "us", or "our") provides 97T Boards (the "Service"), an internal project-management application used by invited users. This Privacy Policy explains how we collect, use, disclose, and protect personal information when you use the Service.

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

## 1. Scope

This Privacy Policy applies to personal information processed through 97T Boards, including the web app at `boards.97-t.com` and related APIs and notifications.

It does not apply to third-party websites or services that we do not control.

## 2. Information We Collect

We may collect the following categories of information:

- **Account and profile information:** name, email address, authentication identifiers, workspace membership, and account settings.
- **Workspace and task data:** project names, tasks, comments, metadata, and other content you or your team create in the Service.
- **Invitation and onboarding data:** invitation status, invitation email addresses, and onboarding details needed to create and manage accounts.
- **Integration data:** data related to connected tools (for example, GitHub links and review-request metadata) when you use integration features.
- **Notification data:** preferences and delivery records for in-app, email, and push notifications.
- **Technical and usage data:** device/browser details, IP address, log data, request metadata, and diagnostic information used to operate and secure the Service.

## 3. How We Use Information

We use personal information to:

- provide, maintain, and improve the Service;
- create and manage accounts and workspace access;
- process invitations and onboarding;
- support collaboration features such as tasks, comments, and project settings;
- send operational communications and product updates based on user preferences;
- monitor performance, troubleshoot issues, and protect against abuse, fraud, and security incidents;
- comply with legal obligations and enforce our terms.

## 4. Legal Bases (EEA/UK, where applicable)

Where required by applicable law, we process personal information under one or more of the following legal bases:

- performance of a contract (providing the Service);
- legitimate interests (security, product improvement, and administration);
- consent (where required, such as certain notifications or integrations);
- compliance with legal obligations.

## 5. How We Share Information

We do not sell personal information.

We may share personal information with:

- **Service providers** that help us run the Service (for example hosting, database, email delivery, and infrastructure providers);
- **integration providers** when you use related features (for example GitHub-linked workflows);
- **professional advisors** (such as legal, audit, or accounting advisors) as needed;
- **authorities or other parties** when required by law, legal process, or to protect rights, safety, and security;
- **successors in a business transfer** (for example merger, acquisition, or asset sale), subject to applicable safeguards.

## 6. Data Retention

We retain personal information for as long as needed to provide the Service, meet legal and operational requirements, resolve disputes, and enforce agreements.

Retention periods may vary based on data type, account status, and legal obligations.

## 7. Data Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

## 8. Your Privacy Rights

Depending on your location, you may have rights to:

- access personal information we hold about you;
- request correction or deletion of certain information;
- object to or restrict certain processing;
- request data portability;
- withdraw consent where processing is based on consent.

To exercise these rights, contact us using the details below. We may need to verify your identity before completing a request.

## 9. International Data Transfers

Your information may be processed in countries other than where you live. Where required, we use appropriate safeguards for cross-border transfers.

## 10. Children's Privacy

The Service is not directed to children under 13 (or a higher age where required by local law), and we do not knowingly collect personal information from children.

## 11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will post the updated version with a new effective date.

## 12. Contact Us

If you have questions or requests about this Privacy Policy, contact:

- **97 Technologies**
- **Email:** build@97technologies.com