Privacy Policy

Last Updated: Nov 7th, 2024

This Privacy Policy describes how Petrichor Holdings, Inc. ("we," "us," or "our") collects, uses, and shares your information when you visit our website at Cycle.io or use our web application at portal.cycle.io. Cycle.io provides container orchestration and infrastructure management services.

1. Information We Collect

We may collect and process the following types of information:

Customer Contact Information: Names and email addresses, which are used for account management, support, and service-related communications.
Analytics Data: Information about user interactions on the website. This data is only collected at cycle.io properties and is not collected within the application portal.cycle.io. This may include but is not limited to location, duration, page views, button clicks, and form submissions.
Telemetry Data: Information opted into per hub environment by user. This data is used to monitor, diagnose, and improve service performance.
Technical Data: Data related to container base images, provider access credentials, configuration files, and environment variables, which are necessary for container and infrastructure management.

2. Purpose of Data Processing

We collect and process data for the following purposes:

Service Monitoring: Telemetry data helps us monitor service usage, detect issues, and enhance functionality.
Communication: Customer contact information allows us to manage user accounts and provide customer support.
Service Optimization: Technical data is used to enable efficient container orchestration and infrastructure management.

3. Data Sharing and Internal Data Handling

We manage data as follows:

Analytics Providers: We use Segment and Amplitude to track user interactions on the main website (Cycle.io) for analytics purposes. No analytics tracking is implemented within the web application portal (portal.cycle.io).
Internal Data Access: Access to sensitive data is restricted to essential roles, including the CEO and Head of Engineering. Other employees may access data only under specific conditions and with customer consent, and all access is logged.

Internal data is never shared with a third party and all databases are self-hosted by the engineering team. Access to those databases is constrained to top-level executives CEO and Head of Engineering.

Analytics data is never resold or shared with third parties. While analytics data is collected and dashboarded through the providers we mentioned above, those parties are not able to consume that data and resell it in any way.

We have no plans to resell any customer information or interaction to a third party at any time now or in the future.

4. Data Retention

Telemetry Data: Retained according to the selected monitoring tier, ranging from 7 to 120 days.
Contact Information: User contact information is automatically deleted from the database upon user account deletion. Users that also wish to be removed from email can do so through unsubscribe buttons in the email or by creating a request outlined in section 5 below.
Technical Data: This data, which is correlated to individual hubs as opposed to individual users, is kept until a hub is deleted. Once the hub is deleted, Cycle removes all data associated with that hub and no further action is needed.

5. User Rights and Contact Information

While Cycle has a lot of technical data, we want to reiterate that from a personal information standpoint the platform only uses names and email addresses.

Below we have outlined our process for users to interact with their data and are open and willing to comply with any request.

To interact with data a user can simply email our team at info@cycle.io with the information they would like to view or change.

Per GDPR we provide at least these interactions:

Access: Request a copy of their personal data.
Correction: Correct any inaccuracies in their data.
Deletion: Request deletion of their data.
Objection: Object to certain data processing activities.
Data Portability: Request their data in a structured, machine-readable format.

6. Data Security

We implement stringent security measures to protect personal data:

Encryption: Data is encrypted in transit and at rest.
Access Control: Access to production-level systems are limited to engineering Senior Management.
Incident Response: In case of a data breach, we will notify affected users as required by law and take appropriate actions.

7. International Data Transfers

As mentioned above, within Cycle, there are categories of PII.

Cycle PII, which consists of the names and email addresses of employees for organizations using Cycle. This data is replicated across many geographic regions for durability.

User application PII, which consists of data from applications users run on top of their Cycle worker nodes, will exist according to the infrastructure topology defined by the user. The transfer of data internationally is governed by this same user-defined topology.

8. Updates to This Policy

We may update this Privacy Policy periodically. Any changes will be posted on our website, and we may notify users directly if significant changes are made.

9. Contact Us

For questions or concerns about this Privacy Policy, please contact us at:

Email: info@cycle.io

Address: Petrichor Holdings, Inc., 18124 Wedge Pkwy #208