Legal and trust

Privacy Policy

How Partglyph handles personal data, customer data, service data, and privacy requests.

Launch draft pending legal review
Effective date: May 8, 2026. This page is a launch draft and should be reviewed before paid public launch.

Who We Are

Partglyph is operated by Cyberglyphs Systems Sdn Bhd. For privacy questions, contact [email protected].

Data We Collect

  • Account data, such as name, email address, login details, organization, company name, role, and authentication activity.
  • Billing and subscription data, such as plan, payment status, credits, invoices, and payment-provider references.
  • Support data, such as support tickets, replies, attachments or file references, status, category, and internal operational notes.
  • Customer Data as described in the Terms, including uploaded files, catalogues, datasheets, technical documents, drawings, specifications, part numbers, manufacturer names, supplier information, RFQs, search queries, matching requests, matching results, user feedback, correction data, validation data, usage data, metadata, technical notes, procurement-related information, and account data.
  • Usage and security data, such as device/browser signals, IP address, session events, audit logs, error logs, and abuse-prevention signals.

How We Use Data

  • Provide, operate, maintain, secure, troubleshoot, and support the Services.
  • Process searches, matching requests, recommendations, rankings, outputs, and related service functions.
  • Analyze, improve, develop, train, test, validate, benchmark, commercialize, and expand the Services.
  • Administer accounts, organizations, billing, credits, subscriptions, and support.
  • Prevent fraud, misuse, abuse, security incidents, and unlawful activity.
  • Comply with legal, tax, accounting, audit, dispute-resolution, and recordkeeping obligations.

AI, Analytics, and Service Providers

Customer Data may be processed by us, our affiliates, contractors, service providers, hosting providers, analytics providers, AI providers, infrastructure providers, security providers, and other subprocessors for the purposes described in the Terms and this Privacy Policy.

Customer authorizes us to transfer, process, and store Customer Data in any country or region where we or our service providers operate, subject to applicable law and this Privacy Policy.

Derived Data

Derived Data includes, without limitation, aggregated data, anonymized data, de-identified data, statistical data, analytical data, transformed data, extracted data, normalized data, technical mappings, compatibility rules, matching logic, engineering rules, product relationships, product classifications, schemas, taxonomies, standards mappings, performance insights, search patterns, benchmark results, model improvements, correction patterns, validation patterns, ranking logic, confidence-scoring logic, product-performance learnings, and technical know-how created from, based on, or related to Customer Data or use of the Services.

Derived Data does not identify Customer or any individual as the source of the underlying Customer Data. Derived Data is not Customer Data, is not confidential to Customer, is owned by us, and may be retained, used, disclosed, licensed, commercialized, transferred, and exploited by us during and after the term of the account, without restriction, compensation, attribution, accounting, or obligation to Customer.

Retention

Upon account cancellation, termination, suspension, or expiration, we may retain Customer Data for as long as reasonably necessary or useful for service operation, product improvement, legal compliance, tax, billing, accounting, audit, security, fraud prevention, abuse prevention, backup, disaster recovery, dispute resolution, enforcement of our agreements, internal recordkeeping, and other legitimate business purposes, subject to applicable law and this Privacy Policy.

We may delete, anonymize, aggregate, de-identify, archive, restrict, or retain Customer Data at our discretion, except where deletion, retention, or other handling is required by applicable law.

Personal Data Rights

Personal data will be handled in accordance with applicable data protection laws. To the extent applicable law requires deletion, restriction, correction, or other handling of personal data, we may satisfy such requirement by deleting, anonymizing, de-identifying, aggregating, restricting, or otherwise processing the relevant data in a manner permitted by law.

Privacy requests can be sent to [email protected].

Security

We will use commercially reasonable measures designed to protect Customer Data from unauthorized access, loss, misuse, modification, or disclosure.

No system, network, software, database, AI model, cloud service, or transmission method is completely secure. We do not guarantee that Customer Data will be free from unauthorized access, cyberattack, loss, corruption, interruption, or security incident.