Enterprise CRM Privacy Policy

Effective date: April 6, 2026

1. Purpose

This Policy describes what personal data Enterprise CRM processes, why we process it, retention periods, and data subject rights.

2. Data controller / contacts

Controller: Enterprise CRM.

Contacts:

• `privacy@ecrm.uz`
• `legal@ecrm.uz`
• `enterprise@ecrm.uz`

3. Data we process

We may process:

• identity and business contact data submitted in forms;
• technical metadata (IP, browser, language, logs, timestamps);
• communication and support records;
• integration data processed on customer instructions.

4. Processing purposes

We process data for:

• demo requests and business communication;
• service delivery and support;
• analytics, quality, and security;
• legal and contractual compliance.

5. Legal basis

Depending on jurisdiction and scenario, legal basis may include consent, contract performance, legal obligations, or legitimate interests.

6. Cookies

We use cookies and similar technologies for session operation, language/theme preferences, analytics, and security. See the separate Cookie Policy.

7. Sharing and disclosure

We may share data with infrastructure providers, integration partners on customer instructions, and authorities where legally required.

We do not sell personal data.

8. Cross-border transfers

Where cross-border transfer is required, we apply reasonable legal and organizational safeguards.

9. Retention

Data is retained only as long as necessary for stated purposes, contractual obligations, and legal retention requirements.

10. Security

We apply role-based access, logging, encrypted transport, backup, and incident-response procedures.

11. Data subject rights

Subject to applicable law, you may request access, correction, deletion, restriction, objection, consent withdrawal, and portability requests where applicable.

Requests: privacy@ecrm.uz.

12. Changes

We may update this Policy with a revised effective date and publish the latest version.