Privacy Policy

Last Updated: October 1, 2025

FirmOS Inc. (“FirmOS,” “we,” “us,” or “our”) respects your privacy and the data you entrust to us. This Privacy Policy (“Policy”) explains how we collect, use, disclose, and safeguard information when you visit our websites, use our applications, or access our services (collectively, the “Services”). Capitalized terms not defined here have the meanings given in our Terms of Use.

By accessing our websites or using the Services, you agree to this Policy and the Terms of Use.

What we collect

We collect information in three primary ways:

  • a) Information you provide directly

    Examples include: name, business contact details, login credentials, billing details, support messages, uploaded files, and any other content you intentionally send to us.

  • b) Information collected automatically

    We may collect device details, log files, diagnostics, usage patterns, and cookie identifiers to operate and improve the Services.

  • c) Information you provide about others

    If you input or upload personal information about another person, you confirm you have a lawful basis (e.g., consent, contract, legitimate interest) to disclose it and to permit our processing for the purposes described in this Policy.

How we use information

We process personal information to:

  • Provide, maintain, and improve the Services

  • Create and manage accounts and authenticate users

  • Offer customer support and respond to requests

  • Send service notices, security alerts, and product updates

  • Conduct training, onboarding, and usage guidance you request

  • Perform analytics, quality assurance, and product development

  • Enforce our agreements and comply with legal obligations

We may send non-essential product marketing communications. You can opt out at any time (see Your choices below).

Legal bases (EEA/UK users): contract performance, legitimate interests (e.g., securing and improving the Services), legal obligations, and—where applicable—your consent.

Aggregated and de-identified data

We may create or use aggregated, anonymized, or de-identified information for analytics, benchmarking, and feature improvement. This data cannot reasonably identify you and may be shared in reports or industry insights.

Data location and transfers

We host data with reputable cloud providers (e.g., Microsoft Azure) in regions we select for reliability and performance. Your information may be processed outside your home jurisdiction. Where required, we implement appropriate safeguards (such as standard contractual clauses) to protect cross-border transfers.

Security

We use administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit and access controls aligned to role-based permissions. No system is perfectly secure. If we learn of a security incident that affects your information, we will notify you consistent with applicable law.

Retention

We keep personal information only as long as necessary for the purposes described in this Policy, to provide the Services, to resolve disputes, to establish or defend legal claims, and to comply with applicable laws.

How we share information

We share personal information only in these limited circumstances:

  • Service providers / subprocessors who support the Services (e.g., hosting, email delivery, analytics, support). They must act on our instructions and protect the data.

  • Corporate transactions such as a merger, acquisition, financing, or sale of assets (your information may be transferred as part of the deal).

  • Legal requirements where we are compelled to do so (e.g., lawful requests from authorities, court orders).

  • With your direction or consent, including integrations you enable.

We do not sell personal information.

Payments

If you purchase paid offerings, payment details are processed by our PCI-DSS–compliant payment processor (e.g., Stripe or PayPal). FirmOS does not store full credit-card numbers on our servers.

Cookies and similar technologies

We use cookies and similar technologies to keep you signed in, remember preferences, analyze usage, and improve performance. You can control cookies through your browser settings, but some features may not function correctly if you disable them. At this time, our Services do not respond to “Do Not Track” signals.

Third-party links and integrations

The Services may link to or integrate with third-party products and sites. Their privacy practices are governed by their own policies. Review those policies to understand how they handle your information.

Your choices and rights

  • Access, correction, deletion: You may request access to, correction of, or deletion of your personal information, subject to applicable law.

  • Marketing opt-out: You can unsubscribe from non-essential marketing emails using the link in those messages.

  • EEA/UK/Swiss residents: You may have additional rights (e.g., to object or restrict processing, data portability, and to lodge a complaint with your local supervisory authority)

Contact: support@firmos.ai

Children's privacy

The Services are not directed to children under 16. If you believe a child under 16 has provided personal information to us, contact support@firmos.ai so we can take appropriate action.

Changes to this Policy

We may update this Policy from time to time. If changes materially affect your rights or how we process your data, we will provide a prominent notice (e.g., within the Service or via email). Your continued use of the Services after the effective date of an update constitutes acceptance of the revised Policy.

Your choices and rights

This statement applies to the following IQFinance Power BI visuals:

  • IQFinance Variance

  • IQFinance Reporting

  • IQFinance Gantt

  • IQFinance Table Edit

  • IQFinance Comments

  • IQFinance Copy

  • IQFinance Visual Planning

  • IQFinance Matrix Planning

  • IQFinance Matrix Light

Scope and data handling

 IQFinance Power BI visuals run inside your Power BI environment and interact with data sources you configure (for example: Azure SQL, Synapse, Snowflake, Microsoft SQL Server, SharePoint, or other connectors). The visuals process data to render views, collect user inputs, and—where applicable—write back changes to your chosen data source. FirmOS does not receive or store your underlying dataset through these visuals.

Security and compliance

IQFinance visuals are designed to operate in line with Microsoft’s Power BI security model. Data access is governed by your Power BI permissions and the credentials you supply to your own data sources. Any changes performed via write-back features occur within your organization’s configured databases or endpoints. Use of the visuals should be consistent with your company policies and applicable data-protection laws (e.g., GDPR, CCPA).

Telemetry (performance/diagnostics)

 We may collect minimal, non-personal diagnostic information (e.g., error codes, feature usage counts) to improve reliability and support. This telemetry does not include your underlying dataset content.

For questions about IQFinance visuals, contact support@firmos.ai.

How to contact us

If you have privacy questions, requests, or complaints, email support@firmos.ai. We aim to provide an initial response within 10 business days and strive to resolve most issues within 30 business days, or we’ll let you know if more time is needed.