Complitrac
Sign In

Privacy Policy

How we handle your data, security, and privacy at Complitrac App.

1. Purpose

This Public Policy establishes Complitrac Inc.'s ("Complitrac," "Company") public-facing commitments related to privacy, data protection, transparency, and responsible data handling. The purpose of this policy is to clearly describe how Complitrac manages personal and confidential information and to provide assurance to users, customers, and stakeholders regarding our governance and accountability practices.

2. Scope

This policy applies to:

  • All public-facing websites, products, and services operated by Complitrac Inc.
  • All personal and confidential data processed by Complitrac in its role as a data controller or data processor.
  • All users, customers, prospects, employees, and contractors whose data may be processed.

This policy applies globally and is intended to align with applicable data protection, privacy, and security regulations and industry standards.

3. Publicly Available Policies and Notices

Complitrac maintains publicly accessible, written policies that describe how data is collected, used, protected, and managed. These include:

These policies are:

  • Approved by management
  • Reviewed periodically
  • Updated as necessary to reflect changes in legal, regulatory, or business requirements
  • Published on the Company website to ensure transparency for users and customers

4. Privacy and Data Processing Transparency

Complitrac's Privacy Policy provides clear disclosures regarding:

  • Categories of personal data collected
  • Sources of personal data
  • Purposes for which data is processed
  • Legal bases for processing, where applicable
  • Categories of third parties and service providers with whom data may be shared
  • Data retention and disposal practices
  • Safeguards used to protect personal data

Complitrac limits data collection and processing to what is necessary to provide services, meet contractual obligations, and comply with applicable legal requirements.

5. Lawful Processing and Privacy Rights

Complitrac processes personal data in accordance with applicable privacy laws and regulations.

5.1 Lawful Bases for Processing

Personal data is processed only when a valid legal basis applies, which may include:

  • Consent
  • Performance of a contract
  • Compliance with legal obligations
  • Legitimate business interests that do not override individual rights

Legal bases for processing are documented and reviewed as part of Complitrac's privacy governance practices.

5.2 Individual Rights

Complitrac maintains procedures to support individual privacy rights, which may include:

  • Access to personal data
  • Correction of inaccurate or incomplete data
  • Deletion of personal data, subject to legal and contractual obligations
  • Restriction or objection to certain processing activities
  • Data portability, where applicable
  • Withdrawal of consent, where processing is based on consent

Requests are evaluated, documented, and addressed within required timeframes.

6. Data Deletion Requests and Recordkeeping

6.1 Request Submission

Complitrac provides mechanisms for individuals to submit data deletion requests, including:

  • A dedicated data deletion request form referenced in the Privacy Policy; and/or
  • Email submission to support@complitrac.com

Requests must include sufficient information to verify the requester's identity and locate relevant data.

6.2 Logging, Tracking, and Retention

All data deletion requests are:

  • Logged in an internal tracking system
  • Assigned a unique reference identifier
  • Tracked through review, execution, and closure
  • Retained as part of Complitrac's compliance and recordkeeping practices

Request outcomes and response timelines are documented to ensure accountability and consistency.

7. Information Security Practices

Complitrac maintains an information security program designed to protect personal and confidential data. Measures include:

  • Encryption of data in transit and at rest, where appropriate
  • Role-based access controls and least-privilege principles
  • Multi-factor authentication for administrative access
  • Logging and monitoring of system access and activity
  • Secure system configuration and change management practices
  • Security and privacy awareness training for personnel

Access to data is limited to authorized personnel with a legitimate business need and is reviewed periodically.

8. Confidentiality and Third-Party Management

Complitrac protects confidential information through contractual, technical, and procedural controls. Third-party service providers are:

  • Evaluated prior to engagement
  • Required to adhere to confidentiality and data protection obligations
  • Granted access only to data necessary to perform services

Third-party relationships are monitored to ensure ongoing compliance with contractual requirements.

9. Legal and Regulatory Disclosures

Complitrac may disclose personal or confidential data when required to comply with applicable laws, regulations, court orders, or lawful governmental requests. Such disclosures are:

  • Reviewed for legal validity
  • Limited to the minimum necessary information
  • Documented in accordance with internal recordkeeping practices

10. Policy Governance and Review

This Public Policy is:

  • Approved by management
  • Reviewed periodically
  • Updated upon material changes to legal, regulatory, or operational requirements

Records of policy approval, review, and updates are maintained to support internal governance and accountability.

11. Contact Information

Questions regarding this Public Policy, privacy practices, or individual rights may be directed to:

Complitrac Inc.

Email: support@complitrac.com

Location: Dallas, Texas, United States