Privacy Policy for Tyto

Information Collected by Tyto

Our Regulatory Chatbot may collect the following types of information:

• User Inputs: Information you provide during interactions with the chatbot, including regulatory queries and personal details.
• Usage Data: Information about how you use the chatbot, such as interaction history and session details.

Purposes of Processing

Our Regulatory Chatbot may collect the following types of information:

• Regulatory Guidance: Providing regulatory information and guidance based on user queries.
• Improving Services: Analyzing user interactions to enhance and improve the functionality of the chatbot.
• Legal Compliance: Complying with applicable legal requirements, including GDPR and CFR 21 Part 11.

Legal Bases for Processing

The "Legal Bases for Processing" refers to the lawful grounds or justifications that an organization must have for collecting, processing, and handling personal data of individuals. It is a fundamental concept under data protection regulations, including the General Data Protection Regulation (GDPR) in the European Union and similar laws worldwide.

Our legal bases for processing personal information under GDPR include:

• User Consent: The data subject has given explicit permission for the processing of their personal data for a specific purpose.
• Contractual Necessity: Processing is necessary for the performance of a contract to which the data subject is a party, or to take pre-contractual steps at the request of the data subject.
• Legitimate Interests: Processing is necessary for the legitimate interests pursued by the data controller, except where such interests are overridden by the interests, rights, or freedoms of the data subject.

Data Security Measures

We implement appropriate technical and organizational measures to ensure the security, confidentiality, and integrity of the data processed by Tyto, aligning with the requirements of CFR 21 Part 11.

Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this policy. Once the information is no longer required, it will be securely deleted.

User Rights

Under GDPR, users have certain rights, including the right to access, correct, erase, restrict processing, and object to processing of their personal information. Requests related to these rights can be made through the contact details provided in this policy.

Third-Party Sharing

We do not disclose personal information collected by Tyto to third parties unless required by law or with user consent. Any third parties involved adhere to data protection laws.

Cookies and Analytics

We may use cookies and analytics tools to enhance user experience and improve our services. Users can manage cookie preferences through their browser settings.

Contact Information

For any questions or concerns related to this Privacy Policy or our data practices, please contact us at info@tytonyx.com.

Changes to the Privacy Policy

We reserve the right to update this Privacy Policy to reflect changes in our practices or legal requirements. Any updates will be communicated on our website.