Privacy Policy

Last updated: October 1, 2025

Riskora Restore ("we," "our," or "us") is a division of Autumnware LLC. We are committed to protecting your privacy and handling your data in an open and transparent manner. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

1. Information We Collect

Information You Provide to Us

We collect information that you voluntarily provide to us when you:

• Fill out our pilot request form
• Contact us via email
• Use our services
• Subscribe to our communications

This information may include:

• Contact Information: Name, email address, phone number, company name
• Account Information: Database environment details, database counts, testing preferences
• Communication Data: Any information you provide in messages to us

Information Automatically Collected

When you visit our website, we automatically collect certain information about your device and browsing actions, including:

• Technical Information: IP address, browser type, operating system, device information
• Usage Data: Pages visited, time spent on pages, links clicked, referring website
• Marketing Attribution: UTM parameters and other referral information

Database Testing Information

When you use our restore testing services, we collect and process:

• Database Metadata: Database names, sizes, backup schedules, engine versions
• Test Results: RTO/RPO metrics, integrity check results, sanity query outcomes
• Technical Logs: Test execution logs, error messages, performance metrics

Important: We do not access, collect, or store your actual database contents or business data. We only restore databases to sandbox environments for validation purposes and immediately destroy them after testing.

2. How We Use Your Information

We use the information we collect for the following purposes:

Service Delivery

• Provide, operate, and maintain our restore testing services
• Execute automated restore tests and generate evidence reports
• Send alerts and notifications about test results
• Provide customer support and respond to inquiries

Business Operations

• Process pilot requests and onboard new customers
• Send administrative information, updates, and security alerts
• Manage billing and invoicing
• Monitor and analyze service performance and usage trends

Improvement and Development

• Improve our website and services
• Develop new features and functionality
• Conduct research and analysis

Marketing (with your consent)

• Send you information about our services, features, and updates
• Provide relevant content and recommendations

Legal Compliance

• Comply with legal obligations
• Enforce our terms and conditions
• Protect our rights, privacy, safety, or property

3. How We Share Your Information

We do not sell, rent, or trade your personal information. We may share your information in the following circumstances:

Service Providers

We may share information with third-party service providers who perform services on our behalf, including:

• Cloud infrastructure providers (Microsoft Azure)
• Email service providers
• Analytics providers
• Customer support tools

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control.

Legal Requirements

We may disclose your information if required by law or in response to valid legal requests, such as:

• Complying with a subpoena, court order, or legal process
• Protecting against fraud or security threats
• Protecting the rights, property, or safety of Riskora, our users, or the public

With Your Consent

We may share your information for any other purpose with your explicit consent.

4. Data Security

We implement appropriate technical and organizational security measures to protect your information, including:

• Encryption: Data in transit is encrypted using TLS/SSL; data at rest is encrypted using industry-standard methods
• Access Controls: Least-privilege access policies and multi-factor authentication
• Audit Logging: Comprehensive logging of all system access and changes
• Immutable Storage: Evidence reports are stored in write-once, read-many (WORM) blob storage
• Sandbox Isolation: Database restores occur only in isolated sandbox environments
• Automatic Deletion: Restored databases are automatically destroyed after testing

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

5. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

Retention Periods

• Account Information: Retained while your account is active and for 90 days after account closure
• Evidence Reports: Retained for 12-24 months (configurable based on your compliance requirements)
• Technical Logs: Retained for 90 days for troubleshooting and security purposes
• Marketing Data: Retained until you unsubscribe or request deletion

6. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

Access and Portability

You have the right to request a copy of the personal information we hold about you.

Correction

You have the right to request that we correct any inaccurate or incomplete information.

Deletion

You have the right to request deletion of your personal information, subject to certain exceptions (e.g., legal obligations, dispute resolution).

Opt-Out

You can opt out of marketing communications at any time by clicking the unsubscribe link in our emails or contacting us directly.

Do Not Track

Our website does not currently respond to "Do Not Track" signals from browsers.

To exercise any of these rights, please contact us at: privacy@autumnware.com

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information. Cookies are small text files stored on your device that help us:

• Remember your preferences
• Understand how you use our website
• Improve your user experience
• Analyze website traffic and performance

Types of Cookies We Use

• Essential Cookies: Required for the website to function properly
• Analytics Cookies: Help us understand how visitors use our website
• Marketing Cookies: Track marketing campaign effectiveness

You can control cookies through your browser settings. Note that disabling cookies may affect website functionality.

8. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to review their privacy policies before providing any information.

9. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using our services, you consent to such transfers.

We ensure appropriate safeguards are in place for international transfers, including:

• Standard contractual clauses approved by relevant authorities
• Data processing agreements with service providers
• Compliance with applicable data protection regulations

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated policy on this page
• Updating the "Last updated" date
• Sending you an email notification (for significant changes)

Your continued use of our services after changes become effective constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Riskora Restore
A Division of Autumnware LLC
Email: privacy@autumnware.com

13. Data Protection Officer

For privacy-related inquiries or to exercise your data protection rights, you may contact our Data Protection Officer at: privacy@autumnware.com

---

This Privacy Policy is designed to comply with GDPR, CCPA, and other applicable data protection regulations. However, this is not legal advice. For specific compliance questions, please consult with legal counsel.