We Never Sell Your Data
Your data belongs to you. Xalyc does not sell, rent, or trade personal or business information to any third party — ever. Full stop.
Security Policy
Your data.
Your rights.
Our commitment.
When you work with Xalyc, you’re trusting us with data that matters. Here’s exactly how we treat that trust — in plain language, no legal jargon required.
We Collect Only What We Need
We gather only the information necessary to deliver our services. Data is used for its stated purpose and nothing else — no upselling, no profiling.
Your Data Is Kept Secure
All data is encrypted in transit and at rest. Access is strictly controlled, with security practices aligned to NIST CSF 2.0 and SOC 2 standards.
You Stay in Control
You have the right to access, correct, or delete your personal data at any time. We honor these rights regardless of where your business is located.
Client Data Stays Client Data
Data you share for AI development or testing is used only within your engagement — never repurposed, never shared with other clients, never sent to third-party AI platforms without your written consent.
We Don’t Keep It Longer Than Necessary
Data is retained only as long as required to deliver your service or meet legal obligations — then it’s securely deleted or returned to you on request.
NIST CSF 2.0 Aligned
SOC 2 Type II (in progress)
GDPR & CCPA Compatible
AES-256 Encryption
Data Never Sold
