Privacy Policy
Arion Networks ("we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services, including:
- ArionComply: AI-powered compliance automation platform
- A5EP: Autonomous 5G Enterprise Platform
- EIP: Enterprise Innovation Platform
- LabGuide: Affirmed Networks training services
- Consulting Services: Technology consulting and advisory
1. Information We Collect
1.1 Information You Provide
We may collect information that you voluntarily provide to us, including:
- Contact information (name, email address, phone number, company name)
- Account credentials (username, password)
- Business information (job title, department, company size, industry)
- Communication preferences
- Information submitted through forms, support requests, or communications
1.2 Service-Specific Data Collection
Depending on which services you use, we may collect additional information:
ArionComply (Compliance Platform):
- Compliance framework selections and requirements
- Security controls and implementation details
- Audit evidence and documentation
- Risk assessment data and findings
- Policy documents and procedures
- Organizational structure and responsibilities
- Asset inventories and configurations
A5EP (5G Network Platform):
- Network configuration data
- Performance metrics and analytics
- Device and infrastructure information
- Network topology and connectivity data
- Operational logs and diagnostics
EIP (Innovation Platform):
- Project and workflow information
- Code repositories and configurations
- Testing results and quality metrics
- Deployment configurations
- Lab environment specifications
- Development team collaboration data
LabGuide (Training Services):
- Student enrollment and registration information
- Course completion records and certifications
- Training session attendance
- Lab exercise results and assessments
- Learning management system data
1.3 Automatically Collected Information
When you access our services, we may automatically collect:
- Device information (IP address, browser type, operating system)
- Usage data (pages visited, time spent, navigation paths, feature usage)
- Technical information necessary for security and service functionality
- Performance metrics and system diagnostics
- Cookies and similar tracking technologies (see our Cookies Policy)
2. How We Use Your Information
We use the collected information for legitimate business purposes, including:
- Providing, maintaining, and improving our services
- Processing transactions and managing customer accounts
- Responding to inquiries and providing customer support
- Sending service-related communications and updates
- Analyzing usage patterns to improve user experience
- Ensuring security and preventing fraud
- Complying with legal obligations and enforcing our terms
- Marketing communications (only with your consent, where required)
2.1 AI and Machine Learning Processing
Our services use artificial intelligence and machine learning technologies to enhance functionality and provide intelligent automation. This includes:
- ArionComply: AI analysis of compliance requirements, automated control mapping, intelligent gap analysis, and risk assessment
- A5EP: AI-driven network optimization, predictive maintenance, and autonomous network management
- EIP: AI-powered workflow creation, intelligent testing recommendations, and deployment optimization
AI processing is performed to improve service quality and efficiency. We do not use your data to train AI models that benefit other customers unless you explicitly consent. Your data remains isolated and confidential.
3. Information Sharing and Disclosure
We do not sell your personal information. We may share your information only in the following circumstances:
- Service Providers: With trusted third-party vendors who perform services on our behalf (hosting, analytics, customer support) under strict confidentiality agreements
- Legal Compliance: When required by law, court order, or governmental authority
- Business Transfers: In connection with a merger, acquisition, or sale of assets (with appropriate safeguards)
- Protection of Rights: To protect the rights, property, and safety of Arion Networks, our users, or others
- With Your Consent: For any other purpose with your explicit consent
4. Data Security
We implement industry-standard security measures to protect your information, including:
- Encryption of data in transit (TLS 1.3+) and at rest (AES-256)
- Multi-factor authentication and access controls
- Regular security assessments, penetration testing, and monitoring
- Security incident response procedures
- Employee training on data protection practices
- Network segmentation and isolation
- Regular security patches and updates
- Audit logging and monitoring
However, no system is completely secure. We cannot guarantee absolute security of your information.
4.1 Compliance Data Protection (ArionComply)
For customers using ArionComply, we implement additional safeguards due to the sensitive nature of compliance and security data:
- Data Isolation: Each customer's data is logically isolated and cannot be accessed by other customers
- Role-Based Access: Strict role-based access controls within your organization
- Audit Trails: Complete audit logging of all data access and modifications
- Data Residency: Options for data residency requirements based on your jurisdiction
- Confidentiality: Your compliance data, security controls, audit findings, and related information remain strictly confidential
- No Cross-Customer Learning: We do not use your compliance data to improve services for other customers
5. Data Retention
We retain personal information only as long as necessary for the purposes stated in this policy, unless a longer retention period is required or permitted by law. When information is no longer needed, we securely delete or anonymize it.
6. Your Rights and Choices
Depending on your jurisdiction, you may have the following rights:
- Access: Request access to your personal information
- Correction: Request correction of inaccurate information
- Deletion: Request deletion of your information (subject to legal retention requirements)
- Portability: Request a copy of your data in a machine-readable format
- Opt-Out: Unsubscribe from marketing communications
- Restrict Processing: Request limitation of how we process your information
- Object: Object to certain types of processing
- Withdraw Consent: Withdraw previously given consent
- Lodge a Complaint: File a complaint with your local data protection authority
How to Exercise Your Rights
You can exercise these rights in the following ways:
- Online Form: Submit a Data Privacy Rights Request (fastest method)
- Email: Send your request to info@arionetworks.com with subject "Data Privacy Rights Request"
- Response Time: We will respond within 30 days (GDPR) or 45 days (CCPA) of verifying your identity
We may need to verify your identity before processing certain requests to protect your privacy and security.
7. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information in accordance with applicable data protection laws.
8. Children's Privacy
Our services are intended for business use and not directed to individuals under the age of 18. We do not knowingly collect information from children. If we become aware that we have collected information from a child, we will take steps to delete it.
9. Third-Party Links
Our website may contain links to third-party sites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The "Last Updated" date at the top indicates when the policy was last revised. We will notify you of material changes through our website or other communication channels.
11. Legal Basis for Processing (GDPR)
For users in the European Economic Area (EEA), we process personal information based on the following legal grounds:
- Contract Performance: Processing necessary to provide our services
- Consent: Where you have provided explicit consent
- Legitimate Interests: For business operations, security, and service improvement
- Legal Obligation: To comply with applicable laws and regulations
Contact Us
If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:
Email: info@arionetworks.com
Address: Arion Networks
Attn: Privacy Officer
[Company Address]
This policy is designed to comply with GDPR, CCPA, and other applicable privacy regulations. For jurisdiction-specific information or questions, please contact our Privacy Officer.