Privacy Policy
Effective Date: January 15, 2025
At BrightEnergex, we believe transparency isn't just good practice—it's the foundation of trust. This policy explains how we handle your information when you use our automated financial dashboard services. We've written this in plain language because legal documents shouldn't require a law degree to understand.
Information We Collect
Running a financial dashboard platform means we work with data. Here's what we collect and why it matters for your experience.
Account Information
When you sign up, we ask for basics like your name, email address, company details, and contact information. This helps us set up your account and keep you informed about your dashboards. We also collect your payment details through secure processors—we never store complete credit card numbers on our servers.
Financial Data You Connect
Our dashboards work by connecting to your financial accounts and systems. You choose what to connect. We receive transaction data, account balances, and related financial information needed to generate your insights. This data stays encrypted both when it's moving between systems and when it's stored.
Usage and Technical Data
Like most online services, we collect technical information about how you use BrightEnergex. This includes your IP address, browser type, device information, and activity logs. We use this to improve performance, troubleshoot issues, and understand which features matter most to our users.
South Korea Specific: For users operating in South Korea, we comply with the Personal Information Protection Act (PIPA). This means additional safeguards for your data and specific rights regarding how your information is processed and stored.
How We Use Your Information
Data collection isn't meaningful without purpose. Here's exactly what we do with the information you share.
- Generate your automated financial dashboards and analytics
- Process transactions and manage your account billing
- Send you important updates about your service and account
- Provide customer support when you need help
- Improve our platform based on how people actually use it
- Detect and prevent fraud or security issues
- Comply with legal requirements and financial regulations
We don't sell your financial data. Period. That's not our business model and never will be.
Data Sharing and Disclosure
Your financial information is sensitive, and we treat it that way. We share data only in specific circumstances.
| Who We Share With | What We Share | Why |
|---|---|---|
| Financial Institutions | Connection credentials, transaction queries | To retrieve your financial data for dashboard generation |
| Cloud Service Providers | Encrypted data for storage and processing | To host and operate our platform infrastructure |
| Payment Processors | Billing information, transaction amounts | To process your subscription payments securely |
| Legal Authorities | Required information per legal request | When legally obligated or to protect rights and safety |
All third-party service providers sign agreements requiring them to protect your information and use it only for specified purposes. We verify their security practices before working with them.
Your Privacy Rights
Your data belongs to you. We provide several ways to control how it's used and stored.
Access Your Data
Request a copy of all personal information we have about you. We'll provide it in a readable format within 30 days.
Correct Information
Update or correct any inaccurate data in your account. Most information you can change directly in your settings.
Delete Your Account
Request complete deletion of your account and associated data. We'll remove it within 90 days, except what we're legally required to keep.
Export Your Data
Download your financial data and dashboard configurations. You own your insights, and we make them portable.
Opt Out of Communications
Control what emails you receive from us. You'll always get critical account notices, but marketing is optional.
Restrict Processing
Limit how we use your data in certain situations. This might affect service functionality, but the choice is yours.
To exercise any of these rights, contact us at the details provided at the end of this policy. We'll verify your identity and process your request promptly.
Data Security Measures
Financial data requires serious protection. Here's how we secure your information.
All data transmission uses TLS 1.3 encryption—the same standard banks use. Your financial information is encrypted at rest using AES-256 encryption. We maintain multiple layers of security including firewalls, intrusion detection systems, and regular security audits.
Our team receives ongoing security training. We limit access to your data strictly to employees who need it for their work. Every access is logged and monitored. We conduct penetration testing quarterly to identify and fix vulnerabilities before they become problems.
Authentication: We support two-factor authentication and strongly encourage all users to enable it. Single-password protection isn't enough for financial systems.
Despite our best efforts, no system is completely secure. If we detect a breach affecting your data, we'll notify you within 72 hours and explain what happened, what data was affected, and what steps we're taking.
Data Retention and Deletion
We don't keep your information forever. Here's our approach to data retention.
Active account data stays accessible as long as you maintain your subscription. Financial transaction data used for dashboard generation is retained for 7 years to comply with financial record-keeping requirements. Usage logs and technical data are typically kept for 2 years for operational purposes.
When you close your account, we begin the deletion process. Your dashboard configurations are removed within 30 days. Personal information is deleted within 90 days. Financial data subject to legal retention requirements is anonymized—stripped of identifying information—and stored only as long as legally required.
You can request expedited deletion of specific data types not subject to legal holds. Contact our support team with details about what you want removed.
International Data Transfers
BrightEnergex operates globally, which sometimes means data crosses borders.
Our primary servers are located in secure data centers. When you use our service from South Korea, your data may be processed on servers in other regions. We ensure all international transfers comply with applicable data protection laws.
For transfers outside South Korea, we use standard contractual clauses approved by relevant authorities. These provide legal guarantees that your data receives consistent protection regardless of where it's processed. We also evaluate the privacy laws of destination countries before transferring data.
You have the right to request information about where your specific data is stored and processed. This information is available through your account settings or by contacting our privacy team.
Cookies and Tracking Technologies
Our platform uses cookies and similar technologies. Here's what they do and how to control them.
Essential cookies keep you logged in and remember your dashboard preferences. These are necessary for the service to work. Analytics cookies help us understand how people use our platform so we can make improvements. Marketing cookies track which channels bring users to our site—useful for understanding what content is helpful.
You can control non-essential cookies through your browser settings or our cookie preference center. Blocking essential cookies will prevent you from using certain features of the platform.
We don't use cookies to track you across other websites. What happens on BrightEnergex stays on BrightEnergex.
Children's Privacy
BrightEnergex is designed for business use and not intended for children under 18. We don't knowingly collect information from minors. If you believe we've inadvertently collected data from someone under 18, contact us immediately and we'll delete it.
Changes to This Policy
Privacy practices evolve, and sometimes regulations change. When we update this policy, we'll notify you through your registered email address at least 30 days before changes take effect.
Previous versions of this policy are available upon request. We maintain an archive dating back to our launch in 2023.
Contact Us About Privacy
Questions about how we handle your data? Want to exercise your privacy rights? We're here to help.
Our privacy team reviews and responds to all inquiries within 5 business days.