Back to Home

Privacy Policy

Effective Date: April 8, 2026 Last Updated: April 8, 2026

1. Introduction

iGate OS ("we", "our", "us"), operated by iGate, respects your privacy and is committed to protecting your personal and business data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, applications, APIs, and services ("Services").

By using iGate OS, you agree to the practices described in this policy.

2. Information We Collect

2.1 Personal Information

We may collect:

  • Full name, email address, phone number
  • Company name and job title
  • Billing and payment information
  • Government or regulatory identifiers (if required)

2.2 Technical & Usage Data

  • IP address, device type, browser type
  • Log files and system activity
  • AI model inputs, outputs, and usage patterns
  • API usage metrics and performance data

2.3 Business & Content Data

  • Documents, datasets, and files uploaded to the platform
  • AI prompts and generated outputs
  • Workflow configurations and system integrations

3. How We Use Information

We use your data to:

  • Provide, operate, and improve iGate OS
  • Train, optimize, and enhance AI models (unless opted out under enterprise agreements)
  • Ensure security, fraud prevention, and compliance
  • Process transactions and billing
  • Communicate updates, alerts, and support messages

4. Data Sharing & Disclosure

We may share data with:

  • Cloud infrastructure providers and technology partners
  • Regulatory authorities if required by law
  • Affiliates, subsidiaries, and strategic partners
  • Third-party integrations authorized by the user

We do NOT sell personal data.

5. Data Ownership & AI Usage

  • Users retain ownership of their data.
  • By using iGate OS, you grant us a limited, worldwide, non-exclusive license to process, store, and analyze data to deliver services.
  • AI-generated outputs are provided "as-is" without guarantees of accuracy or ownership exclusivity.

6. Data Retention

We retain data:

  • As long as necessary to provide services
  • To comply with legal obligations
  • For legitimate business purposes (analytics, security)

We may anonymize data for long-term use.

7. Security

We implement:

  • Encryption (in transit and at rest)
  • Access control and authentication mechanisms
  • Continuous monitoring and threat detection

However, no system is 100% secure.

8. International Data Transfers

Your data may be processed in multiple jurisdictions. By using iGate OS, you consent to such transfers.

9. Your Rights

Depending on jurisdiction, you may:

  • Access your data
  • Request correction or deletion
  • Object to processing
  • Request data portability

10. Third-Party Services

iGate OS may integrate with third-party services. We are not responsible for their privacy practices.

11. Changes to This Policy

We may update this policy at any time. Continued use of the platform constitutes acceptance.

AI Governance Policy

12. Responsible AI Principles

iGate commits to:

  • Fairness and non-discrimination
  • Transparency and explainability (where feasible)
  • Accountability and human oversight
  • Privacy and data protection

13. Acceptable Use of AI

Users must NOT use AI for:

  • Illegal activities
  • Harmful or deceptive practices
  • Generating misinformation, fraud, or abuse
  • Violating intellectual property rights

14. Data Classification Framework

14.1 Categories

  • Public Data – Non-sensitive
  • Internal Data – Business-sensitive
  • Confidential Data – Restricted access
  • Highly Sensitive Data – Regulated (e.g., financial, health)

14.2 Handling Rules

  • Encryption required for confidential data
  • Restricted access for sensitive categories
  • Logging and audit trails mandatory

15. Model Accountability

15.1 Limitations

AI systems:

  • May produce inaccurate or biased outputs
  • Are not a substitute for professional judgment

15.2 Human Oversight

Customers are responsible for reviewing AI outputs and validating critical decisions.

16. Audit & Monitoring

iGate may:

  • Log AI interactions
  • Monitor misuse
  • Suspend accounts violating policy

17. Compliance Alignment

This policy aligns with:

  • Saudi SDAIA AI Ethics Principles
  • Global AI governance frameworks

18. Enforcement

Violations may result in:

  • Suspension
  • Termination
  • Legal action

Data Processing Agreement (DPA)

19. Roles

  • Customer = Data Controller
  • iGate = Data Processor

20. Processing Scope

iGate processes data only to:

  • Deliver services
  • Maintain security
  • Improve platform (unless opted out)

21. Data Protection Measures

  • Encryption at rest and in transit
  • Role-based access control (RBAC)
  • Data minimization
  • Logging & monitoring

22. Subprocessors

iGate may use:

  • Cloud providers (e.g., AWS, Azure)
  • Infrastructure vendors

All subprocessors must meet equivalent security standards.

23. Data Breach Protocol

  • Notification within 72 hours
  • Incident report and mitigation plan
  • Cooperation with customer/regulator

24. Data Subject Rights

iGate supports:

  • Access, correction, deletion
  • Data portability (where applicable)

25. Cross-Border Transfers

Permitted with:

  • Adequate safeguards
  • Customer consent where required

26. Contact

For privacy and data protection inquiries:

📧 privacy@igate.sa

📍 iGate Headquarters, Saudi Arabia