I-129F I-130

GET STARTED

ENTERPRISE CASE TRACKING ADDENDUM

Effective Date: November 26, 2025

This Enterprise Case Tracking Addendum ("Addendum") supplements the Privacy Policy. It applies exclusively to customers and end users of the Enterprise Case Tracking product ("Enterprise Product") and governs the collection, use, and protection of data only in connection with the Enterprise Product. All definitions, obligations, and protections in the Privacy Policy continue to apply except where this Addendum provides additional or specific terms for the Enterprise Product.

1. Additional Categories of Data We Collect

When a customer uses the Enterprise Product, we collect additional information that the customer or its authorized users provide. This may include:

  • Names, email addresses, and roles of employees or other authorized personnel
  • Case numbers tracked by the customer
  • Custom metadata, tags, or fields created or uploaded by the customer
  • Audit logs describing actions taken by specific employees
  • Configuration settings defined by the customer
  • Any files or documents uploaded into the Enterprise Product

We use this information only to deliver, maintain, secure, and improve the Enterprise Product.

2. Customer Ownership of Enterprise Data

All data a customer enters, uploads, or submits into the Enterprise Product ("Enterprise Data") remains the sole property of the customer. We do not claim ownership of Enterprise Data.

3. Restrictions on Sharing and Use

We do not sell, rent, or share Enterprise Data with third parties for advertising, marketing, or independent commercial purposes.

We may disclose Enterprise Data only:

  • To subprocessors that help us operate the Enterprise Product
  • As required by law or valid legal process
  • As directed by the customer

Any aggregated or statistical information derived from Enterprise Data will not be sold or shared with third parties.

4. Data Security and Protection

All data described in this Addendum is protected under Section 5 (Data Security and Protection) of the Privacy Policy.

5. Access Controls

Access to Enterprise Data is limited to personnel who need such access to perform their job duties. We use role-based access controls, multi-factor authentication, and additional internal safeguards to protect Enterprise Data.

6. Data Residency

Enterprise Data is stored in data centers located in the United States of America. Data may be transferred outside that region only when necessary to provide the Enterprise Product and only in compliance with applicable law and our contractual obligations.

7. Data Retention and Deletion

We retain Enterprise Data for the duration of the customer's subscription unless the customer requests earlier deletion. Upon termination, we will delete Enterprise Data within 90 days, unless:

  • the customer requests a different timeline,
  • the customer requests a copy prior to deletion, or
  • applicable law requires longer retention.

Backups are purged on a rolling schedule.

8. Incident Response and Notifications

If we discover a security incident that affects Enterprise Data, we will notify the customer without undue delay. We will provide details about the incident, steps taken to mitigate the impact, and any actions the customer should take. We will continue to provide updates until the incident is resolved.

9. Business Continuity and Disaster Recovery

We maintain business continuity and disaster recovery plans designed to ensure availability and integrity of the Enterprise Product. These plans include redundant infrastructure and backup procedures.

10. Use of Data for Machine Learning or AI

We do not use Enterprise Data to train, improve, or refine machine learning or artificial intelligence models unless the customer provides express written consent. System-level logs or telemetry may be used to monitor service performance, detect abuse, and improve reliability.

11. Data Processing Agreement (DPA)

If the customer has executed a Data Processing Agreement with us, the DPA governs our processing of Enterprise Data and forms part of this Addendum. In the event of a conflict, the DPA will control.

12. Conflicts

If any provision of this Addendum conflicts with the Privacy Policy, the terms of this Addendum will apply to the extent of the conflict.

Last Updated: November 26, 2025