Privacy Policy

Orchestrik is a product of ITMTB Technologies Private Limited (“ITMTB”, “we”, “us”). This Privacy Policy describes how we collect, use, and protect information when you use the Orchestrik platform, website (orchestrik.ai), and related services.

By accessing or using Orchestrik, you agree to the collection and use of information in accordance with this policy. If you are using Orchestrik on behalf of an organisation, you represent that you have authority to bind that organisation to this policy.

Account and contact information: When you register or book a demo, we collect your name, work email address, company name, job title, and phone number.

Usage and analytics data: We use Google Analytics (including Google Tag Manager) and first-party cookies to collect information about pages visited, links clicked, session duration, and device/browser type. This data is used to improve the product and understand how the site is used. You can opt out of Google Analytics at any time using the Google Analytics Opt-out Browser Add-on.

Agent execution data: When you deploy agents on the Orchestrik platform, inputs, outputs, connector call results, and approval decisions are logged to a tamper-evident audit trail. This data is stored in your tenant partition and is not accessible to other tenants.

Support and communication data: If you contact us by email or through a demo request, we retain the contents of that communication to respond and improve our service.

We use collected information to: provide and operate the Orchestrik platform; process demo requests and onboarding; send transactional and product communications (account activity, billing, security notices); improve the platform based on usage patterns; and comply with legal obligations.

We do not use your data or your agents' execution data to train any AI or machine learning model — including our own or any third-party model. Your data is yours.

We may send promotional communications about new features or events. You can unsubscribe at any time using the link in any such email.

We use the following categories of third-party services to operate Orchestrik:

• Cloud infrastructure: Amazon Web Services (AWS) — compute, storage (S3, RDS/Postgres), and networking for the managed SaaS tier.
• Analytics: Google Analytics / Google Tag Manager — website and product usage analytics.
• LLM inference: Third-party AI model providers (including OpenAI, Anthropic, and others) are used to process agent instructions. For on-premise deployments, customers may use self-hosted or in-house models — in which case no data is sent to third-party inference providers.
• Email and CRM: Used for transactional email, demo scheduling, and support communications.

We maintain data processing agreements with all sub-processors that handle personal data. We do not share personally identifiable information with third parties for their own marketing purposes.

Managed SaaS data is stored on AWS infrastructure. Storage regions depend on your deployment configuration — we will confirm the region during onboarding.

On-premise and private cloud deployments: data remains entirely within the customer's own infrastructure. ITMTB does not have access to execution data, credentials, or audit logs in on-premise deployments.

Audit trail data, connector credentials, and agent execution logs are stored for the duration of your active subscription. On cancellation, data is retained for 30 days to allow export, then permanently deleted. You may request early deletion at any time.

ITMTB Technologies is incorporated in India. We comply with the Digital Personal Data Protection Act, 2023 (DPDPA). Under DPDPA, you have the right to access, correct, and erase personal data we hold about you, and to withdraw consent for processing.

To exercise these rights, email us at hello@itmtb.com with the subject line 'Data rights request'. We will acknowledge your request within 72 hours and complete it within 10 business days. For data deletion requests, use the subject line 'Delete my data'. We will confirm once deletion is complete.

We use first-party cookies for session management and authentication, and third-party cookies (Google Analytics, Google Tag Manager) for analytics. We do not use advertising cookies or sell data to ad networks.

You can manage cookie preferences through your browser settings. Disabling cookies may affect some platform functionality.

We apply technical and organisational measures to protect data against unauthorised access, alteration, and disclosure — including encryption at rest and in transit, access controls, and audit logging. Despite these measures, no internet transmission is absolutely secure. By using the service, you acknowledge this inherent limitation.

We do not store connector credentials in the agent runtime. Credentials are resolved at execution time through the credential vault and are never exposed to the agent model.

For privacy questions, data rights requests, or concerns about this policy, contact us at hello@itmtb.com.

ITMTB Technologies Private Limited, Bangalore, Karnataka, India.

This policy was last updated April 2025.