Privacy Policy

Last updated: March 30, 2026

1. Who We Are

Azora Solutions is a product of Azora Optical Solutions Inc. We provide project management, ERP, QMS, and compliance software for engineering teams.

For any data-related inquiries, contact us at: info@azorasolutions.com

2. Data We Collect

We collect only the data necessary to operate the platform:

  • Account data: Username, hashed password (bcrypt), role, department
  • Usage data: Tasks, projects, documents, and other content you create within the platform
  • Demo request data: Name, email, company, and message submitted via the demo form
  • Session data: Encrypted session cookies for authentication (HttpOnly, Secure, SameSite=Lax)
  • Server logs: IP address, user agent, and request timestamps for security monitoring

We do not use third-party analytics, tracking pixels, or advertising cookies.

3. How We Store Data

All data is stored in a PostgreSQL database on infrastructure we control. Passwords are hashed using bcrypt (cost factor 12) and are never stored in plain text. Data is transmitted over HTTPS (TLS 1.2+) with HSTS enabled.

4. How We Use Data

Your data is used exclusively to:

  • Authenticate you and maintain your session
  • Display and manage your projects, tasks, and documents
  • Respond to demo requests and support inquiries
  • Maintain security and audit logs

We do not sell, share, or transfer your data to third parties.

5. Data Retention

Account and project data is retained for the duration of your active subscription. Upon account deletion, your data is permanently removed within 30 days. Server logs are retained for 90 days for security purposes.

6. Your Rights (GDPR)

If you are located in the European Economic Area, you have the right to:

  • Access: Request a copy of all data we hold about you
  • Rectification: Correct any inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Receive your data in a machine-readable format
  • Objection: Object to processing of your data

To exercise any of these rights, email info@azorasolutions.com. We will respond within 30 days.

7. Cookies

We use a single session cookie (azora-session) for authentication. This cookie is:

  • HttpOnly (not accessible to JavaScript)
  • Secure (only sent over HTTPS)
  • SameSite=Lax (mitigates CSRF attacks)

We do not use advertising or tracking cookies.

8. Security

We implement industry-standard security measures including HTTPS/TLS, Content Security Policy, HSTS, rate limiting, and role-based access control. We conduct periodic security audits of our codebase.

9. Changes to This Policy

We may update this privacy policy from time to time. Material changes will be communicated via the platform. The "Last updated" date at the top of this page reflects the most recent revision.

10. Contact

For any questions about this privacy policy or your data, contact us at:
info@azorasolutions.com
Azora Optical Solutions Inc.