Effective Date: June 22, 2026 · Last Updated: June 22, 2026
Welcome to Decionis. Decionis, Inc. (“Decionis”, “we”, “us”, or “our”) provides an Execution Authority Infrastructure that acts as an execution certainty layer for modern Commerce and Enterprise Operations.
This Global Privacy Policy applies to all personal and operational data processed across our platform, including our native integrations for SAP, Microsoft Teams, Webex, and Power Automate. We are committed to data minimization, security-by-design, and absolute transparency regarding how data is handled.
For the majority of our enterprise services, applications, and integrations (such as the Decionis Governed Execution Gate for SAP):
If you are an employee or user of an enterprise using Decionis, your organization's privacy policy governs the processing of your data.
To enforce operational execution policies and mint tamper-proof Decision Dossiers, we process the minimum data required to evaluate risk:
What We Never Collect: Decionis does not store, harvest, or track end-user consumer financial data, banking passwords, or personal web-browsing behavioral telemetry outside of explicit, scoped enterprise policy checks.
We do not sell, rent, or monetize enterprise operational data or personal metadata under any circumstances. Data is used exclusively to:
We retain data only as long as specified by our Data Processing Agreement (DPA) with your organization, or as necessary to comply with legal audit obligations. Enterprise clients maintain the complete authority to request total data deletion or specify custom retention windows.
Decionis is engineered from the ground up for strict data isolation and enterprise-grade security:
Decionis complies with major global data protection frameworks governing enterprise operations.
We process personal data in compliance with the GDPR. Where data transfers cross European Economic Area (EEA) boundaries, we utilize Standard Contractual Clauses (SCCs) approved by the European Commission, combined with strict technical safeguards.
Decionis acts as a “Service Provider” under the CCPA/CPRA. We process business metadata strictly to perform the execution infrastructure services outlined in our master agreements.
Where automated policy checking constitutes an execution governance system under prevailing frameworks (such as Article 12 of the EU AI Act regarding logging and traceability), Decionis generates deterministic, audit-ready logs natively via the Decision Dossier architecture.
To deliver our cloud services, Decionis partners with tier-one infrastructure providers (such as Amazon Web Services or Microsoft Azure) that maintain industry-standard physical and logical security certifications (ISO 27001, SOC 2 Type II). A full list of active subprocessors can be provided upon request to verified enterprise clients.
Depending on your jurisdiction, you may have rights to access, correct, restrict, or delete your personal data. Because we operate primarily as a data processor for your employer or contracting organization, we recommend directing data rights requests to your internal IT or compliance administrator.
For direct privacy inquiries, security questionnaires, or DPA execution, please contact our privacy office.
Privacy inquiries, security questionnaires, or DPA execution: privacy@decionis.com.
Decionis, Inc.
2810 N Church St STE 88692
Wilmington, DE 19802