Privacy Policy

GlobiGuard is an AI governance platform operated by Globi Explore, Inc. ("GlobiGuard," "we," "our," or "us"). Our platform is sold exclusively to businesses (B2B). This policy explains how we handle information when you visit our website, access the demo, join our waitlist, or enter into a commercial agreement with us.

This policy covers information about you, the visitor or business contact — not the end-client data that flows through your deployed GlobiGuard instance. End-client data is governed by our Data Processing Agreement.

1. Who We Are

GlobiGuard is operated by Globi Explore, Inc., a corporation registered in the State of Georgia, United States. We provide infrastructure that sits between enterprise AI systems and the data those systems process — deciding what AI models are allowed to see, what actions they may take, and what must be routed to a human.

2. Information We Collect

2.1 Information You Provide Directly

• Waitlist & contact forms: Full name, business email address, company name, job title, use case, and any message you include.
• Demo sandbox: Core sandbox data is simulated and does not represent real individuals. If you choose to connect a live third-party integration for a demo, we process only the temporary OAuth token, API credential, and limited metadata needed to demonstrate the selected scope.
• Commercial relationships: Business contact information and billing details (processed by our payment provider — we do not store payment card data).
• Communications: Any correspondence you send us.

2.2 Information Collected Automatically

When you visit our site we may collect: IP address and approximate geolocation, browser type and operating system, pages visited and time on page, session identifiers and preference cookies. We use this to operate the site and improve performance. We do not build individual advertising profiles.

2.3 What We Do NOT Collect

• The personal data of your end-clients that flows through a deployed GlobiGuard instance
• Raw PII from AI workflow payloads processed through our sidecar
• Data from individuals who have not interacted with GlobiGuard directly

3. How We Use Your Information

• Operate the site and demo environment
• Manage your waitlist position and notify you when access opens
• Respond to enquiries and support requests
• Deliver product updates and announcements (only if you have opted in)
• Improve the product using aggregate, anonymised usage patterns
• Legal compliance and fraud prevention
• Administer commercial onboarding for customers and design partners

We do not sell, rent, or trade your personal information to any third party for marketing purposes.

4. Legal Basis for Processing (GDPR)

Where we rely on consent (e.g., marketing emails), you may withdraw at any time by clicking "Unsubscribe" or writing to [email protected].

Where customers use GlobiGuard in workflows that may implicate GDPR Article 35 or the EU AI Act, we may provide technical materials that help them perform their own DPIA or equivalent assessment. Customers deploying high-risk AI systems remain responsible for deciding whether a DPIA is required and for completing it.

5. Cookies

• Strictly necessary cookies: Required for the site to function.
• Analytics cookies: Privacy-respecting, anonymised traffic analytics.
• Preference cookies: Remember your settings (e.g., dark mode).

We do not use advertising cookies or third-party tracking pixels. You can control cookies through your browser settings at any time.

6. How We Share Your Information

• Infrastructure and hosting providers — bound by strict data-processing agreements
• Payment processors — handle billing; we do not store card details
• Transactional email provider — limited to sending confirmation and notification emails
• Legal and regulatory compliance — where required by law, with advance notice where permitted
• Business transfer — in the event of acquisition or merger, with equivalent policy obligations on the acquiring entity

7. Data Retention

• Waitlist entries: Retained until outreach is complete or you request deletion
• Customer account data: Duration of relationship plus minimum 3 years
• Site analytics: Identifiable session data purged after 12 months
• Communications: 3 years

8. Data Security

GlobiGuard includes security features such as encryption in transit, encryption at rest, role-based access, and audit logging. Additional controls — including testing cadence, incident response procedures, and notification timelines — depend on the deployment model, customer agreement, and applicable law.

9. Your Rights

You may request: access, rectification, erasure, portability, objection to processing, or restriction. Write to [email protected]. We respond within 30 days. EEA/UK residents may also lodge a complaint with their local data-protection authority.

10. International Transfers

GlobiGuard operates from the United States. Transfers from the EEA or UK are conducted using Standard Contractual Clauses (SCCs) or other lawful transfer mechanisms under GDPR.

11. The Demo Sandbox

The demo at globiguard.com/demo is a simulated environment. Core data - client names, policy numbers, financial figures, and enforcement events - is entirely fictional. If you connect Google, Salesforce, Slack, or another live integration during a demo, you grant GlobiGuard temporary access for the requested demo scope only; demo credentials are stored encrypted, limited to the active session, and should not be used with production systems unless you intend that test access. Compliance scores shown are illustrative and do not constitute legal or regulatory advice.

12. Children's Privacy

GlobiGuard is a B2B platform. We do not knowingly collect information from individuals under 18.

13. Changes to This Policy

Material changes will be communicated by updating the "Last Updated" date and, where appropriate, by notifying registered users by email. Continued use of the site after an update constitutes acceptance.

14. Contact

Privacy enquiries: [email protected]
General: [email protected]
GlobiGuard — Globi Explore, Inc. · Georgia, United States

EU Representative (Article 27 GDPR):
EU Rep Ltd., 18 Lower Dorset Street, Dublin 1, Ireland · [email protected]