Privacy Policy

Last updated: February 1, 2025

Introduction

At Yesso (operated by Digitari Solutions), we take your privacy seriously. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our approval workflow software.

By using Yesso, you agree to the collection and use of information in accordance with this policy. If you don't agree with our policies and practices, please don't use our service.

Information We Collect

Personal Information

When you create an account, we collect:

  • Name and email address
  • Job title and department (optional)
  • Organization name and size
  • Payment information (processed securely via Stripe)

Usage Information

We automatically collect certain information about how you use Yesso:

  • Approval requests you create, submit, approve, or deny
  • Dates, times, and IP addresses of your actions
  • Device information and browser type
  • Pages you visit within Yesso

How We Use Your Information

We use your information to:

  • Provide and maintain our approval workflow service
  • Process approval requests and notify relevant parties
  • Send email notifications about approval status changes
  • Process payments and manage your subscription
  • Provide customer support and respond to your inquiries
  • Improve our service based on usage patterns
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

Data Sharing and Disclosure

We do not sell your personal information. We only share your data in these limited circumstances:

  • Within your organization: Approval requests are visible to relevant approvers and submitters
  • Service providers: We use Stripe for payments, Resend for emails, and Vercel for hosting
  • Legal requirements: If required by law, court order, or government request
  • Business transfers: In the event of a merger, acquisition, or sale of assets

Data Storage and Security

Your data is stored securely on Supabase servers with encryption at rest and in transit. We implement industry-standard security measures including:

  • Encrypted HTTPS connections
  • Secure authentication via Clerk
  • Regular security audits
  • Access controls and role-based permissions

Your Rights (GDPR)

If you're in the European Union, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Data portability: Receive your data in a machine-readable format
  • Objection: Object to processing of your data
  • Restriction: Request limitation of data processing

To exercise these rights, email us at privacy@getyesso.com

Data Retention

We retain your data for as long as your account is active. After account deletion:

  • Personal information is deleted within 30 days
  • Approval history is anonymized and retained for audit purposes
  • Billing records are retained for 7 years as required by law

Cookies

We use essential cookies to maintain your session and authentication. We do not use advertising or tracking cookies. You can manage cookie preferences in your browser settings.

Children's Privacy

Yesso is not intended for anyone under 18 years old. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email or prominent notice within Yesso at least 30 days before changes take effect.

Contact Us

If you have questions about this Privacy Policy or your data, contact us at:

Email: privacy@getyesso.com

Company: Digitari Solutions

Location: Vancouver, BC, Canada

Ready to Get Started?

Join 500+ teams on the waitlist and lock in early access pricing

Join the Waitlist