PunchOutAgentDocument CaptureDocsPricingBlogHow-to GuidesUse CasesGlossaryFAQAboutJoin the waitlist

Privacy Policy

Last updated: March 9, 2026

1. Introduction

Zentriq Software (“we”, “us”, “our”) is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our Chrome extension, web application, and Zentriq Agent service (collectively, the “Services”).

We comply with the Swiss Federal Act on Data Protection (nFADP), the EU General Data Protection Regulation (GDPR), and other applicable data protection laws.

2. Data Controller

The data controller is:

Zentriq Software
Switzerland
Email: privacy@zentriq.ch

3. Data We Collect

3.1 Account Information

When you sign in via Microsoft Entra ID, we receive:

  • Your name and email address
  • Microsoft account identifier
  • Organization/tenant information

3.2 Cart Data (PunchOut Extension)

When you capture a cart, the Chrome extension sends the page content to our AI parsing service. This data is:

  • Processed in real-time by Claude (Anthropic) to extract structured cart items
  • Not permanently stored — data is discarded after processing
  • Never used to train AI models

3.3 Business Central Data (Zentriq Agent)

The Zentriq Agent accesses your BC data through your authenticated connection. We do not store copies of your BC data. All queries are processed in real-time.

3.4 Usage Data

We collect anonymous usage metrics (page views, feature usage, error rates) to improve our services. No personal data is included in analytics.

4. How We Use Your Data

  • Service delivery: To authenticate you, process cart captures, and provide the Zentriq Agent
  • Billing: To manage subscriptions via Stripe (we do not store card details)
  • Communication: To send service-related notifications (no marketing without consent)
  • Improvement: To analyze anonymized usage patterns and improve our services

5. Third-Party Processors

ServicePurposeLocation
Microsoft Entra IDAuthenticationEU/US
Anthropic (Claude)AI processingUS
StripePayment processingUS
VercelHostingEU

6. Data Retention

We retain account data for the duration of your account. Cart data is processed in real-time and not retained. Usage logs are retained for 90 days. You can request account deletion at any time.

7. Your Rights

Under GDPR and nFADP, you have the right to:

  • Access — request a copy of your personal data
  • Rectification — correct inaccurate data
  • Erasure — request deletion of your data
  • Portability — receive your data in a structured format
  • Object — object to data processing
  • Withdraw consent — at any time, without affecting prior processing

To exercise your rights, email privacy@zentriq.ch.

8. Cookies

We use only essential cookies required for authentication and session management. We do not use advertising or tracking cookies.

9. Security

We implement industry-standard security measures including TLS encryption in transit, encrypted storage at rest, regular security audits, and access controls.

10. Changes to This Policy

We may update this policy periodically. Significant changes will be communicated via email or in-app notification. Continued use of our Services constitutes acceptance of the updated policy.

11. Contact

For privacy-related inquiries, contact us at privacy@zentriq.ch.