Privacy Policy

Last updated: February 23, 2026

1. Introduction

Cave ERP ("we", "our", or "us") operates the Cave ERP platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our enterprise resource planning application.

2. Information We Collect

We collect information that you provide directly to us, including:

  • Account Information: Name, email address, password, role, and profile details when you create an account.
  • Employee Data: Job title, department, manager hierarchy, employment dates, and other HR-related information entered into the system.
  • Project & Task Data: Project details, task assignments, milestones, budgets, and submissions you create or contribute to.
  • Documents: Files you upload, including documents, images, and other attachments stored within the platform.
  • Communications: Emails composed and sent through the platform, including message content and recipients.
  • Usage Data: Log data, device information, browser type, IP address, and pages visited within the application.

3. How We Use Your Information

  • Provide, maintain, and improve the Cave ERP platform.
  • Authenticate your identity and manage your account and permissions.
  • Process and manage HR records, projects, tasks, and documents.
  • Send notifications, alerts, and administrative messages.
  • Monitor usage patterns to improve performance and user experience.
  • Comply with legal obligations and enforce our terms of service.

4. Data Storage

Your data is stored on secure servers using PostgreSQL databases. Documents and files are stored using S3-compatible cloud storage (Cloudflare R2). We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

5. Data Sharing

We do not sell your personal information. We may share your data with:

  • Your Organization: Administrators and managers within your organization can access relevant employee, project, and task data as part of normal platform operations.
  • Service Providers: Third-party services that assist us in operating the platform (hosting, analytics, email delivery), bound by confidentiality agreements.
  • Legal Requirements: When required by law, court order, or governmental regulation.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. When data is no longer required, we will delete or anonymize it in accordance with applicable laws. Organization administrators may request data export or deletion by contacting us.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Object to or restrict processing of your data.
  • Request data portability.

To exercise any of these rights, please contact your organization administrator or reach out to us directly.

8. Cookies

We use essential cookies and local storage to maintain your session, remember your preferences (such as theme settings), and ensure the application functions correctly. We do not use third-party tracking cookies for advertising purposes.

9. Security

We use industry-standard security measures including encrypted connections (HTTPS/TLS), hashed passwords, role-based access controls, and secure session management to protect your data. However, no method of electronic transmission or storage is 100% secure.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date.

11. Contact Us

If you have questions about this Privacy Policy, please contact us at support@cave-erp.com.

Terms of Service