Privacy Policy

1. Information We Collect

Pifecta collect verified profile metadata directly from your Keycloak SSO authentication scopes, including your User ID, full name, email address, and active network role flags. To protect transaction stability and mitigate malicious prompt injections, we also log client IP pings during cart adjustments (Checkpoint Immutability logs).

2. How We Use Data

Your profile data is strictly utilized to gate access permissions (OIDC dual-auth structures), deliver ephemeral signed blueprint downloads, track active subscriptions, and relay telemetry inputs directly to network automation nodes (n8n workflows). We do not distribute or sell user contact indexes.

3. Stripe & Financial Auditing

Billing is processed off-server by Stripe. We do not store or process credit card numbers on our servers. Inbound Stripe webhook relays dispatch transactional metadata (e.g. Session IDs, payment statuses) which we log securely inside operations financial ledgers for compliance audits.

4. Cookie Configurations

To secure session integrity and prevent hijacking, the platform sets session markers with strict attributes: `HttpOnly`, `Secure` (forcing HTTPS transit), and `SameSite=Strict` cookie scopes. These cookies are strictly functional and handle user verification; they are not used for third-party tracking.

5. Data Retention

We retain transaction histories and active license mappings securely inside our singleton SQLite databases. Demands for account eradication can be routed through secure support channels or handled directly by IAM coordinators.