Skip to main content
Cohesion

Privacy Policy

Last updated:

This Privacy Policy explains how Cohesion Technologies, Inc. (“Cohesion,” “we,” “us,” “our”) collects, uses, shares, and safeguards information in connection with usecohesion.com (opens in a new tab) and our browser‑based web application available after login (together, the “Service”). By using the Service, you agree to the collection and use of information as described in this policy.

California “Notice at Collection”

Below are the categories of Personal Data we collect, the purposes for which we use them, whether we “sell” or “share” them (as those terms are defined under California law), and how long we retain them.

This table scrolls horizontally on small screens.
Personal Data categories, purposes, sale/share status, and retention
Category (examples)Purpose(s)Sold/Shared?Retention
Identifiers (name, work email, IP), account profileProvide & secure the Service; account management; support; service communicationsNo sale or shareWhile the account is active and as needed for business/legal obligations (typically up to 3 years after closure)
Commercial/transactional (plan, billing, invoices)Billing, fraud prevention, accounting/tax complianceNo sale or shareAs required by law (typically up to 7 years)
Internet/network activity (usage logs, device/browser data)Security, diagnostics, service improvement, abuse preventionNo sale or shareFor the shortest period necessary (typically 30–365 days), unless needed for security or legal holds
Professional information (company, role)Account administration, support, customer successNo sale or shareAccount life + up to 3 years
Sensitive personal information (account login credentials/SSO tokens)Authentication and security only; not used to infer characteristicsNo sale or share; Right to Limit generally not applicable (used only to provide the Service)Account life + security backups/rotations
Customer Data you submitProvide the Service at your directionNo sale or shareControlled by you; see “Data Retention” below

Definitions

  • Account: a unique account created for you or your organization to access the Service.
  • Customer Data: content you or your users submit to the Service and data pulled from systems you connect via integrations.
  • Service Data: operational data we generate or collect to run the Service (e.g., account/profile info, billing, usage logs, diagnostics, security logs, product analytics).
  • Website: the public site at https://usecohesion.com (opens in a new tab).
  • Personal Data: information that identifies or can reasonably be linked to an individual.

Information We Collect

Information you provide

  • Account & contact: email address, first and last name, company name, role, and other profile fields.
  • Customer Data: content and files you or your users submit to the Service and data pulled from systems you connect via integrations.
  • Support & communications: messages and files you send to our team.

Single sign‑on (SSO)

If you choose to sign in with Google, we receive basic profile information as permitted by your Google settings. We do not request your contacts or activity data.

Integrations you connect

When an admin connects third‑party tools, we receive the information necessary to enable the integration, limited to what your organization authorizes with those services.

Usage and device data

We collect technical data such as IP address, device and browser type, pages or features used, timestamps, referrer, and similar diagnostics. We use cookies and similar technologies for authentication, security, and (if enabled) analytics. See “Cookies & Controls” below.

Cookies & Controls

We use essential cookies to operate and secure the Service (e.g., sign‑in, session management). If we enable non‑essential cookies (e.g., analytics), we will request consent where required and provide controls to change your preferences.

You can choose to block or delete cookies in your browser settings, but the Service may not function properly without essential cookies.

How We Use Information

  • Provide and secure the Service (authenticate users, route and store Customer Data, prevent fraud/abuse, ensure availability).
  • Operate our business (billing, account management, product analytics to improve features, support).
  • Communicate with you about the Service (e.g., service notices, security updates, product updates). We do not use SMS or mobile push notifications.
  • Legal/compliance (enforce terms, comply with law, protect rights, safety, and security).

Our Roles

  • Customer Data: we act as your service provider/processor and process it only per your instructions (e.g., via the product and integrations) and our contract. We can provide a Data Processing Addendum (DPA) on request.
  • Service Data: we act as a business/controller for data such as account, billing, logs, diagnostics, and product analytics.

How We Share Information

  • Service providers that help us operate the Service (e.g., hosting, storage, email delivery, logging, support tools, and analytics used to improve the product). Where these providers process Personal Data on our behalf, they may do so only to provide their services to us and must handle it appropriately. A current list is available upon request.
  • Integrations you connect, at your direction.
  • Professional advisors (lawyers, accountants) under confidentiality.
  • Business transfers (merger, acquisition, financing, or sale of assets).
  • Legal/safety when required by law or to protect rights, safety, and security.

We do not sell or share Personal Data for cross‑context behavioral advertising, and we do not use targeted advertising in the Service.

Data Retention

We retain Customer Data according to your settings and our contract. We retain Service Data as needed to provide the Service and for legitimate business and legal purposes (for example, billing records typically up to 7 years; security logs typically 30–365 days). We may retain backups for a limited period.

International Transfers

We may process and store information in the United States and other countries where we or our providers operate. Where required, we use appropriate safeguards for cross‑border transfers, including the European Commission’s Standard Contractual Clauses (2021) and, for UK personal data, the International Data Transfer Agreement or UK Addendum.

Your Choices & Rights

  • Account settings: admins can manage users and export data (or request an export from our team).
  • Marketing: you can unsubscribe from marketing emails via the link in those emails.
  • Privacy rights: depending on your location (e.g., California, Colorado, Connecticut, Virginia), you may have rights to access, delete, correct, or receive a copy of your Personal Data, or to object/restrict certain processing. Submit requests to team@usecohesion.com. If your data is part of Customer Data, we will refer your request to your organization and support them in responding.
  • Response times & verification (CA): We confirm receipt within 10 business days and respond within 45 days; we may extend once by 45 days when reasonably necessary and we’ll notify you. We verify identity to a reasonable degree, which may include matching data points we already maintain. Authorized agents must provide proof of authority and we may ask you to verify your identity directly.
  • Appeals (CO, CT, VA): If we deny your request, you may appeal by emailing team@usecohesion.com with the subject “Privacy Appeal.” We’ll respond within 45 days (extendable per law) with an explanation.

Security

We use reasonable technical and organizational measures to protect information (e.g., encryption in transit and at rest, access controls, logging, vulnerability management). No system is perfectly secure.

Children’s Privacy

The Service is not directed to children under 13, and we do not knowingly collect their information. If you believe a child has provided information, contact us and we will delete it.

Links

The Service may contain links to third‑party websites or services. We are not responsible for their content or privacy practices.

Changes to this Policy

We may update this policy as our services evolve. We will post the updated policy here and update the “Last updated” date above. If changes are material, we will notify account owners (e.g., by email or in‑app notice).

Contact Us

Cohesion Technologies, Inc.
Email: team@usecohesion.com