Privacy Policy
Last updated: May 2026
This Privacy Policy describes how Percus SpA ("Percus", "we", "us") collects, uses, and protects information when you use the Percus platform, including the Backoffice application.
1. Information we collect
Through Google Sign-In (OAuth 2.0)
When you log in to the Percus Backoffice using your Google account, we receive the following information from Google:
| Data | Purpose |
|---|---|
| Email address | Used as your unique identifier within the platform |
| Full name | Displayed in the user interface |
| Google account ID | Used to link your Google account to your Percus account |
| Profile picture | Displayed in the user interface (optional) |
We do not receive your Google password or access to any Google services beyond your basic profile.
Account and usage data
| Data | Purpose |
|---|---|
| Role assignments | Determine what actions you are authorized to perform |
| Actions performed | Audit trail — who did what and when |
| Session activity | Security monitoring and session management |
What we do not collect
- End-customer PII used for video personalization. This data is processed entirely in the viewer's browser and never transmitted to Percus servers.
- Payment information.
- Data from your Google Drive, Gmail, Calendar, or any other Google service.
2. How we use your information
We use the information collected solely to:
- Authenticate your identity and manage your session
- Enforce role-based access control within your organization
- Maintain an audit trail of privileged actions for security purposes
- Display your name and profile in the Backoffice interface
We do not sell, rent, or share your personal information with third parties for marketing purposes.
3. Data storage and security
Your account data is stored in Amazon Aurora Serverless v2 (PostgreSQL), encrypted at rest using AES-256, within an AWS VPC not accessible from the public internet. All data in transit is protected by TLS 1.2 or higher.
Access to stored data is restricted to authorized Percus personnel and the application services that require it to function.
4. Data retention
Your account data is retained for as long as your account is active within the platform. If you are removed from all organizations, your account record may be retained for audit purposes for a period defined by applicable law or organizational policy.
5. Your rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your account data (subject to audit retention requirements)
To exercise any of these rights, contact security-compliance@percus.cl.
6. Third-party services
Percus uses the following third-party services that may process data on our behalf:
| Service | Purpose |
|---|---|
| Google OAuth 2.0 | Authentication |
| Amazon Web Services (AWS) | Infrastructure and data storage |
Each service operates under its own privacy policy. Percus maintains data processing agreements with its infrastructure providers as required.
7. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be communicated through the platform. The "Last updated" date at the top of this page reflects the most recent revision.
8. Contact
For privacy-related questions or requests:
Email: security-compliance@percus.cl
Company: Percus SpA, Santiago, Chile