This policy explains what CPQ Pilot (operated by GOLUBYTE, Serbia [full entity details to be inserted]) collects and how we handle it.
1. What we collect
- Account data — your email and a securely hashed password.
- SAP connection credentials — the credentials you provide to connect your SAP CPQ tenant, stored encrypted and used only to operate that connection on your behalf.
- Usage data — the requests you make and metering of AI usage (for limits and billing).
- Payment data — handled entirely by Paddle; we do not store your card details.
2. How AI processing works
To carry out your requests, the Service sends the relevant instructions and CPQ context to third-party AI model providers (e.g. Anthropic, OpenAI) that run the underlying models. Send only data you’re comfortable processing this way. We don’t use your content to train our own models.
3. How we use your data
To provide and operate the Service, enforce plan limits, process billing, provide support, keep the Service secure, and meet legal obligations.
4. Who we share it with
- Paddle — our Merchant of Record, for payments and tax. See Paddle’s Privacy Notice.
- AI model providers — to run your requests (see §2).
- Infrastructure providers — hosting and databases that run the Service.
We don’t sell your personal data.
5. Security and retention
Connection credentials are encrypted, and access is restricted to operating your connections. We keep data for as long as your account is active or as needed to provide the Service and meet legal obligations, then delete or anonymize it.
6. Your rights
You can access, correct, export, or delete your data, and close your account. To make a request, contact support@cpqpilot.com.
7. Changes
We may update this policy; material changes will be notified. Questions: support@cpqpilot.com.