Our Commitment to Your Privacy
At Orderly Ops, we take your privacy seriously. We do not sell, rent, or trade your personal information to third parties. Your data is used solely to provide and improve our services. We use privacy-respecting, cookieless analytics that do not track individuals.
Information you provide directly:
- Contact form submissions: First name, last name, email address, organization name, and your message. We also capture the referring page and any UTM campaign parameters present in the URL at the time of submission.
- Account information: When you create an Orderly Ops Core platform account, we collect your name, email address, and organization name.
- Communications: Any information you provide when you email us or communicate with us through other channels.
Information collected automatically:
- Analytics data: We collect anonymous, aggregated page view data (pages visited, referrer source, country, device type, browser). This data cannot be used to identify individual visitors. See the Website Analytics section below.
- reCAPTCHA data: Our contact form uses Google reCAPTCHA Enterprise to prevent spam. Google may collect IP address and browser signals to determine whether a submission is from a human. This data is governed by Google's Privacy Policy.
Website Analytics
We use a self-hosted instance of Umami, a privacy-focused analytics tool. Umami does not use cookies, does not collect personal data, does not track individuals across sessions, and does not store IP addresses. All analytics data is aggregated and anonymous. No data is sent to third-party analytics providers.
Because our analytics are cookieless and do not collect personally identifiable information, no consent banner or opt-in is required under GDPR or CCPA.
How We Use Your Information
We use the information we collect to:
- Respond to your inquiries and provide requested services
- Create and manage your platform account
- Process payments and manage subscriptions
- Send service-related communications (security alerts, billing notices, platform updates)
- Understand how visitors use our website in aggregate (which pages are popular, which referral sources drive traffic)
- Protect against spam, fraud, and abuse
We do not use your information for targeted advertising. We do not build behavioral profiles. We do not sell or share your data with data brokers or advertising networks.
Third-Party Services
We integrate with the following third-party services to deliver our platform. Your data may be processed by these providers in accordance with their respective privacy policies:
- Amazon Web Services (AWS) — Cloud infrastructure, data storage, authentication, and email delivery
- Stripe — Payment processing and subscription management
- Cloudflare — DNS, CDN, and DDoS protection for our website
- Google reCAPTCHA Enterprise — Bot detection on our contact form
These providers process data only as necessary to deliver their services to us. We do not permit them to use your data for their own marketing purposes.
Cookies
Our marketing website (orderlyops.com) does not set any first-party tracking cookies. Our analytics tool (Umami) is entirely cookieless.
Google reCAPTCHA may set a cookie when you interact with our contact form for the purpose of bot detection. This is a functional cookie required for form submission security.
The Orderly Ops Core platform (platform.orderlyops.com) uses a session cookie for authentication purposes only. This cookie is essential for the service to function and is not used for tracking.
Data Retention
- Contact form submissions: Retained for 30 days, then automatically deleted.
- Platform account data (Orderly Ops Core): Retained while your account is active. Upon cancellation, all platform data — including backups, device records, patch status, and configuration — is deleted within 24 hours of cancellation. Your login credentials (stored in our authentication provider) are retained unless you request deletion.
- Managed WordPress sites: Upon cancellation, sites are decommissioned, static IPs released, and all associated backups destroyed at the end of the billing cycle.
- Consulting documents: Retained for 1 year after the end of the consulting engagement, then deleted.
If you would like your data deleted sooner, contact us and we will process the request promptly.
Data Security
We implement industry-standard security measures to protect your information, including:
- Encryption at rest and in transit for all stored data
- Multi-factor authentication for administrative access
- Regular security reviews and infrastructure hardening
- Web Application Firewalls (WAF) protecting all API endpoints
- Point-in-time recovery enabled on all databases
No system is perfectly secure. If we become aware of a security breach affecting your personal data, we will notify you in accordance with applicable law.
Your Rights
You have the right to:
- Access the personal information we hold about you
- Correct inaccurate or incomplete information
- Delete your personal information (subject to legal retention requirements)
- Export your data in a portable format
- Withdraw consent for any processing based on consent
To exercise any of these rights, contact us at trustandsafety@orderlyops.com. We will respond within 30 days.
Changes to This Policy
We may update this privacy policy to reflect changes in our practices or legal requirements. Material changes will be posted on this page with an updated "Last updated" date. We encourage you to review this page periodically.
If you have questions about this privacy policy or our data practices, contact us at:
Orderly Ops
North Bay, Ontario, Canada
trustandsafety@orderlyops.com