Veckridge Oracle Privacy Policy

Overview

Veckridge Oracle is a Chrome browser extension developed by Veckridge Chemical for internal employee use. This privacy policy explains how we collect, use, and protect information when you use the Veckridge Oracle extension.

Information We Collect

Authentication Information

• Microsoft Account Email: We collect your @veckridge.com email address when you sign in using Microsoft Azure AD authentication.
• Access Tokens: Temporary authentication tokens are stored locally in your browser to maintain your session.

Usage Information

• Queries: Questions you ask through the Oracle are logged for quality improvement and audit purposes.
• Page Context: URLs and page titles of NetSuite pages you visit while using the extension are collected to provide contextual assistance.
• Acknowledgments: When you acknowledge QMS policies, we record your email, timestamp, IP address, and user agent for compliance purposes.

Technical Information

• IP Address: Collected during policy acknowledgments for audit trail purposes.
• Browser Information: User agent string collected during policy acknowledgments.

How We Use Information

We use the collected information to:

• Provide contextual help based on your current NetSuite page
• Answer your questions using our knowledge base
• Track QMS policy acknowledgments for compliance
• Improve the accuracy and relevance of responses
• Audit and monitor system usage

Data Storage

• Local Storage: Authentication tokens and preferences are stored locally in your browser using Chrome's storage API.
• Server Storage: Queries, responses, and acknowledgments are stored on our secure servers hosted on Vercel and Neon.
• Retention: Usage logs are retained for 2 years for audit purposes. Acknowledgment records are retained permanently for compliance.

Data Sharing

We do not sell or share your personal information with third parties except:

• Service Providers: We use Anthropic (Claude AI) and OpenAI for AI processing. Queries are sent to these services for response generation.
• Legal Requirements: We may disclose information if required by law or to protect our rights.

Data Security

We implement appropriate security measures including:

• HTTPS encryption for all data in transit
• Azure AD authentication for identity verification
• Access controls limiting who can view audit logs
• Regular security reviews

Your Rights

As a Veckridge Chemical employee, you may:

• Request access to your stored data
• Request correction of inaccurate data
• Request deletion of your data (subject to compliance requirements)

Contact IT at it@veckridge.com for data requests.

Cookies

The extension does not use cookies. Authentication state is stored using Chrome's storage API.

Changes to This Policy

We may update this privacy policy from time to time. Changes will be communicated through company channels.

Contact

For questions about this privacy policy:

• Email: it@veckridge.com
• Company: Veckridge Chemical

Children's Privacy

This extension is intended for adult employees only and does not knowingly collect information from children under 13.