Privacy Policy

Your Privacy Matters a lot… We can update our privacy anytime as per the updates in the product.

1. Introduction

Coredge IO Private Limited (“Coredge,” “we,” “us,” or “our”) is a sovereign cloud and AI infrastructure company. We build and operate cloud platforms that enable enterprises, governments, and regulated organizations to deploy AI-ready infrastructure with complete control over data, location, and security.

This Privacy Policy describes how we collect, use, store, and protect information when you interact with our website (coredge.io), our cloud platforms (including Dflare AI, Cirrus Cloud Suite, Cirrus Cloud Platform, Coredge Kubernetes Platform, Cloud Orbiter, and Coredge Virtualization Manager), and any related services (collectively, the “Services”).

Data sovereignty is at the core of our business. We are committed to ensuring that the principles of transparency, data residency, and regulatory compliance that we build into our platforms also govern how we handle your information.

2. Scope of This Policy

This Privacy Policy applies to the following categories of individuals:

•       Visitors to our website at coredge.io

•       Prospects and contacts who engage with our sales, marketing, or partnership teams

•       Customers and authorized users of our cloud infrastructure and AI platforms

•       Partners, OEM integrators, and channel participants in our ecosystem

•       Job applicants and candidates who apply through our career’s portal

This Policy does not govern customer-owned data, models, or workloads processed within our sovereign cloud infrastructure. Customer data hosted on Coredge platforms is governed by the applicable Master Service Agreement (MSA) or Data Processing Agreement (DPA) between Coredge and the customer.

3. Information We Collect

3.1 Information You Provide Directly

•       Account and contact information: name, email address, phone number, job title, organization name, and business address provided during registration, demo requests, or partner inquiries.

•       Commercial information: order details, billing address, procurement references, and payment processing data necessary to fulfill service agreements.

•       Communications: correspondence with our sales, support, and engineering teams, including support tickets, feedback, and feature requests.

•       Career applications: resume, cover letter, work history, qualifications, and any supplementary materials submitted through our careers portal.

3.2 Information Collected Automatically

•       Platform usage telemetry: resource provisioning events, GPU utilization metrics, cluster health indicators, API call patterns, and service uptime data collected to maintain platform reliability and performance.

•       Website analytics: pages visited, referral sources, session duration, browser type, operating system, device type, and IP address collected via cookies and standard web analytics tools.

•       Infrastructure monitoring data: log data, authentication events, access timestamps, and system performance metrics generated during your use of our cloud platforms.

3.3 Information from Third Parties

•       Business intelligence: firmographic data from trusted B2B data providers to support our enterprise sales and partnership outreach.

•       Authentication providers: identity verification data received through single sign-on (SSO) integrations configured by your organization (e.g., Microsoft Entra ID, Keycloak, or other OIDC-compliant identity providers).

4. How We Use Your Information

We process your information for the following purposes:

4.1 Service Delivery and Operations

•       Provisioning and managing cloud infrastructure, GPU clusters, Kubernetes environments, and AI workloads as requested by you or your organization.

•       Monitoring platform health, ensuring uptime commitments under our enterprise SLA (99.9%), and performing capacity planning.

•       Processing orders, managing billing, and fulfilling contractual obligations.

4.2 Platform Improvement and Security

•       Analyzing aggregated, de-identified usage patterns to improve platform performance, optimize GPU orchestration, and enhance product features.

•       Detecting, investigating, and preventing security threats, unauthorized access, and anomalous behavior across our infrastructure.

•       Conducting internal research and development to advance our sovereign cloud and AI platform capabilities.

4.3 Communications and Marketing

•       Responding to your inquiries, support requests, and demo requests.

•       Sending product updates, security advisories, and service notifications relevant to your platform usage.

•       With your consent, sending marketing communications about new products, features, events, and industry insights. You may opt out at any time.

4.4 Legal and Compliance

•       Complying with applicable laws, regulations, court orders, and government requests in the jurisdictions where we operate.

•       Establishing, exercising, or defending legal claims and protecting the rights, safety, and property of Coredge and our users.

5. Recipients of Data

Your personal data processed by Us will only be accessible by a limited list of recipients on a need- to-know basis or where required by law.

a.     Within our organization:

Within our organization, access to your data is limited to those persons who as per company’s internal policies and procedures are authorized and require access in order to provide you with the Products and Services, and to respond to your inquiries.

b.     Authorities

We may access, preserve, and disclose information about you to government authorities, if we believe Disclosure is in accordance with or required by, applicable law, regulation, legal process, or audits. We may also disclose information about you if we believe that your actions are grossly inconsistent with our policies, and/or it affects the rights, property and reputation of the Company or others.

c.     Transfer of business:

If we (or our assets) are merged, amalgamated, acquired, transferred or if we go out of business, enter bankruptcy, or go through some other change of control, personal information could be one of the assets transferred to or acquired by a Third party.

6. Data Sovereignty and Residency

Data sovereignty is foundational to our platform and to how we operate as a company.

•       Customer workload data: All customer data, AI models, training datasets, and inference workloads hosted on Coredge platforms remain within the geographic boundaries and infrastructure selected by the customer. We do not move, replicate, or transfer customer workload data outside the designated sovereign environment without explicit customer authorization.

•       Platform operational data: Infrastructure telemetry and platform monitoring data is processed within the same region as the associated deployment, unless otherwise specified in the customer’s service agreement.

•       Website and marketing data: Information collected through coredge.io may be processed using cloud-based tools hosted in secure, commercially standard data center regions. This data is subject to the protections described in this Policy and applicable data protection laws.

7. How We Share Your Information

We do not sell your personal information. We share information only in the following circumstances:

•       Service providers: We engage trusted third-party vendors for payment processing, email delivery, CRM operations, and website analytics. These providers are contractually obligated to protect your data and use it only for the purposes we specify.

•       Technology ecosystem partners: Where necessary to deliver integrated solutions, we may share limited technical configuration data with hardware OEMs, software partners, or cloud ecosystem participants—only with your knowledge and as described in applicable service documentation.

•       Legal obligations: We may disclose information when required by law, regulation, or valid legal process, or to protect the rights, safety, or property of Coredge, our customers, or the public.

•       Corporate transactions: In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of the transaction, subject to the protections described in this Policy.

7. Data Retention

We retain your information only as long as necessary to fulfill the purposes described in this Policy:

•       Account and commercial data: Retained for the duration of the active service relationship, plus the period required by applicable tax, financial, and regulatory retention obligations.

•       Platform telemetry and logs: Retained in accordance with the customer’s service agreement and applicable security logging requirements, typically ranging from 90 days to 12 months depending on the data type and regulatory context.

•       Marketing and prospect data: Retained until you withdraw consent or request deletion, or until the data is no longer necessary for the purpose for which it was collected.

•       Career application data: Retained for up to 12 months following the conclusion of the recruitment process, unless you consent to longer retention for future opportunities.

8. Security

We implement administrative, technical, and physical safeguards appropriate to the sensitivity of the information we process. These measures include:

•       Encryption of data in transit (TLS 1.2+) and at rest across all platform components.

•       Role-based access control (RBAC), multi-factor authentication, and audit logging across our infrastructure and internal systems.

•       Regular security assessments, vulnerability scanning, and penetration testing.

•       Compliance with ISO 27001, ISO 27701, and CMMI standards as applicable to our operations.

No method of transmission or storage is completely secure. While we strive to protect your information using commercially reasonable measures, we cannot guarantee absolute security.

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

•       Access: Request a copy of the personal information we hold about you.

•       Correction: Request correction of inaccurate or incomplete information.

•       Deletion: Request deletion of your personal information, subject to legal retention obligations.

•       Restriction: Request that we limit processing of your information in certain circumstances.

•       Portability: Request a machine-readable copy of information you provided to us.

•       Objection: Object to processing of your information for direct marketing or other purposes based on legitimate interest.

•       Withdrawal of consent: Where processing is based on consent, withdraw that consent at any time.

To exercise any of these rights, contact us at privacy@coredge.io. We will respond to verified requests within the timeframe required by applicable law.

10. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enable core site functionality, analyze traffic, and improve user experience. The categories of cookies we use include:

•       Essential cookies: Required for website operation, including session management and security functions. These cannot be disabled.

•       Analytics cookies: Help us understand how visitors interact with our website, which pages are most visited, and how to improve site performance. We use industry-standard analytics tools for this purpose.

•       Marketing cookies: Used to deliver relevant advertising and measure campaign effectiveness. These are only placed with your consent where required by law.

You can manage cookie preferences through your browser settings or through our cookie consent mechanism on the website.

11. International Data Transfers

Coredge operates across multiple jurisdictions. Where personal information is transferred across borders, we ensure appropriate safeguards are in place, including standard contractual clauses, adequacy determinations, or other legally recognized transfer mechanisms as required by applicable data protection laws.

For customer workload data, our sovereign infrastructure model ensures that data remains within the customer-designated geographic boundary. Cross-border transfer of workload data does not occur unless explicitly configured and authorized by the customer.

12. Children’s Privacy

Our Services are designed for business and enterprise use and are not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete it promptly.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or business operations. When we make material changes, we will update the “Effective Date” at the top of this Policy and, where appropriate, notify you by email or through a prominent notice on our website.

We encourage you to review this Policy periodically to stay informed about how we are protecting your information.


Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Coredge IO Private Limited

Data Protection and Privacy

Office No. 02, 6th Floor, Tower-B, Embassy Galaxy Business Park

A-44 and 45, Sector-62, Noida, Uttar Pradesh 201309, India

General inquiries: contact@coredge.io