Trust

How ChronoVault treats your data.

You own your data. ChronoVault is a processor that holds it on your behalf, and our commitments below are designed to make that relationship clear and enforceable.

Data ownership

Customer data in ChronoVault belongs to the customer. We do not claim rights to it, we do not sell it, and we do not use it to train shared models without your explicit written consent.

Data residency

ChronoVault operates in multiple regions. Customers select the region where their tenant's data lives at provisioning time and can request residency changes through customer success.

Lawful processing

We process customer data only on the documented instructions of the customer, in line with our Data Processing Agreement.

Retention and deletion

Customer data is retained for the duration of the subscription. On termination, data is deleted on a schedule documented in the DPA. Customers can export all of their data before termination.

Customer exports

Customers can export their data at any time in machine-readable formats. Time-travel exports let you export a snapshot as of a specific date.

Subject rights support

ChronoVault supports data principal and data subject rights requests for frameworks that require them — the DPDPA, GDPR, and others — with structured workflows for handling and tracking them.

Cross-border transfers

Cross-border transfers happen only where permitted by applicable law and under appropriate contractual safeguards.

Need the raw documents?

Customers and prospects under NDA can request our full security, privacy, and compliance documentation through customer success.

See ChronoVault with your own frameworks.

A 45-minute demo with a compliance engineer, not a salesperson. Tell us the frameworks you care about most and we'll tailor the walkthrough — and leave you with a recording.

Request a demo →