Privacy Policy
1. Who we are
GenArk, Inc. is a Delaware corporation with offices in San Francisco, New York, London and Singapore. This policy explains how we handle personal data when you use our website, schedule a demo, or engage GenArk for delivery.
2. Data we collect
Marketing site: cookies (see Cookie Settings), form submissions (name, email, company, role, message). Customer engagements: only data you explicitly grant access to inside your own cloud account. We do not extract data from customer environments.
3. How we use it
Marketing data: respond to inquiries, schedule demos, send opted-in newsletter content. Engagement data: deliver the contracted work. We do not sell, rent or share data with third-party advertisers.
4. Where data is stored
Marketing systems run on AWS US-East. Customer engagement workloads run inside your account by default. Our internal tooling (CRM, support) is hosted on US-region SOC 2 Type II providers.
5. Your rights
Under GDPR, CCPA and similar laws, you can request access, correction, deletion or portability of your personal data. Contact privacy@genark.ai. We respond within 30 days.
6. Security
We hold SOC 2 Type II and ISO 27001 certifications. We support HIPAA BAAs and FedRAMP Moderate equivalence for customer engagements that require it. Encryption at rest and in transit by default. MFA required across the company.
7. Sub-processors
We use a small list of named sub-processors for our marketing site (Vercel, Cloudflare) and corporate operations (Google Workspace, Notion, Slack). The full list is available at genark.ai/subprocessors.
8. Changes to this policy
If we make material changes, we'll notify customers and update the 'last updated' date. The history of changes is available on request.
9. Contact us
privacy@genark.ai · GenArk, Inc., 500 Howard St, Floor 4, San Francisco, CA 94105, USA.