We are committed to protecting your privacy and handling your data in a secure, transparent, and compliant manner. This page outlines how SuiteAnalyzer aligns with the General Data Protection Regulation (GDPR).

Key Principles

• Data Minimization: We only process the data necessary to generate AI-powered insights from your NetSuite reports.
• User Control: You, the customer, are in full control of your data and API usage.
• No Data Retention: We do not collect, store, or transmit your financial data to any servers we control.

Bring Your Own API Key

SuiteAnalyzer uses a "Bring Your Own API Key" (BYOA) model. Your NetSuite report data is sent securely to the OpenAI API using an API key that you control. This ensures that you remain the data controller under GDPR, and all data transmission is authorized by you.

Data Processing by OpenAI

When using the OpenAI API, data is transmitted securely and is not used for training or retained. OpenAI's policy for API users guarantees that inputs and outputs are not logged or used to improve future models. You can learn more about OpenAI's data usage policy here.

No Data Stored by SuiteAnalyzer

SuiteAnalyzer is a local desktop application. It does not store your report data or OpenAI responses beyond what is needed for real-time analysis. No data is sent to, stored on, or retained by SuiteAnalyzer servers.

Security Measures

• All API communication is encrypted via HTTPS
• Your API key is stored on your local device
• No telemetry or usage analytics are sent to SuiteAnalyzer

Your Responsibilities

As the data controller, you are responsible for ensuring that your use of SuiteAnalyzer complies with your internal data policies and any applicable data protection laws. We recommend using anonymized data where appropriate and reviewing your organization’s compliance requirements before use.

Contact Us

If you have any questions about GDPR compliance or data privacy, please contact us at timdietrich@me.com.