Skip to content

Privacy Policy

Last updated: June 1, 2026

1. Introduction

Tipexs Technologies ("Company", "we", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share information when you use the Tipexs platform ("Service").

2. Information We Collect

2.1 Information You Provide

  • Account information: name, email address, phone number, company name, role.
  • Company profile: industries, products, capabilities, certifications, and other business information submitted during onboarding.
  • Bid documents: files and content you upload to the bid management workflow.
  • Communications: messages sent through our support and contact channels.

2.2 Information Collected Automatically

  • Usage data: pages visited, features used, match interactions, search queries.
  • Device data: browser type, OS, IP address, device identifiers.
  • Authentication logs: login timestamps, IP addresses, 2FA status (for security auditing).

2.3 Procurement Data

We aggregate tender data from publicly available procurement portals (e.g., SAM.gov, TED, government e-procurement sites). This data is public information and is not personal data.

3. How We Use Your Information

  • Matching: Your company profile is used by our AI engine to identify relevant tenders.
  • Service delivery: Account management, bid workflows, notifications, and support.
  • Improvement: Aggregated, anonymized usage data helps us improve matching algorithms and platform features.
  • Security: Authentication logs and audit trails protect against unauthorized access.
  • Communication: Service updates, security alerts, and product announcements (with opt-out).

4. AI Processing

Your company profile data is processed by AI models (including third-party LLMs) to generate match scores, keyword extraction, and bid recommendations. We ensure:

  • Profile data sent to AI providers is limited to what is necessary for the specific task.
  • We do not use your data to train third-party AI models.
  • AI outputs are stored within your tenant's isolated data space.

5. Data Sharing

We do not sell your personal data. We share information only in these circumstances:

  • Service providers: Cloud infrastructure (hosting, database), AI model providers, email delivery — all bound by data processing agreements.
  • Legal obligations: When required by law, regulation, or legal process.
  • Business transfers: In the event of a merger, acquisition, or asset sale, with advance notice.

6. Data Security

  • All data is encrypted in transit (TLS 1.2+) and at rest (AES-256).
  • Authentication tokens are stored in HttpOnly, Secure cookies.
  • Two-factor authentication (TOTP) is available for all accounts.
  • Tenant data is isolated — each organization's data is logically separated via row-level security.
  • API keys and sensitive credentials are encrypted with per-tenant Fernet keys.

7. Data Retention

  • Active accounts: Data is retained for the duration of your subscription.
  • After termination: Data is retained for 30 days to allow export, then permanently deleted.
  • Audit logs: Security audit logs are retained for 12 months.
  • Anonymized analytics: May be retained indefinitely in aggregated form.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Correct inaccurate personal data.
  • Deletion: Request deletion of your personal data ("right to be forgotten").
  • Portability: Export your data in a machine-readable format (JSON).
  • Objection: Object to processing of your data for specific purposes.

To exercise any of these rights, contact us via our contact page or email privacy@tipexs.com.

9. Cookies

We use the following cookies:

  • access_token (HttpOnly, Secure): Authentication session token.
  • refresh_token (HttpOnly, Secure): Token refresh mechanism.
  • auth_indicator: Lightweight flag for client-side routing (non-sensitive).

We do not use third-party tracking cookies or advertising cookies.

10. International Transfers

Your data may be processed in jurisdictions outside your country of residence, including Israel and cloud regions in the EU and US. We ensure appropriate safeguards are in place for international data transfers.

11. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email or in-app notification at least 14 days before taking effect.

12. Contact

For privacy-related inquiries, contact us at our contact page or email privacy@tipexs.com.