Privacy & Data Sovereignty.
Effective Date: January 27, 2026 // Status: Active Compliance
The BuruOps Integrity Mandate
As an engineering intelligence lab, we treat data as a sovereign asset. We do not participate in public data aggregation or utilize client-specific telemetry to train multi-tenant AI models. Your structural data remains your property.
1. Scope of Intelligence Collection
BuruOps Intelligence ("we", "us", or "our") collects only the telemetry required to execute forensic audits and architectural interventions. This includes:
- Technical Metadata: Cloud configuration logs, dependency manifests, and system health telemetry.
- Adversarial Signals: Log data relevant to identifying threat actor behavior during incident response.
- Liaison Data: Contact details for authorized personnel (Full Name, Business Email, Verified UID).
2. Data Processing Strategy
Data processing is performed within ephemeral, secure perimeters. We employ Zero-Trust principles, ensuring that data access is limited to the Principal Consultant and is terminated immediately upon engagement fulfillment.
3. Data Retention & Erasure
We adhere to the Right to be Forgotten. Upon the conclusion of a technical intervention, all sensitive forensic imaging and log extracts are purged from our active lab systems within 30 days, unless otherwise required by UK Law or insurance mandates.
4. UK & Global Compliance
Our protocols are designed to meet the rigorous standards of the UK GDPR and the Data Protection Act 2018. We act as a Data Processor for our clients and maintain absolute transparency regarding data residency.
5. Contact the Data Controller
For DSAR requests or sovereignty inquiries, contact the Principal:
Email: engr.buru@gmail.com
Location: Woking, Surrey, UK