Embassy Row Project
Embassy Row Project

Command Palette

Search for a command to run...

Quick Links

Apply for Grant

Free access to all services

Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your information.

Last updated: January 15, 2026

1. Introduction

Embassy Row Project ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our crisis intelligence and forensic analysis platform.

As a grant-funded initiative serving governments, humanitarian organizations, and critical infrastructure operators, we understand the sensitive nature of the information entrusted to us and maintain the highest standards of data protection.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide when using our services, including: organizational information submitted through grant applications, contact details for authorized users, documents and data uploaded for analysis, and communications with our support team. This information is essential for delivering our analytical services and maintaining your account.

2.2 Automatically Collected Information

When you access our platform, we automatically collect certain technical information including IP addresses, browser type and version, device information, pages visited and time spent, and referral sources. This information helps us maintain platform security, improve user experience, and analyze usage patterns.

3. How We Use Your Information

We use collected information to provide and improve our crisis intelligence services, process and evaluate grant applications, communicate with users about their accounts and services, maintain platform security and prevent unauthorized access, comply with legal obligations and regulatory requirements, and conduct research to enhance our analytical methodologies.

We do not sell, rent, or trade your personal information to third parties for marketing purposes. As a grant-funded organization, we have no commercial incentive to monetize user data.

4. Data Security

We implement comprehensive security measures to protect your information, including encryption of data in transit and at rest using industry-standard protocols, access controls limiting data access to authorized personnel, regular security audits and vulnerability assessments, secure data centers with physical and environmental controls, and incident response procedures for potential security events.

While we employ robust security measures, no system can guarantee absolute security. We encourage users to maintain strong passwords and report any suspicious activity immediately.

5. Data Retention

We retain your information only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce our agreements. Analysis outputs and uploaded documents are retained according to your organization's preferences and applicable retention requirements.

Upon termination of your grant access, we will securely delete or anonymize your data within 90 days, unless retention is required by law or requested by your organization.

6. Information Sharing

We may share your information in limited circumstances: with service providers who assist in platform operations under strict confidentiality agreements, when required by law, court order, or government request, to protect the rights, property, or safety of Embassy Row Project or others, and with your explicit consent for specific purposes.

We do not share analysis outputs or uploaded documents with other users or organizations without explicit authorization from the data owner.

7. Your Rights

Depending on your jurisdiction, you may have rights regarding your personal information, including the right to access and receive a copy of your data, request correction of inaccurate information, request deletion of your data (subject to legal retention requirements), object to certain processing activities, and data portability in machine-readable format.

To exercise these rights, please contact us through our official contact form. We will respond to requests within the timeframes required by applicable law.

8. International Data Transfers

Embassy Row Project operates globally and may transfer data across international borders. When we transfer data outside your jurisdiction, we implement appropriate safeguards including standard contractual clauses, adequacy decisions, and other legally recognized transfer mechanisms to ensure your data remains protected.

9. Children's Privacy

Our services are designed for organizational use and are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete such information promptly.

10. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify users of material changes through the platform or via email. The "Last updated" date at the top of this policy indicates when it was last revised.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us through the official contact form on the Embassy Row Project website. Our privacy team will respond to inquiries within a reasonable timeframe.