Legal
Privacy Policy
Last updated: 12 May 2026
This policy explains what personal data Noctiv AI collects, why we collect it, and how we handle it — for visitors to this website and users of the SolarGuard platform.
01
Who we are
Noctiv AI ("we", "our", "us") operates the Noctiv platform — an AI-powered physical security system for utility-scale solar power plants. Our registered address is Istanbul, Türkiye.
For the purposes of the EU General Data Protection Regulation (GDPR), the UK GDPR, and Türkiye's Law on the Protection of Personal Data (KVKK, Law No. 6698), Noctiv AI is the data controller for personal data collected through this website. For personal data processed on behalf of enterprise customers using the Noctiv platform, Noctiv AI acts as a data processor under the terms of the applicable Data Processing Agreement.
Questions about this policy or your personal data may be directed to privacy@noctiv.ai.
02
Data we collect
We collect personal data in the following contexts:
Demo and contact requests
- Name and job title
- Work email address
- Company country
- Free-text message or comments you choose to provide
Platform accounts (enterprise customers)
- Name and email address of operators and account owners
- Login credentials (passwords are hashed and never stored in plain text)
- Role and organisational assignment
- Action logs generated through use of the platform (e.g. event acknowledgements)
Automatically collected data
- IP address and approximate geolocation
- Browser type and version
- Referrer URL and pages visited
- Timestamps of visits and interactions
We do not collect sensitive personal data (such as biometric data, health information, or government identification numbers) through this website or the platform.
03
How we use your data
We use the data we collect for the following purposes:
- Responding to demo requests and sales enquiries
- Providing, maintaining, and improving the SolarGuard platform for contracted customers
- Sending transactional communications (account setup, security alerts related to your account)
- Complying with legal obligations
- Protecting the security and integrity of our systems
- Analysing aggregated, anonymised usage patterns to improve our products
We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects.
We do not sell personal data to third parties under any circumstances.
04
Legal basis for processing
Where the GDPR or Turkey's KVKK (Kişisel Verilerin Korunması Kanunu, Law No. 6698) applies, we rely on the following legal bases:
Legitimate interests: Processing demo requests, responding to business enquiries, and preventing fraud or abuse. We have carried out a balancing test and concluded that our interests are not overridden by your rights.
Contract performance: Where you or your employer has entered into a contract with us for the SolarGuard platform, we process platform operator data to fulfil that contract.
Legal obligation: Retaining certain records as required by applicable law.
Consent: For any processing activities where we rely on consent (such as non-essential cookies), we will ask for your consent separately and you may withdraw it at any time.
05
Data sharing
We share personal data only in the following limited circumstances:
- Service providers who process data on our behalf under appropriate data processing agreements (e.g. cloud infrastructure, email delivery)
- Professional advisers (lawyers, accountants) under confidentiality obligations
- Law enforcement or regulatory authorities where required by law or to protect rights and safety
- Acquirers in the event of a merger, acquisition, or sale of assets — you will be notified in advance
All third-party sub-processors are contractually bound to process data only on our documented instructions and to maintain appropriate technical and organisational security measures.
06
Data retention
We retain personal data only for as long as necessary for the purposes described in this policy, or as required by applicable law:
- Demo request data: up to 24 months from your last interaction with us, unless you request earlier deletion
- Platform operator accounts: for the duration of the customer contract, plus up to 90 days for backup recovery, then deleted
- Security and audit logs: up to 12 months
- Anonymised and aggregated analytics data: indefinitely
When data is no longer needed we securely delete or anonymise it.
07
Your rights
Depending on your location, you may have the following rights regarding your personal data:
- Access — request a copy of the personal data we hold about you
- Rectification — ask us to correct inaccurate or incomplete data
- Erasure — request deletion of your personal data where there is no compelling reason for us to keep it
- Restriction — ask us to restrict processing in certain circumstances
- Portability — receive your data in a structured, machine-readable format
- Objection — object to processing based on legitimate interests
- Withdrawal of consent — where processing is based on consent, withdraw it at any time without affecting the lawfulness of prior processing
To exercise any of these rights, contact us at privacy@noctiv.ai. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.
08
International transfers
Our infrastructure is hosted primarily in the EU (Frankfurt, Germany) and on Cloudflare's global edge network. When personal data is transferred outside the European Economic Area, we ensure appropriate safeguards are in place, such as the European Commission's Standard Contractual Clauses (SCCs) or adequacy decisions.
If you require further information about the specific safeguards applied to your data transfer, please contact us.
10
Children's privacy
The SolarGuard platform and this website are directed at business professionals and are not intended for children under 16 years of age. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.
11
Changes to this policy
We may update this policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will update the "Last updated" date at the top of this page. For significant changes affecting platform users, we will provide advance notice via email or a prominent notice in the dashboard at least 14 days before the changes take effect.
Where we are required by law to obtain your consent for any change in how we process your personal data, we will seek that consent separately and explicitly. For changes that do not alter the purposes or legal basis for processing, we will notify you and allow you to raise objections before the revised policy takes effect.
12
Contact us
If you have questions, requests, or concerns about this policy or how we handle your data, please contact our privacy team:
Noctiv AI
privacy@noctiv.aiWe aim to respond to all data-related enquiries within 5 business days and will resolve them within 30 days.
© 2026 Noctiv AI
← Back to noctiv.ai