Privacy Policy
We believe privacy is a right, not a compliance checkbox. This policy explains what data we collect, how we use it, and the commitments we make to every organisation we work with.
Theoremic Inc. ("Theoremic", "we", "us", or "our") operates the Theoremic platform — an autonomous intelligence layer for enterprise procurement that integrates with ERP systems including SAP, Oracle, Workday, Coupa, and others.
This Privacy Policy applies to our website at theoremic.com, our platform, and any interactions you have with us as a prospective or active partner.
When you request a pilot, contact us, or engage with our team, we collect the information you share directly — including your name, company, job title, email address, and the details of your ERP environment relevant to a potential deployment.
When you visit our website, we may collect standard server log data such as IP address, browser type, pages visited, and time of access. We use this for site performance and security purposes only.
For active pilot partners, our platform processes data from your connected ERP systems as part of the agreed workflow scope. This is described in detail under ERP & Enterprise Data below.
We use the information we collect strictly for the purposes it was provided for:
We do not use your data for advertising, profiling, or any purpose unrelated to your engagement with Theoremic.
We do not sell, rent, or trade personal data. Period.
We may share data only in the following limited circumstances:
We maintain a limited set of sub-processors necessary to operate our platform. Enterprise partners may request a list of sub-processors as part of their due diligence process.
Theoremic connects to your ERP systems via standard enterprise APIs and Model Context Protocol (MCP). We request only the minimum access necessary to perform the specific procurement workflows in scope for your deployment.
Customer data is logically isolated. Your organisation's data is never accessible to, or visible from, another Theoremic customer's environment.
We do not use data from your ERP environment to train, fine-tune, or improve our AI models for any purpose beyond your own deployment. Your proprietary procurement data stays proprietary.
Processed data is retained only as long as required to fulfil the active workflow or as agreed in your deployment contract. Upon termination of an engagement, data is deleted or returned in accordance with your instructions.
Depending on your location, you may have rights with respect to your personal data, including the right to:
To exercise any of these rights, contact us at privacy@theoremic.com. We will respond within 30 days.
We implement technical and organisational measures designed to protect your data against unauthorised access, loss, or misuse. These include encryption in transit and at rest, access controls, and audit logging.
For a detailed overview of our security architecture, see our Security & Compliance page.
We may update this policy as our platform and legal obligations evolve. When we make material changes, we will update the date at the top of this page and, where appropriate, notify active partners directly.
We encourage you to review this policy periodically. Continued use of our platform after any updates constitutes acceptance of the revised policy.
If you have questions about this Privacy Policy, how we handle your data, or want to exercise your rights, please reach out to our team.
privacy@theoremic.com ↗For security-specific inquiries, please contact security@theoremic.com.