Privacy Policy
Effective November 2025
Entity: In Parallel Oy (“we”, “us”, “our”)
1. Scope and roles
This Privacy Policy applies to (a) our websites and marketing properties (the “Websites”) and (b) our software and related services, including Navigator and any meeting assistant/bot, integrations, and APIs (the “Services”).
For personal data collected via the Websites, In Parallel Oy is the controller. For data we process in the Services on behalf of a business customer (“Customer Content”), the Customer is the controller and In Parallel is the processor. Our Data Processing Addendum (“DPA”) forms part of our contract with customers.
2. The data we process
Depending on how you interact with us, we may process:
Account & Profile: name, email, password hash or SSO identifier, role, organization.
Service Usage & Telemetry: device/browser info, event logs, diagnostics, crash reports, performance metrics.
Connected-Tool Signals (only if you or your admin connect them):
Calendars & Meetings: meeting titles, participants, times; if enabled, audio, recordings, transcripts, summaries/notes.
Chat/Messaging (e.g., Slack/Microsoft Teams): channel and message metadata and, if enabled by your admin, message content needed to power digests, summaries, mentions, and decision logs.
Email: headers/metadata and, if explicitly enabled, content for summarization/digests.
Work/CRM Tools (e.g., Jira, Linear, Trello, Monday, Salesforce, HubSpot): issue/task/record fields, comments, assignees, statuses, timestamps, and metadata.
Derived Insights & Outputs: summaries, digests, nudges, action/decision items, risk flags, “plan vs. progress,” and similar.
Support & Communications: support tickets, feedback, survey responses, and correspondence.
Website Data: cookies, IP address, pages viewed, referrer, campaign parameters.
We do not require special-category data (e.g., health, biometric, precise geolocation). Please do not provide such data unless we agree in writing.
3. Sources
Directly from you and your device/browser.
Your organization (admins, SSO, directory).
Third-party services you connect (subject to scopes/permissions you approve).
4. Purposes and legal bases
We use the following personal data for the purposes, based on the legal bases.
Account & admin data
Create and manage your account; authenticate users. Legal basis: Contract.
Connected tools: content & metadata
Ingest and structure signals from connected tools to deliver digests, decision logs, reports, and search. Legal basis: Contract.
AI-generated outputs / derived insights (from your content)
Generate summaries, nudges, and prioritization to power the Service. Legal basis: Contract. (Derived insights follow the legal basis of the source data.)
Service usage & diagnostics data
Operate, secure, and ensure the integrity of the Services (e.g., abuse prevention, availability, access logs). Legal basis: Legitimate interests.
Product analytics & quality data
Improve the Services via analytics, testing, and troubleshooting. Legal basis: Legitimate interests.
Support & communications data
Provide support and communicate about updates, security, and service messages. Legal basis: Legitimate interest.
Billing & payment data
Process payments and manage subscriptions. Legal basis: Contract.
Retain invoices and transaction records for tax/audit. Legal basis: Legal obligation.
Website & cookie data
Use essential cookies to deliver core site functionality. Legal basis: Legitimate interests.
Use non-essential cookies/trackers for analytics or marketing where permitted. Legal basis: Consent (you can withdraw any time).
Compliance & safety data
Comply with legal requests and enforce agreements. Legal basis: Legal obligation.
Detect, prevent, and respond to fraud, security incidents, and misuse. Legal basis: Legitimate interests.
Marketing communications
Send marketing to website visitors/subscribers where permitted. Legal basis: Consent (you can withdraw any time).
Automated decision-making
We do not make decisions with legal or similarly significant effects solely based on automated processing.
5. Meeting capture and transcripts
If your admin—or you—enables meeting capture, our assistant may join calls to record audio and generate transcripts/summaries.
Consent should be obtained from all participants before allowing In Parallel to access the meeting. Once added, the assistant announces its presence and links to its privacy notice in the meeting chat (where supported).
Your organization is responsible for providing all legally required notices and securing consent. Admins can configure defaults for recording/transcripts and set retention.
6. Third-party processors and integrations
We use trusted subprocessors (e.g., cloud hosting, storage, logging, transcription/LLM providers) to operate the Services under written contracts and appropriate safeguards.
We publish a current list here.
Integrations with third-party platforms (Slack/Teams/email/CRM/work management) are subject to their terms and privacy practices. Disconnecting may limit features.
7. International transfers & data residency
We offer regional data hosting options (e.g., EU, US, APAC) for Service Data where available. If personal data is transferred to a country without an adequacy decision, we rely on appropriate safeguards (e.g., EU Standard Contractual Clauses). Details are in our DPA: here.
8. Security
We maintain administrative, technical, and organizational measures including encryption in transit and at rest, role-based access controls, vulnerability management, logging/monitoring, and SSO/SAML/SCIM support (where available). We align our security program to recognized industry frameworks. Contact us or access https://trust.in-parallel.com for current certifications and audit reports.
9. Retention
Customer Content (including transcripts/recordings and Derived Insights): retained for your subscription term and deleted within 30 days of termination unless your admin requests earlier deletion or applicable law requires retention.
Transcripts/recordings: admin-configurable; default retention is immediately deleted after processing.
Operational logs/telemetry: typically 24 months for security and reliability.
We may retain limited information as needed to comply with legal obligations, resolve disputes, or enforce agreements (for example, billing and payment records, tax invoices, audit logs, and support ticket metadata)
10. Your rights
Depending on your location, you may have additional data protection rights, such as under the GDPR if you are in the EU or CPRA for California residents. If the GDPR applies to you, you have the following rights:
Right of access – You may request a copy of the personal data we hold about you.
Right to rectification – You may request correction of inaccurate or incomplete data.
Right to erasure – You may request the deletion of your data.
Right to restriction of processing – You may request that we limit the processing of your data.
Right to data portability – You may request that we provide your data in a portable format or transfer it to another service.
Right to object – You may object to our processing of your data where we rely on legitimate interests or other legal grounds.
Rights related to automated decision-making – You may request that decisions based solely on automated processing, including profiling, are not applied to you.
Right to lodge a complaint – You may submit a complaint to a supervisory authority, such as your national data protection authority or ombudsman.
To exercise any of these rights, contact us at privacy@in-parallel.com. If your organization is the data controller, we may forward your request to your administrator.
11. Children
The Services are not directed to children under 16, and we do not knowingly process their data.
12. Cookies
We use cookies and similar technologies on our Websites for essential operations, analytics, and—where permitted—marketing. See our Cookie Policy for details and choices.
13. Changes
We may update this Policy from time to time. We will post changes here and adjust the “Effective date” above. Material changes will be notified through the Services or by email where appropriate.
14. Contact
You may contact our Data Protection Officer with any questions or requests.
They can be reached via: privacy@in-parallel.com
Data protection inquiries: In Parallel Oy, Salomonkatu 17b, 00100 Helsinki, Finland.
At In Parallel, we are committed to protecting your privacy.
This Privacy Statement explains what data In Parallel collects, for what purpose, how the data is handled, and your rights and choices under the General Data Protection Regulation (GDPR) and ePrivacy Directive. This Privacy Statement applies only to data collected via our public website; data collected under our customer agreements are governed by those separate contract terms.
At In Parallel, we are committed to protecting your privacy. This Cookie Policy explains how we use cookies on our website, the types of cookies we use, and how you can manage them.
Entity: In Parallel Oy (“we”, “us”, “our”)
1. Scope and roles
This Privacy Policy applies to (a) our websites and marketing properties (the “Websites”) and (b) our software and related services, including Navigator and any meeting assistant/bot, integrations, and APIs (the “Services”).
For personal data collected via the Websites, In Parallel Oy is the controller. For data we process in the Services on behalf of a business customer (“Customer Content”), the Customer is the controller and In Parallel is the processor. Our Data Processing Addendum (“DPA”) forms part of our contract with customers.
2. The data we process
Depending on how you interact with us, we may process:
Account & Profile: name, email, password hash or SSO identifier, role, organization.
Service Usage & Telemetry: device/browser info, event logs, diagnostics, crash reports, performance metrics.
Connected-Tool Signals (only if you or your admin connect them):
Calendars & Meetings: meeting titles, participants, times; if enabled, audio, recordings, transcripts, summaries/notes.
Chat/Messaging (e.g., Slack/Microsoft Teams): channel and message metadata and, if enabled by your admin, message content needed to power digests, summaries, mentions, and decision logs.
Email: headers/metadata and, if explicitly enabled, content for summarization/digests.
Work/CRM Tools (e.g., Jira, Linear, Trello, Monday, Salesforce, HubSpot): issue/task/record fields, comments, assignees, statuses, timestamps, and metadata.
Derived Insights & Outputs: summaries, digests, nudges, action/decision items, risk flags, “plan vs. progress,” and similar.
Support & Communications: support tickets, feedback, survey responses, and correspondence.
Website Data: cookies, IP address, pages viewed, referrer, campaign parameters.
We do not require special-category data (e.g., health, biometric, precise geolocation). Please do not provide such data unless we agree in writing.
3. Sources
Directly from you and your device/browser.
Your organization (admins, SSO, directory).
Third-party services you connect (subject to scopes/permissions you approve).
4. Purposes and legal bases
We use the following personal data for the purposes, based on the legal bases.
Account & admin data
Create and manage your account; authenticate users. Legal basis: Contract.
Connected tools: content & metadata
Ingest and structure signals from connected tools to deliver digests, decision logs, reports, and search. Legal basis: Contract.
AI-generated outputs / derived insights (from your content)
Generate summaries, nudges, and prioritization to power the Service. Legal basis: Contract. (Derived insights follow the legal basis of the source data.)
Service usage & diagnostics data
Operate, secure, and ensure the integrity of the Services (e.g., abuse prevention, availability, access logs). Legal basis: Legitimate interests.
Product analytics & quality data
Improve the Services via analytics, testing, and troubleshooting. Legal basis: Legitimate interests.
Support & communications data
Provide support and communicate about updates, security, and service messages. Legal basis: Legitimate interest.
Billing & payment data
Process payments and manage subscriptions. Legal basis: Contract.
Retain invoices and transaction records for tax/audit. Legal basis: Legal obligation.
Website & cookie data
Use essential cookies to deliver core site functionality. Legal basis: Legitimate interests.
Use non-essential cookies/trackers for analytics or marketing where permitted. Legal basis: Consent (you can withdraw any time).
Compliance & safety data
Comply with legal requests and enforce agreements. Legal basis: Legal obligation.
Detect, prevent, and respond to fraud, security incidents, and misuse. Legal basis: Legitimate interests.
Marketing communications
Send marketing to website visitors/subscribers where permitted. Legal basis: Consent (you can withdraw any time).
Automated decision-making
We do not make decisions with legal or similarly significant effects solely based on automated processing.
5. Meeting capture and transcripts
If your admin—or you—enables meeting capture, our assistant may join calls to record audio and generate transcripts/summaries.
Consent should be obtained from all participants before allowing In Parallel to access the meeting. Once added, the assistant announces its presence and links to its privacy notice in the meeting chat (where supported).
Your organization is responsible for providing all legally required notices and securing consent. Admins can configure defaults for recording/transcripts and set retention.
6. Third-party processors and integrations
We use trusted subprocessors (e.g., cloud hosting, storage, logging, transcription/LLM providers) to operate the Services under written contracts and appropriate safeguards.
We publish a current list here.
Integrations with third-party platforms (Slack/Teams/email/CRM/work management) are subject to their terms and privacy practices. Disconnecting may limit features.
7. International transfers & data residency
We offer regional data hosting options (e.g., EU, US, APAC) for Service Data where available. If personal data is transferred to a country without an adequacy decision, we rely on appropriate safeguards (e.g., EU Standard Contractual Clauses). Details are in our DPA: here.
8. Security
We maintain administrative, technical, and organizational measures including encryption in transit and at rest, role-based access controls, vulnerability management, logging/monitoring, and SSO/SAML/SCIM support (where available). We align our security program to recognized industry frameworks. Contact us or access https://trust.in-parallel.com for current certifications and audit reports.
9. Retention
Customer Content (including transcripts/recordings and Derived Insights): retained for your subscription term and deleted within 30 days of termination unless your admin requests earlier deletion or applicable law requires retention.
Transcripts/recordings: admin-configurable; default retention is immediately deleted after processing.
Operational logs/telemetry: typically 24 months for security and reliability.
We may retain limited information as needed to comply with legal obligations, resolve disputes, or enforce agreements (for example, billing and payment records, tax invoices, audit logs, and support ticket metadata)
10. Your rights
Depending on your location, you may have additional data protection rights, such as under the GDPR if you are in the EU or CPRA for California residents. If the GDPR applies to you, you have the following rights:
Right of access – You may request a copy of the personal data we hold about you.
Right to rectification – You may request correction of inaccurate or incomplete data.
Right to erasure – You may request the deletion of your data.
Right to restriction of processing – You may request that we limit the processing of your data.
Right to data portability – You may request that we provide your data in a portable format or transfer it to another service.
Right to object – You may object to our processing of your data where we rely on legitimate interests or other legal grounds.
Rights related to automated decision-making – You may request that decisions based solely on automated processing, including profiling, are not applied to you.
Right to lodge a complaint – You may submit a complaint to a supervisory authority, such as your national data protection authority or ombudsman.
To exercise any of these rights, contact us at privacy@in-parallel.com. If your organization is the data controller, we may forward your request to your administrator.
11. Children
The Services are not directed to children under 16, and we do not knowingly process their data.
12. Cookies
We use cookies and similar technologies on our Websites for essential operations, analytics, and—where permitted—marketing. See our Cookie Policy for details and choices.
13. Changes
We may update this Policy from time to time. We will post changes here and adjust the “Effective date” above. Material changes will be notified through the Services or by email where appropriate.
14. Contact
You may contact our Data Protection Officer with any questions or requests.
They can be reached via: privacy@in-parallel.com
Data protection inquiries: In Parallel Oy, Salomonkatu 17b, 00100 Helsinki, Finland.
At In Parallel, we are committed to protecting your privacy.
This Privacy Statement explains what data In Parallel collects, for what purpose, how the data is handled, and your rights and choices under the General Data Protection Regulation (GDPR) and ePrivacy Directive. This Privacy Statement applies only to data collected via our public website; data collected under our customer agreements are governed by those separate contract terms.