top of page

Privacy Policy

1. Introduction

This Privacy Policy explains how Cached Entity ("we," "us," or "our") collects, uses, stores, and protects information when you use our integration platform, including integrations with Microsoft Dynamics 365 and other external services. This Policy applies to all users, customers, and organizations that access or use the Service, including those acquiring the solution through the Microsoft Commercial Marketplace.

By using the Service, you agree to the terms of this Privacy Policy.

 

2. Information We Collect

We may collect the following categories of information:

2.1 Account and Authentication Information

  • Azure Active Directory (AAD) user identifiers

  • Organization ID and tenant ID

  • Email address and display name

  • Authentication tokens (stored securely and never shared)

2.2 Customer Data

"Customer Data" includes all data you connect, sync, or transmit through the Service, such as:

  • Microsoft Dynamics 365 data entities

  • Custom entity data

  • Data originating from external sources or APIs you configure

You maintain ownership and control over Customer Data at all times.

2.3 Service & Usage Metadata

We collect operational metadata for the purpose of diagnostics and improvement, such as:

  • Integration execution logs

  • Error logs

  • API call durations and status codes

  • Performance metrics

This metadata does not include the contents of your Customer Data unless required for troubleshooting and explicitly authorized by you.

2.4 Payment and Subscription Data

If the Service is purchased through the Microsoft Marketplace, Microsoft handles billing information. We do not collect or store your payment details.

 

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve the Service

  • Authenticate users and maintain secure access

  • Enable integrations with Microsoft Dynamics 365 and third-party systems

  • Diagnose issues, analyze usage, and improve stability

  • Provide customer support

  • Comply with legal or regulatory requirements

We do not sell Customer Data or personal information.

 

4. Legal Basis for Processing (If Applicable)

Where required by law (e.g., GDPR), we process information under one or more of the following bases:

  • Contractual necessity (to provide the Service)

  • Legitimate interests (security, performance, analytics)

  • Consent (where explicitly granted)

  • Compliance with legal obligations

 

5. Data Sharing and Disclosure

We may share data only in the following situations:

5.1 Service Providers

Trusted third-party hosting, security, or analytics providers that assist with operating the platform.

5.2 Microsoft Services

Data may pass through Microsoft systems based on your configuration (e.g., Azure, Dynamics 365, Graph API).

5.3 Legal Requirements

We may disclose information when required by law, subpoena, or government request.

We never share Customer Data for advertising or commercial resale purposes.

 

6. Data Security

We apply industry-standard security practices, including:

  • Encryption in transit (TLS)

  • Encryption at rest where supported

  • Secure credential storage

  • Role-based access controls

  • Regular security reviews and monitoring

No system is perfectly secure, and you are responsible for:

  • Managing your Azure AD access controls

  • Ensuring your Dynamics 365 security roles are configured correctly

 

7. Data Retention

We retain:

  • Customer Data only as needed to provide the Service

  • Logs and metadata according to our retention schedule (typically {{RETENTION PERIOD}})

Upon termination of the Service, Customer Data may be deleted according to our data retention policy.

 

8. International Data Transfers

Depending on your region and hosting configuration, data may be processed in data centers outside your country. We rely on lawful mechanisms for such transfers, including Standard Contractual Clauses when applicable.

 

9. Children’s Privacy

The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.

 

10. Your Rights

Depending on your region (e.g., GDPR, CCPA), you may have rights including:

  • Access to personal data

  • Correction of inaccurate data

  • Data deletion

  • Data export

  • Restriction or objection to processing

Requests can be submitted via support@cachedentity.com.

 

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically. If significant changes occur, we will provide notice through the Service or the Microsoft Marketplace.

Continued use of the Service confirms your acceptance of the updated Policy.

 

12. Contact Information

For questions, requests, or concerns about this Privacy Policy, contact us.

bottom of page