Details on how we process and secure customer data in compliance with regulations.
Last Updated: July 2026
In the context of the BRR-AI Platform, BrrLMS, BrrCRM, and managed cloud services (AWS/Azure/GCP), the Client is the Data Controller, and BRR Softwares is the Data Processor.
BRR Softwares implements appropriate technical and organizational measures to ensure a level of security appropriate to the risk. This includes encryption for all data processed by our AI search algorithms and strict access controls for our development and miniGCC teams.
Where personal data is transferred from the EEA, UK, or USA to our development centers in India (e.g., within a miniGCC setup), such transfers are governed by Standard Contractual Clauses (SCCs) or other appropriate legal transfer mechanisms.
Upon termination of the service, BRR Softwares will, at the choice of the Data Controller, delete or return all personal data, including any vectors or embeddings generated by the BRR-AI platform from the client's data.
If you have any questions about this document or our services, please contact our legal team at legal@brrsoftwares.com.