Last updated: February 2026
When you sign up for Thalian, we collect the information you provide: your name, work email, company name, and team size. When you connect integrations, Thalian reads data from those platforms (identity records, device status, SaaS licensing, tickets) to power its intelligence engine.
Your data is used solely to provide the Thalian platform experience — generating intelligence briefs, risk scores, recommendations, and orchestration actions. We do not sell your data to third parties. We do not use your organization's data to train AI models.
Thalian connects to your existing tools via OAuth, API keys, or service accounts with scoped permissions. You control which platforms are connected and can disconnect at any time. All integration credentials are stored encrypted and rotated automatically.
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). We follow SOC 2 Type II practices. Access to production systems is restricted to authorized personnel with MFA.
Your data is retained as long as your account is active. When you delete your account or disconnect an integration, associated data is purged within 30 days.
You can request a copy of your data, correct inaccuracies, or request deletion at any time by contacting us.