Last Updated: 3/10/2026

At Dayos, we prioritize privacy as a fundamental right. We are committed to handling your personal information with care and transparency to maintain your trust.

ABOUT DAYOS PRIVACY

Our Privacy Statement outlines how we collect, use, and share personal information. Before diving into details, here's a bit about Dayos and why this matters to you:

ABOUT DAYOS

Dayos is a multinational AI technology company specializing in augmented LLMs enabling agentic workflows for back-office automation on legacy enterprise applications including Oracle, SAP, Workday, NetSuite, and Microsoft Dynamics. Our Hero platform delivers end-to-end agentic AI covering Agent Development, ERP/HCM Support, and AI-assisted Implementation.

We are headquartered in Singapore and operate globally. At no point do we monetize user data or share it without explicit consent.

SCOPE OF THIS PRIVACY STATEMENT

This Privacy Statement applies when Dayos acts as a data controller, collecting and using your personal information for its purposes. For instance, this covers when you:

• Visit Dayos websites, such aswww.dayos.com orwww.dayos.ai.

• Engage with Dayos as a representative of a company (e.g., a customer or supplier).

• Register for or attend Dayos events, webinars, or demos.

• Request a pilot, join a waitlist, or sign up for our platform.

• Communicate with us directly or provide feedback.

When Dayos acts as a data processor on behalf of its clients, this Privacy Statement does not apply. For such cases, inquiries should be directed to the organization using Dayos products.

HOW WE COLLECT AND USE PERSONAL INFORMATION

Dayos collects personal information for specific purposes and processes it in compliance with applicable laws, including the Singapore Personal Data Protection Act 2012 (PDPA), the EU General Data Protection Regulation (GDPR), and other relevant data protection legislation in the jurisdictions where we operate.

INFORMATION YOU PROVIDE TO US

• When requesting information or signing up for our platform: We collect your name, email, phone number, company details, and role to respond to inquiries and provision access.

  • Purpose: To fulfill requests and provide relevant information about our products and services.

  • Legal Basis: Legitimate interests or your consent (where applicable).

• When registering for events or webinars: We may collect contact details, billing information, and preferences.

  • Purpose: To manage events, tailor experiences, and communicate updates.

  • Legal Basis: Legitimate interests, consent, or contract performance.

• When engaging in a pilot or design partnership: We collect business contact information and technical configuration details necessary to deliver our services.

  • Purpose: To deliver, support, and improve our platform within the scope of the engagement.

  • Legal Basis: Contract performance or legitimate interests.

• When providing feedback: Voluntary participation in surveys or feedback requests may require contact details and relevant insights.

  • Purpose: To improve our offerings and user experience.

  • Legal Basis: Legitimate interests or consent.

INFORMATION WE COLLECT AUTOMATICALLY

• From websites: Device type, browser information, IP address, and interaction logs (e.g., clicked links or viewed content).

  • Purpose: Analytics, service improvements, and security.

  • Legal Basis: Legitimate interests.

• From applications: Device make, model, and operational data to optimize functionality.

  • Purpose: App performance monitoring and troubleshooting.

  • Legal Basis: Legitimate interests.

AI-SPECIFIC DATA HANDLING

Our Hero platform processes enterprise data using augmented large language models (LLMs) within agentic workflows. We take the following measures to protect your data in AI-powered operations:

No model training on customer data. Dayos does not use customer data to train, fine-tune, or improve any foundation models. Your data is used solely to deliver the services you have contracted for.

Customer data stays in the customer's cloud tenant. Dayos operates within your existing cloud infrastructure. Enterprise data processed by our platform remains within your designated cloud environment (e.g., Oracle Cloud, Azure, AWS) and is not transferred to Dayos-owned infrastructure unless explicitly agreed upon in writing.

Data isolation. Each customer's data is logically isolated. No customer's data is accessible to, or commingled with, another customer's data.

LLM provider controls. Where third-party LLM providers are used in the processing pipeline, Dayos maintains contractual and technical safeguards ensuring that customer data is not retained, logged, or used for model improvement by those providers.

COOKIES AND TRACKING TECHNOLOGIES

Dayos uses cookies and similar tracking technologies on our websites to improve your experience and analyze site usage. These include:

• Strictly necessary cookies: Required for site functionality. These cannot be disabled.

• Analytics cookies: Help us understand how visitors interact with our websites. We use tools such as Google Analytics and similar services.

• Marketing cookies: Used to deliver relevant content and measure the effectiveness of our campaigns.

You can manage your cookie preferences through your browser settings. Disabling certain cookies may affect site functionality.

SHARING YOUR INFORMATION

Dayos may share personal information in the following scenarios:

• With service providers: For IT support, payment processing, cloud hosting, or event management.

• With your organization: As required for account management or event participation.

• With sub-processors: We maintain a list of sub-processors who assist in delivering our services. A current list is available upon request by contacting privacy@dayos.com. We will notify customers of any material changes to our sub-processor list.

• Legal or compliance purposes: To meet legal obligations or respond to lawful requests.

Dayos does not sell or share your personal information for advertising purposes.

YOUR PRIVACY RIGHTS

Depending on your jurisdiction, you may have rights to:

• Access, correct, or delete personal information.

• Object to or restrict processing.

• Request data portability.

• Withdraw consent where processing is based on consent.

For individuals in Singapore: You may exercise your rights under the PDPA, including the right to access and correct your personal data.

For individuals in the EU/EEA/UK: You may exercise your rights under the GDPR, including the right to lodge a complaint with your local supervisory authority.

To exercise these rights, contact us at privacy@dayos.com. We will respond within the timeframe required by law.

DATA RETENTION

Dayos retains personal data only as long as necessary to fulfill its purposes, comply with legal obligations, or resolve disputes. When no longer needed, data is securely deleted or anonymized.

SECURITY AND COMPLIANCE

We implement robust security measures to protect your data, including:

• SOC 2 Type 2 certification. Dayos maintains an active SOC 2 Type 2 audit, independently validated, covering security, availability, and confidentiality trust service criteria.

• Encryption. Data is encrypted in transit (TLS 1.2+) and at rest.

• Access controls. Role-based access controls and least-privilege principles govern all access to customer data.

For international data transfers, we adhere to frameworks such as the EU-U.S. Data Privacy Framework and standard contractual clauses, ensuring compliance with local laws.

CONTACT US

For questions or concerns about this Privacy Statement, reach us at:

Dayos Pte. Ltd.

Attn.: Privacy

3 Temasek Ave, Level 18

Centennial Tower

Singapore 039190

Email: privacy@dayos.com

CHANGES TO THIS PRIVACY STATEMENT

We may update this Privacy Statement periodically. Changes will be communicated via our website, and we encourage regular reviews for the latest information.