Privacy Policy

Published by Savoy Systems LLC
Effective Date: April 13, 2026

What Data the Application Accesses

The CSP Continuity application accesses the following data within your Azure tenant:

• Cost and usage data from the Azure Cost Details API (subscription-scope cost records including resource details, meter information, pricing, and tags)
• Reservation data from the Azure Reservations API (reservation orders, inventory, and daily utilization summaries)
• Azure AD directory data (only if you grant the optional Directory.Read.All permission; used solely to display user and group access assignments in the dashboard)
• Subscription metadata from the Azure Resource Manager API (subscription names, IDs, and states)

How Data Is Stored

All data is stored exclusively within resources deployed in your Azure tenant:

• Azure SQL Database in your managed resource group — stores consolidated cost records, reservation data, collection metadata, configuration, and anomaly records
• Azure Storage Account in your managed resource group — stores Parquet files for Power BI consumption

No data is stored outside your Azure tenant. No data is stored on publisher-owned infrastructure.

Data Transmission

The application makes outbound HTTPS calls only to:

• management.azure.com — Azure Resource Manager, Cost Management, Reservations APIs
• graph.microsoft.com — Microsoft Graph (conditional, for access control panel)
• *.monitor.azure.com — App Insights custom events for dashboard metrics
• marketplaceapi.microsoft.com — Marketplace metered billing (subscription count only)

The application does not transmit data to the publisher (Savoy Systems LLC) or any other third party. There are no telemetry endpoints, callback URLs, analytics services, error reporting services, or any other mechanism for data to leave your Azure tenant. The application is fully air-gapped from the publisher's infrastructure.

Publisher Access

Publisher access to the managed resource group may be enabled for application updates and deployment troubleshooting. This access allows the publisher to update application code and view deployment configuration — it does not provide access to the data stored in your SQL Database or Storage Account. Publisher access can be configured as JIT (just-in-time), requiring your approval before each access session.

Data Retention

Cost data retention is configurable (default: 13 months). You control how long data is retained via the application's Settings tab. The daily collection pipeline enforces the retention policy automatically, deleting records older than the configured window.

Data Deletion

When you delete the managed application from your Azure tenant, the managed resource group and all resources within it (including the SQL Database and Storage Account containing your data) are deleted. No residual data remains on any external system because no data was transmitted externally.

Cookies and Tracking

The application does not use cookies, browser tracking, analytics scripts, or any client-side tracking technology. The in-portal dashboard is rendered by Azure's managed application framework within the Azure portal.

Changes to This Policy

We may update this privacy policy to reflect changes in the application's capabilities. Material changes will be communicated through the Azure Marketplace listing.

Contact

• Email: support@savoysystems.ai
• Company: Savoy Systems LLC