YEAPS Confidentiality, Customer Information Protection, Secure Handling, and Prior Engagements Policy

At YEAPS, we understand that customers, partners, and prospective clients may share internal business information with us in connection with assessments, consulting discussions, enablement planning, training design, implementation support, and other legitimate business engagements. We treat entrusted information seriously and apply disciplined handling practices intended to support trust, responsible operations, and productive collaboration.

Information Shared With YEAPS Is Handled With Care

This policy applies to business information provided to YEAPS or made available to YEAPS in connection with legitimate engagements, whether in written, digital, visual, verbal, or other form, including where reasonably understood to be confidential by its nature or context.

Examples may include:

presentations
proposals
spreadsheets
internal reports
strategies
pricing information
emails
screenshots
recordings
architecture diagrams
project plans
draft materials
datasets
operating procedures
credentials shared for approved support purposes
verbally shared non-public information

Customer Materials Remain Customer Property

Unless otherwise agreed in writing, materials, documents, data, and information supplied by a customer remain the property of that customer or its rightful owner. No transfer of ownership is created merely by sharing information with YEAPS.

YEAPS Uses Shared Information Only For Legitimate Agreed Purposes

YEAPS uses entrusted information only for legitimate business purposes connected to the relevant engagement, such as:

discovery and scoping
training needs assessment
workshop preparation
solution design
implementation planning
managed support
requested advisory or delivery services

YEAPS does not knowingly use customer information for unrelated commercial exploitation.

Access Is Limited on a Need-to-Know Basis

Access to customer information is limited to YEAPS personnel, contractors, consultants, or service providers who have a legitimate business need related to the engagement and who are subject to appropriate confidentiality obligations or professional duties.

YEAPS Applies Reasonable Safeguards

YEAPS applies commercially reasonable administrative, organizational, and technical safeguards appropriate to the nature of the engagement and information involved. Depending on context, these may include:

controlled access practices
account security measures
password and authentication controls
reputable cloud productivity or storage platforms
secure file-sharing methods
device discipline
minimization of unnecessary duplication
responsible records management

No method of storage or transmission can guarantee zero risk. YEAPS therefore commits to reasonable and practical safeguards rather than absolute security guarantees.

No Unauthorized Disclosure

YEAPS does not intentionally disclose customer confidential information to unauthorized third parties.

Disclosure may occur only where reasonably necessary and appropriate, including:

customer-authorized sharing
approved subcontractors or service providers supporting delivery under suitable controls
legal or regulatory requirements
protection of rights, safety, or lawful business interests where permitted by law

Customer Information Is Not Used To Train Public AI Models Without Authorization

YEAPS does not knowingly use customer confidential information to train public AI models or unrelated third-party models unless the customer has expressly authorized such use in writing.

Where AI-enabled tools are used for productivity or service delivery, YEAPS seeks to use them responsibly and in a manner consistent with customer commitments, tool controls, and applicable obligations.

Retention Is Limited and Practical

YEAPS retains information only for as long as reasonably necessary for legitimate business purposes, continuity, records management, backup cycles, legal obligations, accounting, dispute resolution, security, or related operational needs.

Where practicable and appropriate, YEAPS may delete, return, or cease active use of customer materials upon request or at the end of an engagement, subject to lawful and operational constraints.

YEAPS Responds Responsibly to Security Incidents

If YEAPS becomes aware of unauthorized access to customer information within its control that is material to the affected engagement, YEAPS will take commercially reasonable steps to investigate, contain, mitigate, and provide notice where appropriate under the circumstances and applicable obligations.

If Disclosure Is Legally Required, YEAPS Seeks to Handle It Responsibly

If YEAPS is legally compelled to disclose information, YEAPS may seek to limit the scope of disclosure and, where legally permitted and reasonably practicable, notify the affected customer.

Common-Sense Exclusions Apply

This policy does not apply to information that:

is publicly available through no wrongful act of YEAPS
was lawfully known to YEAPS without duty of confidentiality
is lawfully received from another source without known restriction
is independently developed without use of protected customer information

Customers Also Play an Important Role in Secure Sharing

Customers are encouraged not to transmit unnecessary highly sensitive personal data, production credentials, regulated data, or unusually sensitive materials unless specifically required for the engagement and appropriate handling arrangements are in place.

Prior Engagements and Previously Shared Information

Where YEAPS has previously received business information in connection with discussions, proposals, assessments, pilots, training evaluations, or service-related interactions, YEAPS endeavors to handle such information in a manner generally consistent with the principles described in this policy, subject to the facts, applicable obligations, and any specific agreements governing those interactions.

Information historically shared with YEAPS for evaluations, proposals, training assessments, discovery, or related business discussions is generally understood to have been shared for those limited business purposes unless otherwise expressly agreed.

Publication of this policy does not create retroactive obligations, new liabilities, admissions, or expanded duties regarding prior interactions, all of which remain subject to their own facts, communications, applicable law, and any specific agreements.

Commercial Information Shared in Business Contexts Is Expected To Be Handled Responsibly

Information exchanged with YEAPS during proposals, discovery, assessments, solution planning, training preparation, implementation discussions, or related commercial interactions is generally understood to be shared for legitimate business evaluation and collaboration purposes, with an expectation of appropriate discretion consistent with the nature of the information and circumstances of disclosure.

Absent contrary written terms, no broader license, ownership transfer, unrestricted reuse right, or public-use right is implied solely by such disclosure.

Receipt of Information Does Not Alone Create Expanded Obligations

Receipt of information by YEAPS does not by itself create obligations beyond applicable law, specific agreements, or reasonable duties arising from the context of the engagement.

Engagement Terms May Vary by Relationship Structure

This policy describes the general confidentiality and information-handling principles of YEAPS.

Specific engagements may be supported by separate written agreements, including non-disclosure agreements, statements of work, purchase orders, service agreements, or other documented arrangements, depending on the nature of the relationship.

In the absence of a separate written agreement, the parties’ communications, applicable law, the circumstances of disclosure, and this policy may help inform reasonable expectations regarding the handling of shared business information.

Where a signed agreement applies, that agreement will govern to the extent of any inconsistency.

YEAPS May Improve This Policy Over Time

YEAPS may update this policy from time to time to reflect improved practices, operational changes, legal developments, or evolving customer expectations. Updated versions may apply prospectively upon publication.

Contact YEAPS Regarding Confidentiality Matters

For confidentiality, information handling, or related requests, please contact YEAPS through the official contact channels listed on the YEAPS website.