MAVEN PRIVACY POLICY (V1 – May 2025)

This Privacy Policy explains how MavenIQ LLC ("Maven," "we," "us," or "our"), a Washington‑registered company, collects, uses, discloses, and protects information when you ("Merchant") or your customers ("End Users") interact with our AI‑powered messaging platform, websites, mobile experiences, or related services (collectively, the "Service"). By using the Service, you consent to the practices described below.

  1. INFORMATION WE COLLECT 1.1 Merchant Account Data – Name, business entity information (EIN, address), email, phone, payment details, authentication credentials, and activity logs. 1.2 End User Data – Phone number, message content, booking history, visit frequency, and any personal data supplied in the SMS conversation. 1.3 Usage & Device Data – IP address, browser type, referring URLs, device identifiers, cookies, and analytics events related to feature usage and performance. 1.4 Payment Data – Processed securely via Stripe; Maven never stores full card or bank details.

  2. HOW WE USE INFORMATION • Provide, operate, and maintain the Service (including AI message generation, two‑way SMS, analytics, and support). • Authenticate and secure access to Merchant accounts. • Improve and train models, monitor performance, and prevent fraud or abuse. • Bill and collect fees, taxes, and pass‑through costs. • Respond to inquiries, legal requests, or carrier compliance reviews. • Generate aggregated, anonymized statistics that do not identify individuals.

  3. LEGAL BASES FOR PROCESSING (GDPR) We rely on: (a) performance of a contract (providing the Service to Merchants); (b) legitimate interests (improving the platform, preventing fraud); (c) Merchant consent obtained from End Users; and (d) legal obligations (e.g., TCPA record‑keeping).

  4. SHARING & DISCLOSURE We only share information as necessary to provide the Service or with your permission: • SMS Delivery – Twilio for phone‑number provisioning and carrier routing. • Browser Automation – Browserbase/Stagehand for secure syncing of booking data. • Payments – Stripe for subscription processing. • Analytics / Error Monitoring – Third‑party tools (e.g., Sentry, Datadog) under confidentiality agreements. • Legal – When required by law, subpoena, or to protect rights, property, or safety. We never sell End User data to third parties.

  5. INTERNATIONAL TRANSFERS Data may be processed in the United States or other jurisdictions where our subcontractors operate. We implement Standard Contractual Clauses or equivalent safeguards for cross‑border transfers.

  6. RETENTION Merchant Account Data – retained for the duration of the subscription plus three (3) years. End User Message Logs – retained 18 months, unless a shorter period is requested or deletion is mandated by law. Billing Records – retained for seven (7) years for tax and audit purposes. Data may be deleted earlier upon verified request (see Section 9).

  7. SECURITY • Encryption in transit (TLS 1.2+) and at rest (AES‑256). • Least‑privilege, role‑based access controls. • Quarterly penetration tests and SOC 2‑aligned controls. • 24×7 monitoring and incident‑response procedures.

  8. COOKIES & TRACKING TECHNOLOGIES We use first‑party cookies and similar technologies to: • Authenticate sessions and prevent cross‑site forgery. • Remember preferences and personalize dashboards. • Measure website performance (via Google Analytics). You can disable non‑essential cookies in your browser settings; core functionality cookies are required to log in.

  9. YOUR CHOICES & RIGHTS Depending on your location, you may have rights to: • Access, correct, or delete personal data. • Port data to another provider. • Opt out of marketing communications (reply STOP or adjust Merchant settings). • Withdraw consent at any time where processing is based on consent. Requests should be emailed to privacy@maveniq.com. We will verify identity and respond within thirty (30) days.

  10. CHILDREN’S DATA The Service is not directed to children under 13. We do not knowingly collect personal information from children. If we learn we have, we will delete it promptly.

  11. CHANGES TO THIS POLICY We may update this Privacy Policy periodically. Material changes will be posted at maveniq.com/privacy and emailed to Merchants at least thirty (30) days before they take effect.

  12. CONTACT MavenIQ LLC 641 S Lander St #105 Seattle, WA 98134, USA Email: info@maveniq.com

Last updated: 14 May 2025