Privacy Policy

Effective Date: January 1, 2025

Your Privacy Matters

Mavrk AI Pty Ltd is committed to protecting your personal information and being transparent about how we handle your data.

1. INTRODUCTION

1.1 Our Commitment

Mavrk AI Pty Ltd ("Mavrk AI", "we", "us", or "our") is committed to protecting your privacy and handling your personal information in accordance with the Privacy Act 1988 (Cth) ("Privacy Act"), including the Australian Privacy Principles ("APPs"), and other applicable privacy laws.

1.2 Scope

This Privacy Policy explains how we collect, use, disclose, store, and protect personal information when you:

Use the Mavrk AI platform and services

Visit our website

Communicate with us

Use our AI agents and automation services

Interact with our phone and voice services

1.3 Consent

By using our services, you consent to the collection, use, and disclosure of your personal information as described in this Privacy Policy.

2. INFORMATION WE COLLECT

2.1 Personal Information

We may collect the following types of personal information:

Identity Information:

Full name

Email address

Phone number

Username and password

Company/organisation name

Job title

Business address

Financial Information:

Payment card details (processed securely via third-party payment processors)

Billing address

Transaction history

ACN for business customers

Technical Information:

IP address

Browser type and version

Device information

Operating system

Time zone settings

API usage statistics

Communication Data:

Call recordings (with consent)

Voice data for speech-to-text processing

Text messages and chat logs

Email correspondence

Support tickets

Usage Information:

AI agent configurations

Workflow definitions

Service preferences

Feature usage patterns

Performance metrics

2.2 Sensitive Information

We generally do not collect sensitive information as defined under the Privacy Act unless:

Required by law

You have explicitly consented

It is necessary for providing specific services

2.3 Information from Third Parties

We may collect information from:

Identity verification services

Credit reporting agencies (for business accounts)

Social media platforms (if you choose to connect)

Our business partners and integrators

3. HOW WE COLLECT INFORMATION

3.1 Direct Collection

We collect information directly from you when you:

Subscribe to our services

Contact customer support

Participate in surveys or feedback

Use our AI agents and automation tools

Make phone calls through our platform

3.2 Automatic Collection

We automatically collect certain information through:

Cookies and similar tracking technologies

Server logs

Analytics tools

Error reporting systems

Performance monitoring tools

3.3 Third-Party Collection

Information may be collected through:

AWS CloudWatch for system monitoring

Twilio for phone services

Payment processors

Authentication providers (AWS Cognito)

4. HOW WE USE YOUR INFORMATION

4.1 Primary Purposes

We use your personal information to:

Provide and maintain our services

Process transactions and billing

Create and manage your account

Deliver AI agent and automation services

Enable voice and phone communications

Provide customer support

Send service-related notifications

4.2 Secondary Purposes

With your consent or as permitted by law, we may use your information to:

Improve and develop our services

Conduct analytics and research

Send marketing communications

Detect and prevent fraud

Ensure platform security

Comply with legal obligations

Train and improve our AI models (using anonymised data)

4.3 AI Processing

Your data may be processed by AI systems to:

Generate responses and content

Transcribe speech to text

Convert text to speech

Analyze patterns for service improvement

Provide personalised recommendations

5. INFORMATION SHARING AND DISCLOSURE

5.1 We DO NOT Sell Your Information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

5.2 Authorised Disclosures

We may share your information with:

Service Providers:

Amazon Web Services (infrastructure hosting)

Twilio (phone and SMS services)

Payment processors

Email service providers

Analytics providers

Professional Advisors:

Legal advisors

Accountants and auditors

Insurance providers

Business consultants

Legal Requirements:

We may disclose information when required by:

Court orders or subpoenas

Law enforcement agencies

Regulatory authorities

To protect our legal rights

To prevent harm or illegal activities

Business Transfers:

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the successor entity.

5.3 International Transfers

Your information may be transferred to and processed in:

Singapore (primary data centre)

Other countries where our service providers operate

We ensure appropriate safeguards are in place for international transfers.

6. DATA STORAGE AND SECURITY

6.1 Storage Location

Your data is primarily stored in:

AWS data centres in Singapore (ap-southeast-1 region)

Encrypted databases (DynamoDB)

Secure object storage (S3)

6.2 Security Measures

We implement comprehensive security measures including:

Encryption at rest and in transit (TLS 1.2+)

Multi-factor authentication options

Regular security audits and penetration testing

Access controls and principle of least privilege

Incident response procedures

Employee security training

Secure software development practices

6.3 Data Retention

We retain your information for:

Active accounts: Duration of service plus 30 days

Call recordings: 30 days (unless longer retention requested)

Transaction records: 7 years (tax requirements)

Marketing data: Until consent withdrawn

Legal holds: As required by law

6.4 Data Breach Response

In the event of an eligible data breach, we will:

Assess and contain the breach

Notify affected individuals and the OAIC as required

Take remedial action

Review and improve security measures

7. YOUR RIGHTS AND CHOICES

7.1 Access Rights

You have the right to:

Request access to your personal information

Receive a copy of your data in a portable format

Know what information we hold about you

7.2 Correction Rights

You can:

Update your account information

Request correction of inaccurate data

Add explanatory notes to your records

7.3 Deletion Rights

You may request deletion of your personal information, subject to:

Legal retention requirements

Legitimate business needs

Outstanding transactions or disputes

7.4 Opt-Out Rights

You can opt out of:

Marketing communications

Non-essential cookies

Data analytics

AI training using your data

7.5 How to Exercise Your Rights

8. COOKIES AND TRACKING TECHNOLOGIES

8.1 Types of Cookies We Use

**Essential Cookies:** Required for platform functionality

**Performance Cookies:** Help us improve services

**Functionality Cookies:** Remember your preferences

**Analytics Cookies:** Understand usage patterns

8.2 Cookie Management

You can manage cookies through:

Browser settings

Our cookie preference centre

Account settings

8.3 Do Not Track

We respect Do Not Track browser signals where technically feasible.

9. CHILDREN'S PRIVACY

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware of such collection, we will delete the information promptly.

10. THIRD-PARTY SERVICES

10.1 Third-Party Links

Our platform may contain links to third-party websites. We are not responsible for their privacy practices.

10.2 Integrated Services

When you use integrated services (e.g., Twilio for phone calls), those services' privacy policies also apply.

10.3 API and Developer Access

If you use our APIs, you must:

Have your own privacy policy

Only use data for agreed purposes

Implement appropriate security measures

11. AUSTRALIAN PRIVACY PRINCIPLES COMPLIANCE

We comply with all Australian Privacy Principles including:

11.1 APP 1 - Open and Transparent Management

This policy demonstrates our transparent approach to privacy management.

11.2 APP 3 - Collection of Solicited Personal Information

We only collect information reasonably necessary for our functions.

11.3 APP 5 - Notification of Collection

We notify you at or before the time of collection about our practices.

11.4 APP 6 - Use and Disclosure

We use and disclose information only for primary purposes or as consented.

11.5 APP 7 - Direct Marketing

We comply with direct marketing requirements including opt-out mechanisms.

11.6 APP 8 - Cross-border Disclosure

We ensure overseas recipients comply with APPs.

11.7 APP 11 - Security

We take reasonable steps to protect information from misuse, loss, and unauthorised access.

11.8 APP 12 - Access

We provide access to personal information upon request.

11.9 APP 13 - Correction

We correct personal information when necessary.

12. SPECIFIC SERVICE PRIVACY NOTICES

12.1 Phone and Voice Services

When using phone services:

Calls may be recorded with consent

Voice data is processed for transcription

Recordings are retained for 30 days by default

Phone numbers are stored securely

12.2 AI Agent Interactions

Conversations with AI agents are logged

Data may be used to improve AI models (anonymised)

You can request deletion of conversation history

12.3 Business Accounts

For business accounts:

We may collect additional verification information

Administrator can access team member usage data

Billing information is shared with authorised personnel

13. PRIVACY POLICY CHANGES

13.1 Notification of Changes

We will notify you of material changes via:

Email notification

Platform notification

Website banner

13.2 Continued Use

Continued use after changes constitutes acceptance of the updated policy.

14. COMPLAINTS AND DISPUTES

14.1 Internal Complaints

If you have privacy concerns:

1. Contact our Privacy Officer at privacy@mavrkai.com

2. We will acknowledge within 48 hours

3. We aim to resolve within 30 days

14.2 External Complaints

If unsatisfied with our response, you may contact:

Office of the Australian Information Commissioner (OAIC)

Phone: 1300 363 992

Email: enquiries@oaic.gov.au

Website: www.oaic.gov.au

Address: GPO Box 5218, Sydney NSW 2001

15. CONTACT INFORMATION

15.1 Privacy Officer

For privacy-related inquiries:

**Email:** privacy@mavrkai.com

**Phone:** [To be provided]

**Address:** [To be provided]

15.2 Data Protection Officer

For data protection matters:

**Email:** dpo@mavrkai.com

15.3 General Contact

Mavrk AI Pty Ltd

**Website:** www.mavrkai.com

**Email:** support@mavrkai.com

**ACN:** 689 711 162

Questions About Privacy?

If you have any questions about our Privacy Policy or how we handle your data, please don't hesitate to contact us.

Privacy Officer: privacy@mavrk.ai

Data Protection Officer: dpo@mavrk.ai

Website: www.mavrk.ai

External Complaints

If you're not satisfied with our response to your privacy concern, you may contact: