Privacy Policy

Summary of Key Points

• Personal information we process: depends on how you use the Services and the choices you make.
• Sensitive personal information: we do not process sensitive personal information.
• Third-party sources: we may receive data from public databases, partners, and social media platforms.
• How we use data: to provide and improve Services, communicate with you, ensure security, prevent fraud, and comply with law.
• Sharing: only in specific situations (e.g., service providers, legal, business transfers).
• Security: we use organizational and technical safeguards, but no method is 100% secure.
• Your rights: vary by location; see Your Privacy Rights below.

Table of Contents

1. What information do we collect?

Personal information you provide

We collect personal information you voluntarily provide when you register, request information, participate in activities, make a purchase, or contact us.

• Names, phone numbers, email addresses, job titles, usernames, passwords
• Mailing and billing addresses
• Payment data (e.g., payment instrument details) for purchases

Sensitive information: we do not process sensitive personal information.

Social media login data: if you choose to sign in via a social account, see Social Logins.

You must provide true, complete, and accurate information and notify us of changes.

Information collected automatically

We automatically collect device and usage information when you use the Services (e.g., IP address, browser, device type, OS, language, referring URLs, country, timestamps, pages viewed, feature use, error logs). We use this to operate, secure, and improve the Services and for analytics.

We also use cookies and similar technologies; see Cookies.

Information from other sources

We may receive limited data from public databases, partners, affiliates, data providers, and social platforms (e.g., contact details, job titles, IPs, social profiles) to update records, provide offers, or promote events subject to your settings and applicable law.

2. How do we process your information?

• Provide, operate, and improve the Services
• Facilitate account creation/authentication and manage accounts
• Process transactions and send related information
• Communicate with you (support, service notices, marketing where permitted)
• Protect, investigate, and deter against fraudulent, unauthorized, or illegal activity
• Comply with legal obligations and enforce terms
• Any other purpose with your consent

We may process data where necessary to protect an individual’s vital interests (e.g., to prevent harm).

3. What legal bases do we rely on?

We process personal information only when we have a valid legal basis, such as:

• Consent: for specific purposes; you may withdraw at any time.
• Contract: to provide Services you request or to fulfill agreements.
• Legal obligations: to comply with laws/regulators.
• Legitimate interests: to operate and improve our business and Services in ways that do not override your rights.
• Vital interests: to protect you or others from harm.

If you are in the EU/UK/Canada, local requirements for consent and rights apply as described in Your Rights.

4. When and with whom do we share your information?

• Service providers: vendors that process data on our behalf under contract.
• Legal: to comply with law, enforce terms, or protect rights/safety.
• Business transfers: in connection with a merger, acquisition, or asset sale.

5. Cookies and other tracking technologies

We use cookies, web beacons, and pixels to store or access information. You can control cookies through your browser settings. For details, see our Cookie Notice (coming soon) or contact us.

6. Social logins

If you register or log in using a social account, we receive certain profile information (e.g., name, email, profile image, and anything you make public). We use this per this notice and your settings. Review the social provider’s privacy notice for their practices.

7. How long do we keep your information?

We retain personal information only as long as necessary for the purposes in this notice (or longer if required by law, e.g., tax/accounting). We generally do not retain personal information for more than 36 months after an account becomes inactive, unless a longer period is legally required or permitted.

When no longer needed, we delete or anonymize data; if not immediately possible (e.g., backups), we securely store and isolate until deletion.

8. How do we keep your information safe?

We implement appropriate technical and organizational measures to protect personal information. However, no method of transmission or storage is 100% secure. You use the Services at your own risk and should access them over secure networks where possible.

9. Do we collect information from minors?

We do not knowingly collect data from or market to children under 18. If we learn we have collected such data, we will take reasonable steps to delete it. If you believe a minor has provided us data, contact founder@mihaan.tech.

10. What are your privacy rights?

Your rights may include: access, rectification, erasure, restriction, objection, and portability, subject to local law. You can exercise rights by contacting us (see Contact).

Withdrawing consent: where processing is based on consent, you may withdraw at any time; this does not affect prior lawful processing.

Marketing opt-out: reply “STOP”/“UNSUBSCRIBE” to SMS or contact us. We may still send essential service communications.

Account Information

• Update your details in account settings, or
• Contact us to terminate your account.

After termination we may retain limited data to prevent fraud, troubleshoot, enforce terms, or comply with law.

Cookies

Most browsers accept cookies by default; you can remove or reject them in settings. Some features may not function properly without cookies.

11. Controls for Do-Not-Track

There is no standardized way for sites to respond to DNT signals, so we do not currently respond. If a standard is adopted, we will update this notice.

12. California residents (CCPA/CPRA)

California residents have rights to know, access, correct, delete, and opt out of certain data sharing/sales, and to non-discrimination for exercising rights.

Categories collected in the past 12 months

• A. Identifiers: Yes
• B. Customer Records (Cal. Civ. Code 1798.80): Yes
• C. Protected classification traits: Yes (if provided)
• D. Commercial information: No
• E. Biometric: No
• F. Internet/network activity: No (beyond basic analytics as described)
• G. Geolocation: No (precise)
• H. Sensory data: No
• I. Professional/employment: Yes (if applicable)
• J. Education: No
• K. Inferences: Yes (limited, e.g., preferences)
• L. Sensitive personal information: No

Retention: A, B, C, I, K — generally up to 36 months (see Retention).

We have not “sold” or “shared” personal information in the past 12 months as defined by CCPA/CPRA, and we do not sell/share personal information of consumers.

Requests: Email founder@mihaan.tech. If you use an authorized agent, we may request proof of authorization and identity verification.

13. Virginia residents (VCDPA)

Virginia residents may have rights to access, correct, delete, obtain a copy, and opt out of targeted advertising, sale, or certain profiling. Mihaan Automation does not sell personal data.

Requests: Email founder@mihaan.tech. We will respond within 45 days (extendable once by 45 days when reasonably necessary). Appeals can be sent to the same email; we will respond within 60 days. You may also contact the Virginia Attorney General if your appeal is denied.

14. Do we make updates to this notice?

Yes. We may update this notice to stay compliant with laws and reflect changes to our practices. The “Last updated” date shows the latest revision. Material changes may be notified via the Services or by direct notice.