Privacy Policy

Privacy Policy

Effective Date: 6/23/2025
Last Updated: 03/06/2025

Pragmatic IQ LLC, doing business as InnovursAI ("InnovursAI," "we," "us," or "our"), respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our AI-powered business strategy platform (the "Service").

This Privacy Policy applies to business users only. Our Service is designed for business-to-business use.

1. Information We Collect

1.1 Information You Provide Directly

Account Registration Information:

• Business name and business email address
• Name and title of account administrator and authorized users
• Phone number (for OTP authentication)
• Billing information (credit card details, billing address)
• Company size, industry, and business type
• Tax identification information (if applicable)

Profile Information:

• User preferences and settings
• Communication preferences (email vs. SMS for OTP)
• Profile customizations

Business Content:

• Prompts, queries, and inputs you provide to the Service ("Input")
• Documents, data, and files you upload
• AI-generated outputs and recommendations ("Output")
• Feedback, comments, and support requests

Communications:

• Messages you send to our support team
• Survey responses and feedback
• Phone call recordings (with your consent where required by law)

1.2 Information We Collect Automatically

Usage Information:

• Features and functionality you use
• Frequency and duration of Service usage
• Search queries and interaction patterns
• Pages viewed and navigation paths
• Time, date, and location of access

Device and Technical Information:

• IP address and device identifiers
• Browser type and version
• Operating system and device type
• Screen resolution and display settings
• Referring URLs and exit pages
• Network connection information

Cookies and Tracking Technologies:

• Session cookies (required for Service functionality)
• Authentication cookies
• Analytics cookies (with your consent where required)
• Security cookies for fraud prevention

1.3 Information from Third Parties

Payment Processors:

• Transaction confirmation and payment status
• Limited payment method information (last 4 digits, expiration date)

Authentication Services:

• OAuth authentication data (if you use single sign-on)
• Email verification status

Business Data Providers:

• Company information for account verification
• Business contact details for outreach (if you engage with our marketing)

2. How We Use Your Information

2.1 Service Provision and Performance

• Provide, operate, and maintain the Service
• Process your transactions and manage subscriptions
• Generate AI-powered outputs based on your inputs
• Authenticate your identity and secure your account
• Deliver OTP codes via email or SMS
• Respond to your requests and provide customer support

2.2 Service Improvement and Development

• Analyze usage patterns to improve Service functionality
• Develop new features and capabilities
• Test and optimize AI model performance
• Conduct research and development
• Debug and fix technical issues

2.3 Security and Fraud Prevention

• Detect, prevent, and respond to security incidents
• Monitor for fraudulent activity and abuse
• Enforce our Terms and Conditions
• Comply with legal obligations
• Protect our rights and property

2.4 Communications

• Send transactional emails (account notifications, password resets, security alerts)
• Deliver OTP authentication codes
• Provide important Service updates and changes
• Respond to your inquiries and support requests
• Send billing statements and payment confirmations

2.5 Marketing (With Consent)

• Send promotional communications about new features
• Share educational content and best practices
• Invite you to webinars, events, or surveys
• Provide personalized recommendations
• You may opt out of marketing communications at any time

2.6 Legal Compliance and Protection

• Comply with applicable laws and regulations
• Respond to legal process (subpoenas, court orders)
• Enforce our agreements and policies
• Protect against legal liability
• Exercise and defend legal rights

3. How We Use Your Business Content

3.1 Your Content Ownership

You retain all ownership rights in your Input. We do not claim ownership of the business data, documents, or information you provide to the Service.

3.2 Use of Content for Service Delivery

We use your Input solely to:

• Generate Outputs for you
• Provide the Service functionality you request
• Ensure Service security and prevent abuse
• Troubleshoot technical issues with your account

3.3 NO USE FOR AI MODEL TRAINING

Critical Privacy Protection: We do NOT use your business Content (Input or Output) to train our AI models or improve our Service for other customers. Your business data remains confidential and is used only to serve you.

3.4 Aggregated and De-Identified Data

We may create aggregated, anonymized, or de-identified data from Service usage that cannot reasonably identify you or your business. This data may be used for:

• Industry benchmarking and insights
• Service improvements and research
• Marketing and business purposes

Once properly de-identified, this data is no longer considered personal information.

4. How We Share Your Information

4.1 We Do Not Sell Your Information

We do not sell, rent, or trade your personal information or business Content to third parties for their marketing purposes. Innovurs.AI has a mission to protect your business and consumer data from selling to 3^rd parties.

4.2 Service Providers and Subprocessors

We share information with trusted third-party service providers who assist us in operating the Service:

Infrastructure and Hosting:

• Cloud computing providers (e.g., AWS, Google Cloud, Microsoft Azure)
• Content delivery networks
• Database hosting services

AI and Machine Learning:

• AI model providers (e.g., Anthropic)
• Natural language processing services
• Note: Our agreements with AI providers prohibit them from using your Content for their own model training

Authentication and Security:

• OTP and SMS delivery services (e.g., Twilio, AWS SNS)
• Email delivery services (e.g., SendGrid, AWS SES)
• Security and fraud prevention tools

Payment Processing:

• Payment gateways and processors (e.g., Stripe, PayPal)
• Billing and invoicing systems

Analytics and Monitoring:

• Usage analytics platforms
• Performance monitoring tools
• Error tracking services

Customer Support:

• Help desk and ticketing systems
• Live chat providers

All service providers are contractually obligated to:

• Use your information only to provide services to us
• Implement appropriate security measures
• Comply with applicable data protection laws
• Not use your data for their own purposes

4.3 Business Transfers

If we undergo a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred to the successor entity. We will notify you of any such change and the choices you have.

4.4 Legal Requirements and Protection

We may disclose information when we believe in good faith that disclosure is necessary to:

• Comply with applicable laws, regulations, or legal process
• Respond to valid government requests (subpoenas, court orders, national security requests)
• Enforce our Terms and Conditions or other agreements
• Protect our rights, property, or safety, or that of our users or the public
• Detect, prevent, or address fraud, security, or technical issues

We will notify you of legal requests for your information unless prohibited by law or court order.

4.5 With Your Consent

We may share information for other purposes with your explicit consent or at your direction.

5. Data Retention

5.1 Active Accounts

While your account is active, we retain your information as necessary to provide the Service and fulfill the purposes described in this Privacy Policy.

5.2 After Account Termination

Business Content: We delete or anonymize your Content (Input and Output) within 90 days after account termination, except:

• As required for legal compliance or dispute resolution
• For data in backup systems (deleted within an additional 90 days)
• Properly de-identified data used for analytics

Account Information: We may retain account and billing information for:

• Legal and regulatory compliance (typically 7 years)
• Tax and accounting purposes
• Fraud prevention and security
• Enforcing our agreements

5.3 Marketing Data

If you opt out of marketing communications, we retain minimal information (email address, opt-out status) to honor your preferences.

5.4 Legal Holds

If your information is subject to legal hold, litigation, or regulatory investigation, we will retain it until the matter is resolved.

6. Data Security

6.1 Security Measures

We implement industry-standard technical and organizational measures to protect your information:

Technical Safeguards:

• Encryption in transit (TLS 1.2 or higher)
• Encryption at rest for sensitive data
• Secure authentication protocols (OTP, MFA)
• Regular security assessments and penetration testing
• Intrusion detection and prevention systems
• Automated backup and disaster recovery

Organizational Safeguards:

• Access controls and role-based permissions
• Employee security training and confidentiality agreements
• Vendor security assessments
• Incident response procedures
• Security policies and procedures

Physical Safeguards:

• We use third-party data centers with physical security controls
• Restricted access to facilities
• Environmental controls and monitoring

6.2 Your Security Responsibilities

You are responsible for:

• Keeping your password and account credentials confidential
• Using strong, unique passwords
• Enabling multi-factor authentication
• Securing your email account and mobile device used for OTP
• Notifying us immediately of any security breach

6.3 Data Breach Notification

In the event of a data breach that compromises your personal information, we will:

• Notify you without unreasonable delay (within 72 hours where required by law)
• Provide information about the breach, affected data, and our response
• Offer guidance on steps you can take to protect yourself
• Report the breach to relevant authorities as required by law

6.4 Limitations

No system is completely secure. While we strive to protect your information, we cannot guarantee absolute security. You acknowledge that you provide information at your own risk.

7. International Data Transfers

7.1 Data Transfer

Our primary data processing occurs in the United States. By using the Service, you consent to the transfer of your information to the United States and other jurisdictions where we or our service providers operate.

Data Safeguards:

• Technical measures (encryption, pseudonymization)
• Organizational measures (access controls, security policies)
• Legal assessments of third-country laws

7.2 Data Protection Framework

We comply with applicable data protection frameworks and stay informed of changes to international data transfer mechanisms.

8. Your Privacy Rights

Your rights vary depending on your location. We honor the strongest protections available under applicable law.

8.2 Rights Under CCPA/CPRA (California)

If you are a California resident, you have the right to:

Right to Know: Request information about personal information collected, used, disclosed, or sold

Right to Delete: Request deletion of personal information

Right to Correct: Correct inaccurate personal information

Right to Opt-Out: Opt out of the "sale" or "sharing" of personal information (we do not sell)

Right to Limit Use of Sensitive Personal Information: Limit use of sensitive information (if applicable)

Right to Non-Discrimination: Not receive discriminatory treatment for exercising your rights

8.3 Rights Under Other Laws

8.4 How to Exercise Your Rights

To exercise your privacy rights:

1. Email us: Contact@Innovurs.com with subject line "Privacy Rights Request"
2. Provide:
   
   • Your name, email, and company name
   • Specific right(s) you wish to exercise
   • Description of the information or action requested
3. Verification: We may require verification of your identity to process your request
4. Timeline: We will respond within the timeframe required by applicable law (typically 30-45 days)

Through Account Settings:

• Export your data using our data export tool
• Update profile and communication preferences
• Delete your account (triggers Content deletion process)

8.5 Authorized Agents

You may designate an authorized agent to submit requests on your behalf. The agent must provide proof of authorization.

8.6 Appeals

If we deny your request, you may appeal by contacting us at Contact@Innovurs.com with "Privacy Rights Appeal" in the subject line.

9. California Privacy Disclosures

9.1 California Shine the Light

California residents may request information about our disclosure of personal information to third parties for their direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes.

9.2 Do Not Track Signals

Our Service does not currently respond to "Do Not Track" browser signals.

9.3 CCPA Categories of Information

Information We Collect:

• Identifiers (name, email, phone, IP address)
• Commercial information (purchase history, billing)
• Internet activity (usage patterns, browsing behavior)
• Professional information (job title, company)

Business Purpose for Collection: As described in Section 2

Categories of Third Parties with Whom We Share: As described in Section 4.2

Sale of Personal Information: We do not sell personal information

10. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect information from children. If you believe we have inadvertently collected information from a child, contact us immediately at Contact@Innovurs.com, and we will delete it promptly.

11. Cookies and Tracking Technologies

11.1 What Are Cookies?

Cookies are small text files stored on your device that help us provide and improve the Service.

11.2 Types of Cookies We Use

Strictly Necessary Cookies:

• Required for Service functionality
• Enable authentication and security features
• Remember your session and preferences
• These cookies cannot be disabled

Analytics Cookies:

• Help us understand how you use the Service
• Measure Service performance
• Identify areas for improvement
• You may opt out through cookie settings

Security Cookies:

• Detect suspicious activity and abuse
• Prevent fraud and unauthorized access
• Required for account security

11.3 Third-Party Cookies

We may use third-party analytics services (e.g., Google Analytics) that use cookies to collect usage information. These services have their own privacy policies.

11.4 Managing Cookies

You can control cookies through:

• Browser Settings: Most browsers allow you to block or delete cookies
• Our Cookie Preferences: Available in Account Settings
• Opt-Out Tools: Industry opt-out mechanisms for analytics cookies

Note: Disabling necessary cookies may limit Service functionality.

11.5 Similar Technologies

We also use:

• Web beacons/pixels: Track email opens and interactions
• Local storage: Store preferences and session data
• Device fingerprinting: Detect fraud and abuse

12. Marketing Communications

12.1 Types of Marketing Communications

With your consent or where permitted by law, we may send:

• Product updates and new feature announcements
• Educational content and best practices
• Industry insights and trends
• Invitations to webinars and events
• Customer success stories and case studies
• Special offers and promotions

12.2 Legal Basis for Marketing

United States: Legitimate business interest (B2B communications)

12.3 Opt-out Rights

You may opt out of marketing communications at any time by:

• Clicking "unsubscribe" in any marketing email
• Adjusting email preferences in Account Settings
• Emailing Contact@Innovurs.com with "Unsubscribe" in the subject line

Note: You cannot opt out of transactional communications (account notifications, security alerts, billing statements) necessary for Service operation.

12.4 Transactional Communications

We will continue to send essential Service-related communications even if you opt out of marketing, including:

• OTP authentication codes
• Password reset requests
• Account security alerts
• Billing and payment confirmations
• Service updates that affect your account
• Legal notices and policy changes

13. Links to Third-Party Sites and Services

The Service may contain links to third-party websites, applications, or services. This Privacy Policy does not apply to those third parties. We are not responsible for their privacy practices. We encourage you to review their privacy policies before providing any information.

14. Data Protection Officer and Representatives

14.1 Data Protection Contact

For privacy questions, concerns, or to exercise your rights:

Email: Contact@Innovurs.com
Subject Line: "Privacy Inquiry" or "Data Protection Request"

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons.

15.2 Notice of Material Changes

For material changes, we will provide notice by:

• Email to the address associated with your account
• Prominent notice on our website
• In-app notification when you log in

15.3 Effective Date

The "Last Updated" date at the top of this policy indicates when it was last revised. Continued use of the Service after changes take effect constitutes acceptance of the updated policy.

15.4 Previous Versions

Previous versions of this Privacy Policy are available upon request.

16. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices:

Email: Contact@Innovurs.com
Subject Line: "Privacy Inquiry"

Response Time: We will respond to privacy inquiries within 10 business days.

Acknowledgment

By using the Service, you acknowledge that you have read, understood, and agree to this Privacy Policy.

Last Updated: 03/01/2026

‍