Privacy Policy

1How We Collect Personal Data

The personal data we collect depends on your interaction with Ninjo:

Using the Ninjo Service: When you register for and use the Service, we collect information you provide directly or through integrations you connect (e.g., social media platforms, payment processors, APIs). This includes account setup, configuration, and content you manage within the Service. We may also receive data from third parties, like payment confirmation from a payment processor.

Communicating with Us: When you email us, use chat support, or message us, we may store the communication content and your contact details.

Using Our Site & Forms: When you fill out forms on our Site (e.g., contact us, demo request, newsletter signup, event registration), we collect the information you provide. If we co-host events, we might receive registration info from partners (with notice).

Site Usage (Automated): When you browse our Site, we automatically collect certain technical information, potentially including personal data (e.g., via cookies).

Joining Our Communities: If you join our online communities (e.g., forums, social media groups), we may see your profile information and comments, but we generally don't systematically copy this into our core systems.

2What Types of Personal Data We Process

We collect and process the following categories of personal data for our own purposes:

Account Information: To create/manage your account and provide the Service, we collect identifiers (like user ID, name, email), account status, linked services/pages, usage details, and potentially basic demographic data provided directly or via integrations.

Contact & Business Information: For communication, sales, and partnerships, we collect names, titles, company names, emails, phone numbers, etc.

Communication Content: We process the content of your support requests, emails, messages, form submissions, and feedback, along with associated contact details.

Usage & Technical Data: When you interact with the Service or Site, we automatically collect metadata and logs, including IP address, browser type/settings, device type/OS, identifiers, date/time of use, features used, pages visited, time spent, clicks, and language preferences.

Email Engagement Data: We may use tracking technologies (like pixels) in emails to measure engagement (e.g., open rates). You can often disable this by turning off images in your email client.

Cookies & Similar Technologies: We use cookies on our Site.

Customer Content (Processed on Behalf of Customers): As you use our Service, you import data about your own contacts, customers, or users ("Subscribers"). This may include names, contact details, conversation logs, etc. We process this data only as instructed by you (our customer).You are responsible for ensuring you have the necessary permissions and legal basis to collect this data and allow us to process it according to this policy. We have no direct relationship with your Subscribers.

Subscriber Data (Limited Direct Collection): In providing the service, we may incidentally collect identifiers or interaction data related to your Subscribers (e.g., names, contact info within conversations you manage). This is processed primarily on your behalf.

Sensitive Data: We request that you do not send or disclose sensitive personal data (e.g., government IDs, racial/ethnic origin, political opinions, religion, health, biometrics, sexual orientation, criminal background, union membership) to us through the Service or otherwise, unless specifically required for a defined purpose with appropriate safeguards.

3For Which Purposes We Use Personal Data

We use your personal data for the following purposes:

To Operate and Provide the Service: To set up and maintain your account, fulfill our contractual obligations, process payments, provide customer support, send service-related communications (updates, alerts, administrative messages), and respond to your inquiries.

To Process Customer Content: We process data you manage within the Service strictly according to your instructions.

To Communicate and Market: To respond to your requests, send information about Ninjo (if permitted by law, with opt-out options), manage event registrations/participation, gather feedback, and potentially display targeted ads on other platforms (with appropriate consents where required).

To Comply with Legal Obligations: To adhere to applicable laws, regulations, sanctions lists, accounting/tax requirements, legal processes, audits, and respond to lawful requests from authorities.

To Manage Agreements: To negotiate, enter into, and manage contracts with customers, partners, and vendors.

For Compliance, Fraud Prevention, and Safety: To enforce our terms of service, protect our rights, privacy, safety, or property (and that of our users and others), and to detect, prevent, and investigate fraudulent, harmful, unauthorized, or illegal activities.

For Product Improvement (Aggregated/Anonymized): We may use aggregated or anonymized data (derived from personal data but not identifying individuals) for analytics, research, and service improvement.

4How We Share Personal Data

We do not sell your personal data. We share data only in the following circumstances:

Service Providers: We use third-party companies and tools to help us operate (e.g., cloud hosting, payment processing, CRM, analytics, email services). These providers are authorized to use personal data only as necessary to provide services to us under contract.

Professional Advisors: We may share data with lawyers, accountants, auditors, and insurers when necessary for the professional services they provide to us.

Third-Party Integrations: When you connect third-party applications or services (e.g., social media platforms, payment gateways) to your Ninjo account, data may be shared with them as directed by you or as necessary for the integration to function.

Business Transfers: If Ninjo is involved in a merger, acquisition, reorganization, dissolution, or sale of assets, personal data may be transferred as part of that transaction. Any successor will be bound by the terms of this Privacy Policy regarding your data.

Legal Requirements & Law Enforcement: We may disclose data if required by law or if we believe in good faith that disclosure is necessary to comply with legal processes, respond to lawful requests (including national security or law enforcement), enforce our terms, protect rights and safety, or prevent illegal activity.

Corporate Affiliates: We may share data with companies under common ownership or control with Ninjo, who will be required to adhere to this policy.

5Your Data Protection Rights & Choices

Right to Access/Know: Request confirmation if we process your data and access to the data we hold.

Right to Rectification: Request correction of inaccurate or incomplete data.

Right to Erasure (Deletion): Request deletion of your personal data, subject to certain exceptions (e.g., legal obligations).

Right to Restrict Processing: Request limitation of how we use your data in certain circumstances.

Right to Data Portability: Request a copy of your data in a machine-readable format, where technically feasible.

Right to Object: Object to processing based on legitimate interests (we must stop unless we have compelling overriding grounds).

Right to Withdraw Consent: If processing is based on consent, you can withdraw it at any time (this doesn't affect past processing).

Right to Information about Sharing: Request information about third parties with whom data has been shared.

Right to Complain: Lodge a complaint with your local data protection authority.

To exercise these rights, please contact us at privacy@ninjo.ai. We will respond according to applicable data protection laws.

6For How Long We Retain Personal Data

We retain personal data processed for our own purposes for as long as necessary to fulfill the purposes outlined in this policy, such as maintaining your account and providing the Service, unless a longer retention period is required or permitted by law (e.g., for tax, accounting, or legal compliance). We generally retain account data until you terminate your agreement or request deletion. We may retain some data longer if necessary to resolve disputes, prevent fraud/abuse, or enforce our agreements. Access logs may be retained for specific periods if required by local laws.

7Security

We implement reasonable and appropriate technical and organizational measures designed to protect personal data from loss, misuse, unauthorized access, disclosure, alteration, and destruction, considering the risks involved and the nature of the data. Examples include encryption, access controls, and secure development practices.

However, no internet transmission or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

We use reputable third-party vendors for critical functions like payment processing, who employ their own security measures.

Notice of Security Breach: If a security breach causes an unauthorized intrusion into our systems that materially affects you or personal data processed on your behalf (Customer Content), we will notify you promptly and report on the actions taken, in accordance with applicable laws.

If you have questions about security, contact us at privacy@ninjo.ai.

8Changes to Our Privacy Policy

We may need to change this Privacy Policy from time to time to reflect legal, technical or business developments. When we update our Privacy Policy, we will take appropriate measures to inform you before its entry into force, consistent with the significance of the changes we make. We will obtain your consent to any material Privacy Policy changes if and where this is required by data protection laws applicable to us.

9How to Contact Us

For any questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@ninjo.ai