Privacy Policy

Last Updated: January 6, 2025

Introduction

When you use our services, you're trusting us with your information. We understand this is a big responsibility and work hard to protect your information and put you in control. This Privacy Policy is meant to help you understand what information we collect, why we collect it, and what you can do to protect your information.

Some key terms are defined as follows, and throughout this document: Asturlab Limited ("Mezmars AI", "Mezmars", "Asturlab", "we", "us", or "our") is the company that collects and processes Personal Data for the purposes described in this Policy. Personal Data is any information relating to an identified or identifiable natural person ("Data Subject"). Customer or Client is a legal business entity with whom Asturlab has an agreement to provide the Services.

What is Mezmars AI

Mezmars AI is a comprehensive AI-powered business automation platform that is powered by Asturlab Limited. The product provides a conversation cloud platform with multiple messaging channels including WhatsApp Business API that allows our Customers to store, manipulate, analyze and transfer messages between their business systems and their customers on a variety of Mezmars-provided and third-party messaging channels, real estate lead management tools, customer support automation, sales pipeline management, and AI agent services (the "Service").

Mezmars AI is committed to the protection of Personal Data, including data that we use for our own purposes, and that we maintain on behalf of our Clients. Our platform integrates with various business tools and communication channels to provide comprehensive automation solutions for businesses across multiple industries including real estate, customer service, sales, and marketing.

Collection and Use of Personal Data

Mezmars AI collects information, including Personal Data, for the following purposes:

Providing and managing the Service
Internal business purposes including communicating with you and marketing
Recruiting and managing personnel
Collecting payment for the Service
To understand and improve our Service and Website
AI model training and improvement
Business intelligence and analytics
Security monitoring and fraud prevention

In order to provide our services to our clients we collect the user's name, email address, phone number, business information, conversation data, and other relevant business data and upload these details into our secure servers. These details are used only to identify the users, provide AI-powered automation services, manage business communications, qualify leads, and deliver the content that they need on the platform.

For a better experience, and in order to provide our Service, we may require you to provide us, either directly or indirectly, with certain personally identifiable information, including but not limited to the user name, email address, phone number, business profile information, customer contact lists, conversation history, payment information, and OAuth2 credentials for third-party integrations. The information that we request will be retained by us and used as described in this privacy policy.

The platform uses third-party services that may collect information used to identify you. Links to privacy policies of third-party service providers used by Mezmars AI:

Google Sign-in and Google Drive Services (https://www.google.com/policies/privacy/)
Facebook Sign-in Service and WhatsApp Business API (https://www.facebook.com/policy.php)
Apple Sign-in Service (https://www.apple.com/legal/privacy/)
Clerk Authentication Services (https://clerk.com/privacy)
Digital Ocean Cloud Services (https://www.digitalocean.com/legal/privacy-policy/)
Vercel Hosting Services (https://vercel.com/legal/privacy-policy)
Stripe Payment Processing (https://stripe.com/privacy)
PayPal Payment Processing (https://www.paypal.com/webapps/mpp/ua/privacy-full)

This Policy is not intended to place any limits on what we do with data that is aggregated and/or de-identified so it is no longer associated with an identifiable individual (Data Subject) or Customer of the Services. We may use aggregated, anonymized data for research, analytics, machine learning model improvement, and business intelligence purposes without restriction.

WhatsApp Business API and Meta Integration

Mezmars AI operates as a WhatsApp Business Solution Provider and sends messages through the WhatsApp Cloud API service. The Cloud API service stores messages temporarily for transmission purposes. WhatsApp messages are processed through Meta's infrastructure and are subject to WhatsApp's data retention policies. Messages are typically stored for transmission and delivery purposes and may be retained according to WhatsApp Business Platform policies and applicable legal requirements. For detailed information about WhatsApp's data handling practices, please refer to the WhatsApp Business Platform Terms of Service and Meta's Privacy Policy.

Providing and Managing the Service

In the course of providing the Service, Mezmars AI may receive, access, analyze, process and maintain Personal Data on behalf of our Customers. Our Customers determine the types of Personal Data that will be collected and used within the Service, how it will be used and disclosed, and how long it will be stored. For any questions related to how your Personal Data is used by our Customers, please contact them directly.

Service Data is the information that is processed on behalf of our Customers during the provision of the Service, including but not limited to:

Customer conversation data and message content
Contact information and customer profiles
Business communication logs and interaction history
Real estate property information and lead data
Sales pipeline information and customer preferences
AI training data derived from customer interactions
Analytics and performance metrics
Integration data from connected business systems

This data privacy statement explains how and what personal data we collect from you through our website and platform. Personal data means all data that can relate to you personally, such as your name, address, email account(s), phone number, business information, customer data, and user behavior. Your data is stored in secure cloud servers, and we implement industry-standard encryption and security measures to protect all personally identifiable information.

If you require us to delete your account data, you can request so by contacting us through our support channels or visiting https://www.mezmars.com/Contactus. Upon termination of your account, all your data including contacts, conversations, business data, and related information is deleted permanently from our active database systems unless you request otherwise or unless we are required to retain certain data for legal compliance purposes.

Account Information and Service Usage

Account Information, including contact information, user profile information, business profile details, and information about your payment method, is collected from you when you register or authenticate into our Service and is used to manage payment for the Service, enable us to provide support, facilitate communication, deliver AI-powered automation services, and maintain your business operations on our platform.

Service Usage Information is collected, including information about how you are accessing and using the Service, which features you interact with, AI agent performance data, conversation analytics, lead management activities, sales pipeline interactions, and system performance metrics. We use this information to understand and improve our Services, optimize AI model performance, provide business intelligence insights, and to investigate and prevent security issues, abuse, and fraud.

Internal Business Purposes

Mezmars AI collects the following information from you through our Website, mobile applications, social media, and other channels for the following purposes:

Communicating with you and marketing practices

Responding to your request for a product demo or trial: When you request a free demo or trial access, we may collect your first and last name, job title, phone number, business email address, company information, industry type, business size, and information about your specific use cases and requirements. We use this information to contact you, facilitate your demo or trial experience, provide personalized onboarding, and deliver relevant product information.

Responding to your inquiries: When you contact us with a comment, question or complaint, you may be asked for information that identifies you, such as your name, address, telephone number, email address, account information, and specific details about your inquiry, along with additional information we need to help us promptly answer your question or respond to your comment. We may retain this information to assist you in the future, improve our customer service, enhance our service offerings including the Service and Website, and provide better support experiences.

Informing you about products and services: We may use your contact information for our own marketing or advertising purposes, to inform you about new features, product updates, industry insights, best practices, and promotional offers. To facilitate your signup and use of the Mezmars AI service, we may share your information with authorized service partners, integration providers, and business partners to facilitate your account setup, product inquiries, technical support, and enable your optimal use of the Mezmars AI service. We do not sell or rent your Personal Data to other third parties beyond these authorized partners. You can opt out of these communications at any time by following the unsubscribe instructions in our emails, updating your communication preferences in your account settings, or contacting us directly.

Recruiting and managing personnel

Processing your job application: If you apply for a job at Asturlab or Mezmars AI, you may provide us with certain Personal Data about yourself, such as information contained in a resume, cover letter, portfolio, references, educational background, work history, skills assessment results, or similar employment-related materials. We use this information for the purpose of processing and responding to your application for current and future career opportunities, conducting background checks where legally permitted, and maintaining records for compliance purposes.

Managing employees and contractors: If you join the Asturlab team as an employee or contractor, we will use the information you provided during the application process, as well as information we create about you during your employment or engagement, for human resources purposes, including verifying your eligibility and qualifications, performance management, providing compensation and benefits, training and development, investigating incidents, maintaining employment records, and otherwise facilitating the employment or contractor relationship.

Payment Processing

For Clients that purchase a paid version of our Service, we collect and process information about how you use the Service, your Account Information including contact information, user profile information, billing address, and payment method information for the purpose of billing you, processing payments, managing subscriptions, handling refunds, preventing payment fraud, and maintaining financial records. Payment processing is handled by secure third-party payment processors including Stripe and PayPal, and we do not store complete payment card information on our servers.

Service Improvement and Analytics

Understanding how you use the Service: Service Usage Information is collected, including detailed information about how you are accessing and using the Service, feature adoption rates, user interaction patterns, AI agent performance metrics, conversation flow analytics, lead conversion rates, sales pipeline effectiveness, system response times, error rates, and user satisfaction metrics. We use this information to understand user behavior, improve our Services, optimize AI model performance, develop new features, enhance user experience, and to investigate and prevent security issues, abuse, and fraud.

Visiting our Website: We collect the IP (Internet protocol) addresses of all visitors to our Website and other related information such as page requests, browser type, operating system, device information, screen resolution, average time spent on our Website, pages visited, referral sources, search terms used, and user interaction patterns. We use this information to help us understand our Website activity, monitor and improve our Website performance, optimize content delivery, enhance user experience, and analyze marketing effectiveness. In addition to the information described above, our Website uses Cookies and similar tracking technologies.

Third-Party Links: Our Website may contain links to other websites that Asturlab does not own or operate. We provide links to third-party websites as a convenience to the user. These links are not intended as an endorsement of or referral to the linked websites. The linked websites have separate and independent privacy policies, notices and terms of use. We do not have any control over such websites, therefore we have no responsibility or liability for the manner in which the organizations that operate such linked websites may collect, use, disclose, secure and otherwise treat Personal Data. We encourage you to read the privacy policy of every website you visit.

Disclosure of your Personal Data

As a matter of practice, Asturlab does not disclose, trade, rent, sell or otherwise transfer Personal Data, except as set out in this policy. We may transfer or disclose Personal Data as follows:

Service Provider Arrangements: We may transfer or otherwise make available Personal Data to third parties who process it on our behalf for the purposes noted above. These third parties may access, process or store personal data in the course of providing these services, but based on our instructions only and under strict confidentiality and security obligations. As of the date hereof, these third-party providers include technical operations such as cloud hosting and infrastructure services, database monitoring and management, data storage and backup services, content delivery networks, customer support software tools, payment processing services, email delivery services, analytics and monitoring tools, security and fraud prevention services, authentication and identity management services, AI and machine learning platform providers, communication and messaging service providers including WhatsApp Business API, and other essential business service providers that enable us to deliver our services effectively and securely.

Changes to our Business Structure: Asturlab may share or disclose data if we engage in a merger, acquisition, bankruptcy, dissolution, reorganization, sale of some or all of Asturlab's assets, financing, acquisition of all or a portion of our business, a similar transaction or proceeding, or steps in contemplation of such activities such as due diligence. In such cases, Personal Data may be transferred to the acquiring entity, but such transfer will be subject to the same privacy protections outlined in this Privacy Policy.

Compliance with Laws: Asturlab and our service providers in various countries may share or disclose Personal Data to comply with legal or regulatory requirements, respond to lawful requests from government authorities, court orders, legal processes, subpoenas, warrants, or other valid legal demands. We may also disclose Personal Data when we believe in good faith that disclosure is necessary to comply with applicable laws, regulations, or legal obligations.

Enforcing Our Rights, Preventing Fraud, and Safety: Asturlab may share or disclose data to protect and defend the rights, property, or safety of third parties or us, including enforcing contracts or policies, protecting our intellectual property rights, investigating and preventing fraud, security breaches, or other illegal activities, ensuring the safety and security of our users and services, and taking appropriate action against users who violate our terms of service or engage in harmful activities.

Your Rights and Data Protection

Access and Correction of Personal Data: If we receive a request from an individual to access or update Personal Data we have collected on behalf of a particular Customer, we will direct that individual to the relevant Customer. We will assist our Customers wherever possible in responding to individual access requests. If you submit Personal Data via our Website or otherwise provide us with your Personal Data directly, you may request access, updating or correction of your Personal Data by submitting a written request to us through our support channels or by visiting https://www.mezmars.com/Contactus. We may request certain Personal Data for the purposes of verifying your identity before processing your request.

Your Data Subject Rights: As a data subject, you have certain rights under applicable data protection laws including GDPR, CCPA, and other regional privacy regulations. These rights include:

Right of Access: You have the right to request access to your personal data that we hold. This allows you to verify the accuracy and legality of the data processing and understand how your data is being used.
Right to Rectification: If you find any inaccuracies in your personal data, you have the right to request rectification. We will promptly correct any errors or incomplete information.
Right to Erasure: In certain circumstances, you have the right to request the deletion of your personal data, also known as the "right to be forgotten." This applies when the data is no longer necessary for the original purpose, you withdraw consent, or the processing is unlawful.
Right to Restriction of Processing: You may request that we restrict the processing of your personal data in specific situations, such as when you contest the accuracy of the data, when the processing is unlawful, or when you need the data for legal claims.
Right to Data Portability: In certain cases, you have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.
Right to Object: You have the right to object to the processing of your personal data for specific purposes, such as direct marketing, profiling, or processing based on legitimate interests.
Right to Withdraw Consent: If you have given your consent to the processing of your personal data, you have the right to withdraw your consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

How to Exercise Your Rights: To exercise your rights, please contact us using the contact information provided in this Privacy Policy or visit https://www.mezmars.com/Contactus. We will respond to your request within a reasonable timeframe as required by applicable law, typically within 30 days. Please note that while we strive to accommodate all reasonable requests, there may be limitations or exceptions to these rights in certain circumstances, as permitted by applicable law, such as when the processing is necessary for compliance with legal obligations or for the establishment, exercise, or defense of legal claims.

Data Security and Protection Measures

Asturlab takes the security of user data seriously and implements comprehensive security measures to protect the information you provide to us from loss, misuse, unauthorized access, disclosure, alteration, and destruction. These measures take into account the sensitivity of the information we collect, process and store, the current state of technology, the costs of implementation, and the risks presented by processing. Our security measures include but are not limited to encryption of data in transit and at rest using industry-standard protocols, secure cloud infrastructure with multiple layers of protection, regular security assessments and penetration testing, access controls and authentication mechanisms, employee training on data protection and security practices, incident response procedures, regular backup and disaster recovery protocols, monitoring and logging of system activities, and compliance with industry security standards and frameworks. We continuously review and update our security practices as technology evolves and new threats emerge.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States, European Union member countries, and other jurisdictions where our service providers operate. These countries may have different data protection laws than your country of residence. When we transfer personal data from the European Economic Area to other countries, we ensure that appropriate safeguards are in place, such as adequacy decisions by the European Commission, standard contractual clauses approved by the European Commission, binding corporate rules, or other approved transfer mechanisms. We take steps to ensure that your personal data continues to receive appropriate protection wherever it is processed.

Cookie Policy and Tracking Technologies

Mezmars AI uses cookies and similar technologies, including web beacons, pixel tags, and local storage, to record log data and enhance your experience on our platform. We use both session-based and persistent cookies. Cookies are small text files sent by us to your computer and from your computer or mobile device to us each time you visit our website or use our applications. They are unique to your account or your browser. Session-based cookies last only while your browser is open and are automatically deleted when you close your browser. Persistent cookies last until you or your browser delete them or until they expire.

Some cookies are associated with your account and Personal Data in order to remember that you are logged in, which parts of the Service or Website you are logged into, your preferences and settings, and to provide personalized experiences. Other cookies are not tied to your account but are unique and allow us to carry out site analytics, performance monitoring, security functions, fraud prevention, and customization, among other similar functions. If you access the Services through your browser, you can manage your cookie settings there, but if you disable some or all cookies, you may not be able to use certain features of the Services or the Services may not function properly.

Mezmars AI sets and accesses our own cookies on the domains operated by Asturlab and its affiliates. In addition, we use third parties like Google Analytics, Facebook Pixel, and other analytics and marketing platforms for website analytics, user behavior analysis, marketing effectiveness measurement, and conversion tracking. You may opt out of third-party cookies from these providers through their respective websites and privacy settings. We do not currently recognize or respond to browser-initiated Do Not Track signals, as there is no consistent industry standard for compliance.

Mobile Application Privacy

This section provides privacy information that is specific to the Mezmars AI Mobile Applications, available on the Google Play Store and Apple App Store for download. Data collected through these applications is generally handled in the same way as described in our full Privacy Policy. However, these applications contain some unique features related to mobile devices and may access certain device capabilities with your permission.

Data we may collect from your mobile device includes:

Contacts and address book: If you give our app permission to access your contacts, we will only access your contacts for the purpose of allowing you to quickly select people to whom you want to start a conversation with through our messaging features and to facilitate lead management and customer relationship management functions.
Media, documents and camera: If you give this app permission to access your photo albums, gallery, camera, or file storage, we will only access them for the purpose of allowing you to easily insert your media files, documents, images, or other content into your business communications and conversations.
Location data: If you grant permission, we may collect location information to provide location-based services, improve our recommendations, and enhance the relevance of our services.
Device information: We may collect information about your mobile device including device type, operating system version, unique device identifiers, mobile network information, and app usage statistics.

Mobile Analytics: We use mobile analytics software to allow us to better understand how our applications are used on mobile devices. This software may record information such as how often you use the application, the events that occur within the application, aggregated usage patterns, performance data, crash reports, feature usage statistics, session duration, type of device you use, the device's operating system version, and where the application was downloaded from. This information helps us improve app performance, fix bugs, develop new features, and enhance user experience.

Third-Party Integrations and API Access

We have integrations with various third-party services and platforms listed on their respective marketplaces and app stores. These integrations allow users to connect their existing business tools and workflows with Mezmars AI to enhance productivity and streamline operations. The use and transfer of information received from third-party APIs to any other application adheres to the respective API provider's user data policies, including any limited use requirements.

Our integrations may require various permissions and scopes to function properly, such as access to read and write data in connected applications, send notifications, access user profiles, read contact information, access calendar data, or perform automated actions on behalf of users. Any data accessed through these integrations is stored securely in the user's Mezmars AI account and is never shared with other users or accounts without explicit consent. We implement appropriate security measures and access controls to protect data received through third-party integrations.

Updates to this Privacy Policy

This Privacy Policy may be updated periodically to reflect changes to our Personal Data handling practices, new features or services, changes in applicable laws, or other business requirements. The revised Privacy Policy will be posted on our Website and in our applications with an updated effective date. If we make material changes to this Privacy Policy, we will provide you with notice of such changes through email notification, in-app notifications, or other appropriate means. If you continue to use the Service or the Website after the changes are in effect, you agree to the revised Privacy Policy. We strongly encourage you to please refer to this Privacy Policy regularly for the latest information about our Personal Data handling practices.

Contact Us

Please contact Asturlab if you have any questions or comments about this Privacy Policy, wish to access, update, and/or correct inaccuracies in your Personal Data, or otherwise have a question or complaint about the manner in which our service providers or we treat your Personal Data.

You can reach us through multiple channels including our website contact form at https://www.mezmars.com/Contactus, email at hello@mezmars.com for general inquiries, or privacy@mezmars.com for privacy-specific questions. Our support team is available to assist you with any questions or concerns regarding your data and privacy.