Sign inGet Started

Privacy Policy

Last updated: December 10, 2024

1. Introduction

4 GERENCIA S.A.S. (NIT: 900894758-4), operating as Mavecure ("Company," "we," "us," or "our"), respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our lead automation platform at mavecure.co (the "Service").

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, company name, and password when you register
  • Payment Information: Billing details processed securely through Paddle (we do not store credit card numbers)
  • Lead Data: Information you import via Google Sheets or Apollo, including names, emails, LinkedIn URLs, phone numbers, and other contact details
  • Campaign Content: AI prompts, message templates, and campaign configurations you create
  • API Credentials: Third-party API keys you provide for email (Resend) and WhatsApp (Kapso) delivery
  • Support Communications: Information you provide when contacting our support team

2.2 Information Collected Automatically

  • Usage Data: Pages visited, features used, campaign performance, and interaction patterns
  • Device Information: IP address, browser type, operating system, and device identifiers
  • Cookies: Session cookies for authentication and preferences
  • Log Data: Server logs including access times, errors, and referring URLs

2.3 Information from Third Parties

  • Google OAuth: Email address and basic profile information when you sign in with Google
  • LinkedIn Data: Publicly available profile information scraped through BrightData for leads you import
  • Apollo.io: Contact information for leads you discover through our Apollo integration

3. How We Use Your Information

We use your information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our lead automation platform
  • Account Management: To create and manage your account, process payments, and communicate about your subscription
  • Campaign Processing: To scrape LinkedIn profiles, generate AI-powered messages, and deliver emails/WhatsApp messages on your behalf
  • Analytics: To understand usage patterns and improve our Service
  • Security: To detect, prevent, and address technical issues and security threats
  • Legal Compliance: To comply with applicable laws and legal obligations
  • Communication: To send service updates, security alerts, and support messages

4. Data Sharing and Disclosure

We share your information with the following categories of recipients:

4.1 Service Providers

  • Vercel: Hosting and infrastructure
  • Vercel Postgres: Database storage
  • BrightData: LinkedIn profile data collection
  • Anthropic: AI message generation (Claude)
  • Apollo.io: Lead discovery and enrichment
  • Resend: Email delivery (using your API key)
  • Kapso: WhatsApp delivery (using your API key)
  • Paddle: Payment processing
  • Google: Authentication and Sheets integration
  • Inngest: Background job processing

4.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your data is transferred and becomes subject to a different privacy policy.

5. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes described in this policy:

  • Account Data: Retained while your account is active and for 90 days after deletion
  • Campaign Data: Retained while your account is active; deleted 90 days after account cancellation
  • Usage Logs: Retained for 12 months
  • Payment Records: Retained for 7 years as required by tax laws

6. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • Encryption in transit (HTTPS/TLS) and at rest
  • Secure password hashing
  • Regular security assessments
  • Access controls and authentication
  • Secure cloud infrastructure (Vercel)

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Your Rights

Depending on your location, you may have the following rights:

7.1 For All Users

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your account and data
  • Data Export: Request an export of your data in a portable format

7.2 For EU/EEA Users (GDPR)

  • Restriction: Request restriction of processing
  • Objection: Object to processing based on legitimate interests
  • Portability: Receive your data in a structured, machine-readable format
  • Withdraw Consent: Withdraw consent at any time where processing is based on consent
  • Lodge Complaint: File a complaint with a supervisory authority

7.3 For Colombian Users (Law 1581 of 2012)

  • Right to know, update, and rectify your personal data
  • Right to request proof of consent
  • Right to be informed about the use of your data
  • Right to revoke consent and/or request deletion
  • Right to access your data free of charge
  • Right to file complaints with the Superintendencia de Industria y Comercio

To exercise these rights, contact us at nicolas@mavecure.co. We will respond within 30 days (or as required by applicable law).

8. Cookies and Tracking

We use the following types of cookies:

  • Essential Cookies: Required for authentication and core functionality
  • Preference Cookies: Remember your settings (e.g., theme preference)

We do not currently use advertising or third-party tracking cookies. You can manage cookies through your browser settings.

9. International Data Transfers

Our Service is hosted on Vercel's global infrastructure. Your data may be processed in countries outside your country of residence, including the United States. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses for EU data transfers
  • Data processing agreements with service providers
  • Compliance with applicable data protection frameworks

10. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal data from children. If you become aware that a child has provided us with personal data, please contact us and we will delete such information.

11. Your Responsibilities as a Data Controller

When you use our Service to process lead data, you act as a data controller and we act as a data processor. You are responsible for:

  • Ensuring you have a lawful basis to process lead data
  • Obtaining any necessary consents from data subjects
  • Responding to data subject requests related to your leads
  • Complying with applicable data protection laws

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

4 GERENCIA S.A.S.

Data Protection Contact

NIT: 900894758-4

Cra 11 A 93 67 Of 503

Bogotá D.C., Colombia

Email: nicolas@mavecure.co