Privacy
Mengalo, Corp. Privacy Policy
Last Updated May, 2024
1. Welcome to Mengalo!
We respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how Mengalo, Corp. and our affiliates (collectively, "Mengalo," "we," "us," or "our") collect, use, and share information about you when you access and use our websites, software applications, and other online services (collectively, the "Services"), and the choices you have associated with that information.
Scope of This Privacy Policy
​
This Privacy Policy applies to information we collect when you use our Services, interact with us, or otherwise engage with us via our website or other digital means. It does not apply to non-Mengalo websites or third-party services linked to or from our Services, or other services provided by Mengalo clients.
Please read this policy carefully to understand our policies and practices regarding your information and how we will treat it. By accessing or using our Services, you agree to this Privacy Policy. If you do not agree with our policies and practices, your choice is not to use our Services.
2. Data Use, Collection, and Sharing
Collection of Information:
-
Information You Provide: We collect personal information such as names, contact details, and billing information directly from our clients to manage accounts and fulfill service agreements. Additionally, we gather names, preferred communication methods, and purchasing habits of our clients' customers as they interact with our customer service system to personalize and enhance their experience.
-
Automatic Data Collection: While we do not collect technical data such as IP addresses, device information, or browser types, our systems do track and record interactions within our customer service platform to facilitate service improvements and personalized user experiences.
Use of Information:
-
Service Provision and Personalization: We use the information collected to deliver and improve our services, manage client accounts, and tailor interactions based on historical data to enhance customer satisfaction and engagement.
-
Customer Support and Communications: We utilize client and customer information to provide support, address inquiries, and resolve issues promptly. This includes using contact details to communicate updates, service changes, or promotional materials, as consented by the clients.
-
Performance Analytics and Improvement: Data collected through client and customer interactions helps us analyze the effectiveness of our services and identify areas for enhancement.
Sharing and Disclosure of Information:
-
Service Providers: We share necessary data with third-party service providers that assist with various aspects of our service delivery. For example, data may be shared with Mistral AI for processing using APIs. However, this data is shared in an unstructured format that does not link directly to personal identifiers, preserving privacy while enabling functionality.
-
Compliance and Legal Obligations: We may disclose information when required by law or in response to legal processes such as subpoenas or to protect the rights, property, or safety of Mengalo, our clients, or others.
-
Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or other similar event, client and customer information may be part of the transferred assets but will remain subject to the promises made in the pre-existing Privacy Policy unless you consent otherwise.
Protection of Information:
-
Security Measures: We employ robust security measures, including encryption and secure server hosting to protect the data we collect and prevent unauthorized access, disclosure, alteration, and destruction.
3. User Rights and Choices (For Clients)
Your Rights Regarding Personal Information:
-
Access to Information: As a client of Mengalo, you have the right to request access to the personal information that we hold about your business. This includes the right to be informed of the specific pieces of personal data we have collected about your company, the categories of sources from which the personal information is collected, the business or commercial purpose for collecting the personal information, and the categories of third parties with whom we share personal information.
-
Correction and Deletion: If any information we have on file about your business is incorrect or incomplete, you may contact us to request a correction. Additionally, you may request the deletion of any personal information we hold about your business, except where we are required by law to maintain certain information.
-
Opt-Out of Direct Marketing: You have the right to opt out of receiving marketing communications from us at any time. You can exercise this right by clicking on the "unsubscribe" or "opt-out" link in the marketing emails we send you.
-
Data Portability: Upon request, we will provide your business with a copy of your personal data in a structured, commonly used, and machine-readable format, so that you can manage and move it.
Managing Your Consent:
-
Consent Withdrawal: If your business has provided consent to the processing of your personal information, you may withdraw it at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
-
Cookies and Tracking Technologies: Mengalo respects your business's privacy and does not employ tracking cookies or similar technologies to monitor your activities. Should this change, you will be provided with tools to manage these settings.
Exercising Your Rights:
To exercise any of these rights, please contact us at emmett@mengalo.com. We respond to all requests we receive from our clients wishing to exercise their data protection rights in accordance with applicable data protection laws. We may need to verify the identity of your business before processing your request, which may require additional information from you.
Responses to Your Requests:
We aim to respond to all legitimate requests within one month. Occasionally, it may take us longer if your request is particularly complex or if multiple requests are made. In this case, we will notify you and keep you updated.
4. Data Security
Securing Your Information:
Mengalo takes the security of your information seriously. We implement a range of security measures designed to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include:
-
Data Encryption: All sensitive data exchanged between our clients and our services is encrypted using industry-standard encryption protocols. This ensures that your information is protected during transmission.
-
Secure Server Hosting: Our servers are hosted on secure facilities provided by Azure, a leading provider of cloud services known for its strong security measures. This hosting environment is equipped with state-of-the-art security technologies and is maintained in accordance with best practices.
-
Access Controls: Access to personal information is strictly limited to authorized personnel who need the information to perform their job functions. We enforce strict procedures and security features to prevent unauthorized access.
-
Monitoring and Testing: We continuously monitor our systems for potential vulnerabilities and attacks, and regularly review our information collection, storage, and processing practices to update our physical, technical, and organizational security measures.
-
Regular Security Assessments: We conduct regular security assessments and audits to identify and address potential security vulnerabilities in our systems and processes.
Incident Response:
Mengalo has established a formal incident response protocol to handle any potential security breaches swiftly and effectively. In the unlikely event of a data breach, we are prepared to take immediate steps to mitigate any harm and will notify affected clients in accordance with applicable laws and regulations.
Commitment to Continuous Improvement:
We are committed to continuously improving our security practices and enhancing the protection of client data. We keep abreast of new security technologies and methods to safeguard data and ensure compliance with industry standards and legal requirements.
5. International Data Transfers
Mengalo stores and processes personal data on servers located in North America, specifically in the United States and Canada. This approach ensures that our operations are robust and that we can provide our services efficiently to all our clients across different regions.
Data Protection Standards: We maintain the same stringent privacy standards regardless of where the data is stored. Our privacy practices are designed to provide a consistent level of protection for all personal information we handle. This means:
Compliance with Applicable Laws: We comply with applicable privacy laws in the countries where we operate, and we adhere to international best practices in data protection.
Secure Data Transfers: When transferring data across borders, we use secure transmission methods and ensure that all data is encrypted both in transit and at rest.
Contractual Safeguards: We implement strong contractual safeguards with our data hosting providers and service partners to ensure that our privacy standards are upheld.
Client Rights and Control:
Our commitment to your privacy remains unwavering, irrespective of where your data is stored. As a client, you retain full rights over your data, including access, correction, and deletion rights as detailed in our Privacy Policy.
Ongoing Monitoring and Compliance:
We regularly review our data storage and processing practices to ensure they meet our high standards of security and compliance. This includes monitoring the regulatory landscape for changes that may affect our data handling practices.
6. Changes to This Privacy Policy
Mengalo reserves the right to update or modify this Privacy Policy at any time and from time to time without prior notice. However, we will not make changes that significantly reduce your rights under this Privacy Policy without providing at least 14 days' notice via email or prominent notice on our services, allowing you the opportunity to review the changes before they become effective.
Review and Acknowledgement:
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting the personal information we collect. Your continued use of our services after the changes to our Privacy Policy have been communicated and have taken effect signifies your acceptance of those changes.
Contact Information:
Should you have any questions or concerns regarding our data use, collection, or sharing practices, please contact us at emmett@mengalo.com.