Privacy Policy

MAVRIQ AI operates under MAVRIQ WEBTECH INC("Company", "we", "us", or "our") with the website located at mavriq.co.in and provides an enterprise-grade AI workforce platform, including AI Calling Agents, Voice Bot Automation, API telephony trunking, and related services (collectively, the "Services").

We are committed to protecting the privacy and security of the data entrusted to us. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our website, register for an account, or utilize our conversational AI platform.

By accessing or using our Services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.

1. Important Note: Mavriq AI as a Data Controller vs. Data Processor

To understand your privacy rights, it is critical to distinguish between our two roles:

• Data Controller: When you visit our website, create an account, purchase a subscription, or communicate with our sales team, we act as a Data Controller for your business account information.
• Data Processor: When you upload knowledge bases, deploy voice bots, connect APIs, or make/receive phone calls through our platform, you (our Client) are the Data Controller, and MAVRIQ AI acts strictly as a Data Processor. We process your end-user communications, call audio, and training scripts solely on your behalf and in accordance with your explicit instructions.

2. Information We Collect

A. Information You Provide to Us (Account & Billing Data)

• Account Credentials: Name, business email address, company name, telephone number, job title, and encrypted account passwords.
• API & Integration Credentials: Third-party webhook URLs, custom email SMTP settings, API keys (e.g., ElevenLabs, LLM providers) generated or linked within your account dashboard.
• Financial Information: Billing addresses, GSTIN (for Indian entities), and payment identifiers processed securely via our third-party payment gateways.

B. Platform Content and Communication Data (Processed on Your Behalf)

• Knowledge Base Data: Text files, PDFs, FAQs, documentation, and scripts uploaded to the platform to train or guide your customized AI agents.
• Telephony & Audio Data: Real-time audio streams, call recordings, viseme data (for expressions/lip-syncing), caller identification data (CLI), and text transcripts generated during inbound or outbound automated calls.

C. Automatically Collected Technical Data

• System Logs & Usage Metrics: IP addresses, browser types, device information, operating system, network latency metrics, call success/drop rates, and interaction logs within the dashboard environment.
• Cookies and Tracking: Standard web analytics and operational cookies used to maintain session states, security validation, and improve platform performance.

3. How We Use Your Information

We process information based on legitimate business interests, contractual obligations, and legal compliance. Specifically, we use your data to:

• Deliver and Maintain the Services: Provision your intuitive agent builder, execute automated workflows, manage telephony trunking, and process real-time voice synthesis.
• Improve AI Model Realism and Latency: Analyze system interaction logs and technical performance to optimize response times, voice bot realism, and speech-to-text accuracy. (Note: Customer call recordings are never used to train generalized public models without explicit, written client consent).
• Account Security and Fraud Prevention: Monitor API usage anomalies, prevent unauthorized endpoint stress-testing, and ensure secure environment isolation for all enterprise tenants.
• Billing and Administration: Process subscription renewals, issue tax invoices, and verify usage-based telephony billing.
• Legal Compliance: Fulfill statutory requirements under telecommunications guidelines, including logging calls and maintaining records required by law enforcement.

4. Data Sharing and Third-Party Disclosures

We do not sell, rent, or trade your data. To deliver real-time AI agents, we share specific data fragments strictly under secure data processing agreements with the following categories of partners:

• Telephony and Infrastructure Providers: Telecommunications carriers, SIP trunking providers, and cloud hosting infrastructure (e.g., Amazon Web Services) to transmit and host live calls.
• AI & Voice Synthesis Processors: External specialized APIs (such as ElevenLabs or advanced Large Language Model endpoints) required to execute high-fidelity voice output and context comprehension during a call scenario.
• Workflow Automation Partners: Third-party automation triggers (e.g., Make.com, Zapier, or client-configured CRMs) that you explicitly connect to your MAVRIQ AI account.
• Legal and Regulatory Authorities: If required to do so by law, or in response to valid requests by public authorities (e.g., the Telecom Regulatory Authority of India (TRAI), Ministry of Communications, or law enforcement agencies).

5. Data Security and Infrastructure Isolation

MAVRIQ AI implements rigorous technical and organizational measures designed to protect your data against unauthorized access, alteration, disclosure, or destruction:

• Encryption: Data is encrypted both in transit (using TLS 1.3) and at rest (using AES-256 encryption protocols).
• Network & API Security: Strict API key authorization frameworks, rate-limiting, and WebSocket secure tokens isolate incoming and outgoing data streams.
• Access Control: Internal access to your knowledge bases and call data is limited via Role-Based Access Control (RBAC) to verified technical personnel troubleshooting specific performance latency or routing issues.

6. International Data Transfers

MAVRIQ AI operates globally. While our primary databases and operations are anchored in India, data processed through our platform (such as third-party voice synthesis requests) may traverse cloud networks or be processed in regions outside your home jurisdiction.

We ensure that all international cross-border transfers comply with recognized legal mechanisms, utilizing Standard Contractual Clauses (SCCs) or verified data processing addendums ensuring equivalent security protections.

7. Data Retention

• Account & Billing Records: Retained for as long as your account remains active or as required by applicable tax and commercial laws in India.
• Call Transcripts and Audio Recordings: Retained based on your selected platform subscription tier and custom dashboard retention configurations. You retain the ability to purge call records, scripts, and uploaded training data directly from your environment at any time. Once deleted by the user, this data is removed from active platform databases within standard cache cycles.

8. Regulatory Compliance and User Rights

Depending on your geographical location and business jurisdiction, you and your end-users may hold specific rights regarding personal data under frameworks like the Digital Personal Data Protection Act (DPDP Act, 2023) of India, the General Data Protection Regulation (GDPR) of the EU, or the California Consumer Privacy Act (CCPA).

These rights generally include:

• Right to Access & Rectification: The right to request copies of your account data and correct inaccuracies.
• Right to Erasure ("Right to be Forgotten"): The right to request the total deletion of your profile data.
• Right to Restrict or Object to Processing: The right to limit how we use your system data, including opting out of newsletter subscriptions.

To exercise these rights, please contact our Data Protection Officer using the details in Section 11. As a Data Processor handling call data for our clients, any requests submitted directly by an end-user regarding calls handled by a MAVRIQ AI voice bot will be routed back to the respective client for validation and execution.

9. Children’s Privacy

Our Services are designed exclusively for B2B enterprises, software developers, and business automation contexts. MAVRIQ AI does not knowingly collect or solicit personal data from children under the age of 18. If we learn that we have inadvertently collected personal data from a child, we will take immediate steps to delete that information from our servers.

10. Amendments to this Privacy Policy

We reserve the right to revise, update, or amend this Privacy Policy at any time to reflect software updates, architectural optimization, or shifting global privacy regulations. When updates occur, we will adjust the "Last Updated" date at the top of this document. We encourage you to review this page periodically to stay informed about how we safeguard your information.

11. Contact Information & Data Protection Officer

For questions, clarification regarding data handling pipelines, or to exercise your statutory privacy rights, please contact us at:

MAVRIQ AI
Plot 25, Industrial Area, Phase-1
Chandigarh, 160002
India
Email: support@mavriq.co.in