Legal

Privacy Policy

Last updated: 17 June 2026

1. Introduction

  1. Maitrics Inc (“Maitrics”, “we”, “us” or “our”) is committed to protecting your privacy. This Privacy Policy (the “Policy”) explains what personal data we collect, how we use and share it, and the rights and choices you have, when you visit our website at maitrics.com, use our platform and services, or otherwise interact with us (together, the “Services”).
  2. We handle personal data in accordance with applicable data protection and privacy laws in the jurisdictions in which we operate, including the EU General Data Protection Regulation 2016/679 (“EU GDPR”); the UK GDPR and the Data Protection Act 2018; the California Consumer Privacy Act, as amended by the California Privacy Rights Act (“CCPA/CPRA”), and other applicable US state privacy laws; and any other applicable national, state or local privacy laws (collectively, “Data Protection Laws”).
  3. For the purposes of the EU and UK GDPR, Maitrics is the “controller” of the personal data we process about you, unless we tell you otherwise (for example, where we process data on behalf of a business customer, in which case that customer is the controller and we act as its processor).

2. The personal data we collect

  1. Depending on how you interact with us, we may collect the following categories of personal data:

    1. Identity and contact data – such as your name, job title, employer, email address, telephone number and postal address.
    2. Account data – such as your login credentials, account settings and preferences when you register for or use our platform.
    3. Transaction and billing data – such as the products or services you have purchased, billing details and records of communications relating to your account.
    4. Usage and technical data – such as your IP address, device and browser information, pages viewed, and how you interact with our website and platform, collected in part through cookies and similar technologies.
    5. Communications data – such as the content of enquiries, support requests, survey responses and other correspondence you send us.
    6. Marketing data – such as your preferences for receiving marketing from us and your engagement with our emails and campaigns.
  2. We do not intentionally collect special categories of personal data (such as data revealing race or ethnicity, religious beliefs, health, or sexual orientation), and we ask that you do not provide such data to us through the Services.
  3. Our Services are not directed at children, and we do not knowingly collect personal data from anyone under the age of 16. If you believe a child has provided us with personal data, please contact us so we can delete it.

3. How we collect your personal data

  1. We collect personal data:

    1. Directly from you – when you register for an account, purchase or use our Services, fill in a form, subscribe to our communications, contact us, or otherwise interact with us.
    2. Automatically – when you use our website and platform, through cookies and similar technologies (see Section 6).
    3. From third parties – such as our service providers, analytics providers, and publicly available or commercial sources, where permitted by law.

4. How and why we use your personal data

  1. We use personal data to:

    1. provide, operate, maintain and improve our Services and your account;
    2. process transactions, manage billing and provide customer support;
    3. communicate with you, including responding to enquiries and sending service-related notices;
    4. send you marketing communications where you have asked to receive them or where we are otherwise permitted to do so, and measure their effectiveness;
    5. understand how our Services are used, conduct analytics and research, and develop new features and products;
    6. protect the security and integrity of our Services, prevent fraud and misuse, and enforce our terms; and
    7. comply with our legal and regulatory obligations.
  2. Legal bases (EU and UK). Where the EU or UK GDPR applies, we rely on one or more of the following legal bases to process your personal data:

    1. Performance of a contract – to provide the Services you have requested and manage our relationship with you;
    2. Legitimate interests – to operate, improve and secure our Services and market to existing customers, provided these interests are not overridden by your rights;
    3. Consent – for certain marketing and the use of non-essential cookies, which you may withdraw at any time; and
    4. Legal obligation – where processing is necessary to comply with the law.

5. How we share your personal data

  1. We do not sell your personal data for money. We may share personal data with the following categories of recipients:

    1. Service providers who process personal data on our behalf, such as cloud hosting and infrastructure providers, analytics providers, email and marketing platforms (for example, Kit), customer support tools and payment processors;
    2. Our group companies and affiliates, where relevant to providing and improving the Services;
    3. Professional advisers, such as auditors, lawyers and accountants;
    4. Authorities and other parties where required by law, to comply with legal process, or to protect our rights, property or safety or those of others; and
    5. Acquirers or successors in connection with a merger, acquisition, financing or sale of assets.
  2. We require our service providers to process personal data only on our instructions and to keep it secure and confidential, under appropriate contractual terms.

6. Cookies and similar technologies

  1. A cookie is a small file of letters and numbers stored on your device. We and our partners use cookies and similar technologies to operate our website, remember your preferences, understand how the website is used, and (where you allow it) for analytics and advertising.
  2. The cookies we use generally fall into the following categories:

    1. Strictly necessary cookies – required for the website to function, including for security and to log into secure areas.
    2. Analytical/performance cookies – help us understand how visitors use the website so we can improve it.
    3. Functionality cookies – remember your choices and preferences.
    4. Targeting cookies – record your visit and the pages you view to make our website and any advertising more relevant.
  3. You can manage non-essential cookies through our cookie settings (where available) and through your browser settings. Blocking some cookies may affect your experience of the website.

7. International transfers of personal data

  1. We operate internationally, and your personal data may be transferred to and processed in countries other than the one in which you live, including the United States, the United Kingdom and the European Economic Area (“EEA”). Data protection laws in these countries may differ from those in your country of residence.
  2. Where we transfer personal data out of the UK or EEA, we put in place appropriate safeguards required by Data Protection Laws, which may include:

    1. transfers to countries that the UK Government or EU Commission has determined provide an adequate level of protection (including transfers to the USA made under the EU–US Data Privacy Framework and the UK Extension thereto);
    2. the EU Standard Contractual Clauses and the UK International Data Transfer Agreement or Addendum; or
    3. another transfer mechanism or derogation permitted by applicable Data Protection Laws.

8. How long we keep your personal data

  1. We keep personal data only for as long as necessary for the purposes set out in this Policy, including to provide the Services, comply with our legal, accounting and regulatory obligations, resolve disputes, and enforce our agreements.
  2. When personal data is no longer needed, we will delete or anonymise it. If that is not possible (for example, because it is held in backups), we will securely store it and isolate it from further processing until deletion is possible.

9. Security

  1. We maintain appropriate technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse or alteration, including access controls and encryption in transit. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.
  2. You are responsible for keeping your account credentials confidential. Please notify us promptly if you believe your account has been compromised.

10. Your privacy rights

Subject to the conditions and exceptions in applicable Data Protection Laws, you may have some or all of the following rights in relation to your personal data:

  1. to access a copy of the personal data we hold about you;
  2. to correct inaccurate or incomplete personal data;
  3. to request deletion of your personal data;
  4. to restrict or object to certain processing of your personal data;
  5. to request that your personal data be transferred to another organisation (data portability);
  6. to withdraw consent at any time, where we rely on consent; and
  7. to lodge a complaint with a supervisory authority (see Section 12).

To exercise any of these rights, please contact us at legal@maitrics.com. We may need to verify your identity before responding, and we will respond within the timeframes required by applicable law. These rights are not absolute and may be subject to conditions set out in Data Protection Laws.

Additional rights for residents of the United States

If you are a resident of California or another US state with applicable privacy laws (such as the CCPA/CPRA), you may have the following additional rights, subject to the conditions and exceptions in the relevant legislation:

  1. the right to know what personal information we collect, use, disclose and (where applicable) sell or share about you, and to request a copy of that information;
  2. the right to request deletion of personal information we have collected about you;
  3. the right to correct inaccurate personal information we hold about you;
  4. the right to opt out of the “sale” or “sharing” of your personal information and of targeted advertising. We do not sell your personal information for money; however, certain disclosures to advertising and analytics partners may be considered a “sale” or “sharing” under some US state laws;
  5. the right to limit the use and disclosure of any sensitive personal information; and
  6. the right not to receive discriminatory treatment for exercising any of these rights.

To exercise any of these rights, including to opt out of the sale or sharing of your personal information (“Do Not Sell or Share My Personal Information”), email us at legal@maitrics.com. You may use an authorised agent to submit a request on your behalf, and we will not discriminate against you for exercising any of your rights.

11. Third-party links

Our Services may link to third-party websites or services that we do not control. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before providing them with any personal data.

12. How to contact us and make a complaint

  1. If you have any questions about this Policy or how we handle your personal data, or to exercise your rights, please email us at legal@maitrics.com or write to: Data Protection Enquiries, Maitrics Inc, 533 Airport Blvd, Ste 400, Burlingame, CA 94010, USA, or Maitrics Inc, 11 Seven Dials, Bath, BA1 1EN, United Kingdom.
  2. We would appreciate the chance to address your concerns before you approach a regulator. You also have the right to make a complaint to the relevant supervisory or regulatory authority: in the UK, the Information Commissioner’s Office (ICO) (www.ico.org.uk); in the EEA, the data protection authority where you live or work; and in the United States, your state regulator, such as the California Privacy Protection Agency (cppa.ca.gov) or your state Attorney General.

13. Changes to this Policy

We may update this Policy from time to time to reflect changes in our practices or applicable law. We will post the updated Policy on this page and revise the “Last updated” date above. Where required, we will notify you of material changes.