Privacy Policy

MaxyonOps is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store and protect the personal information of users of our Platform.

By using the Platform, you accept the practices described in this policy. We recommend that you read it carefully.

If you are a Platform user through an Organization (client company), that organization may have its own additional privacy policies.

We collect the following types of information:

Registration and account data: company name, user name, email address, password (encrypted), and billing data.

Operational data: information you voluntarily enter when using the Platform, such as client data, contracts, employees, services, payments and incidents.

Usage data: information about how you interact with the Platform, including pages visited, actions taken, date and time of access, and IP address.

Technical data: device type, operating system, web browser, and service performance data.

Cookies and similar technologies: we use session cookies necessary for system operation and analytical cookies to improve the user experience.

We use the collected information for the following purposes:

Service delivery: operate, maintain and improve the Platform; manage your account and subscription; process payments securely.

Communications: send you notifications about your account, important service updates, policy changes, and responses to support requests.

Security: detect, prevent and investigate fraud, abuse, security vulnerabilities or unauthorized access.

Service improvement: analyze aggregated and anonymous usage patterns to improve Platform features.

Legal obligations: comply with applicable legal, regulatory or judicial requirements.

We do not sell, rent or share your personal data with third parties for commercial or advertising purposes.

The processing of your data is carried out on the basis of: (a) the execution of the subscription contract you have with us; (b) your consent when required; (c) our legitimate interest in operating a safe and quality service; (d) compliance with legal obligations.

Your data is stored in secure infrastructure provided by Supabase, with servers located in the European Union or in regions with adequate data protection guarantees.

We apply technical and organizational measures to protect your data, including: data encryption in transit (TLS/HTTPS) and at rest, secure authentication, role-based access control, security monitoring and continuous data backup.

Payments are processed securely through Stripe, a PCI DSS certified payment provider. We do not store complete bank card data on our servers.

We retain your data for as long as your account is active and up to 30 days after cancellation. After that period, data is permanently deleted, unless legally required to retain it.

To operate the Platform, we work with trusted service providers who may have limited access to your data exclusively to provide us with the service. These providers include:

Supabase: database infrastructure and authentication.

Stripe: secure payment processing and subscription management.

Email service providers: for sending transactional notifications.

All our providers are subject to data protection agreements and are required to handle information in accordance with applicable regulations.

We use session cookies to keep your session active while using the Platform. These cookies are strictly necessary and do not require your consent.

We also use analytical cookies to understand how the Platform is used and to improve it. You can disable these cookies from your browser settings, although this may affect service functionality.

We do not use advertising cookies or track your activity outside the Platform.

You have the following rights regarding your personal data:

Access: you may request a copy of the personal data we hold about you.

Rectification: you may request correction of inaccurate or incomplete data.

Erasure: you may request deletion of your personal data, subject to applicable legal limitations.

Portability: you may request an export of your Data in a standard, readable format.

Objection and restriction: you may object to the processing of your data in certain circumstances or request its restriction.

Withdrawal of consent: when processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, write to us at: support@maxyonops.com. We will respond within a maximum of 30 days.

The Platform is intended exclusively for companies and individuals over 18 years of age. We do not intentionally collect personal data from minors. If you are aware that a minor has provided personal data without parental consent, contact us to proceed with its deletion.

We may update this Privacy Policy occasionally to reflect changes in our practices or applicable law. We will notify significant changes by email or through a prominent notice on the Platform.

The date of the last update is indicated at the beginning of this document. We recommend reviewing this policy periodically.

For any questions, complaints or exercise of rights related to the processing of your personal data, you can contact us at:

Legal name: MaxyonOps

Email: support@maxyonops.com

We commit to responding to all requests within a maximum of 30 days.