Pulxiq
Sign inStart free trial

Legal

Privacy Policy

Effective Date: [EFFECTIVE DATE] · Last Updated: [LAST UPDATED]

Pulxiq, Inc. ("Pulxiq", "we", "us", or "our") respects your privacy. This Privacy Policy describes how we collect, use, disclose, retain, and protect personal data in connection with the Pulxiq platform, websites, APIs, and related services (the "Service"). By using the Service you acknowledge the practices described here. Capitalized terms not defined here have the meaning given in our Terms of Service.

Pulxiq acts as a data controller with respect to information about its account holders, website visitors, and prospective customers, and generally as a data processor with respect to Customer Data (including prospect records) that you submit to or generate through the Service on behalf of your organization.

1. Categories of Data We Collect

1.1 Account & Identity Data

Name, email address, employer, role, phone number, login credentials (hashed), profile image, time zone, and account preferences.

1.2 Billing Data

Billing contact, tax identifiers, address, and last four digits and brand of payment instrument. Full payment card data is handled by our PCI-DSS compliant payment processors and is not stored on our systems.

1.3 Customer Data & Prospect Records

Lead and contact information you upload or generate through enrichment, including names, business email addresses, phone numbers, job titles, company names, public social profile URLs, firmographic and technographic attributes, and message content. You are responsible for the lawful basis for processing such data (see Section 5).

1.4 Integration Data

OAuth tokens, refresh tokens, scopes, and message/metadata returned by integrated providers such as Google Workspace/Gmail, Microsoft 365/Outlook, calendar systems, CRMs (e.g., HubSpot, Salesforce), enrichment providers (e.g., Apollo, Hunter), and mapping providers (e.g., Google Maps).

1.5 Usage, Telemetry & Device Data

IP address, browser and device identifiers, operating system, language, referring URL, pages viewed, features used, click events, session duration, error and performance telemetry, and approximate location derived from IP.

1.6 Communications

Records of your communications with us, including support tickets, email, chat transcripts, surveys, and feedback.

1.7 AI Inputs & Outputs

Prompts, instructions, system context, retrieved documents, and the outputs returned by AI Features, including drafts, scores, and recommendations.

1.8 Cookies & Similar Technologies

Strictly necessary, functional, analytics, and (where consented) marketing cookies. See Section 8.

2. How We Use Data

We use personal data to:

  • provide, operate, maintain, secure, and improve the Service;
  • create and manage accounts, authenticate users, and process transactions;
  • deliver AI-powered features, including enrichment, scoring, summarization, personalization, and recommendations;
  • monitor and protect against fraud, abuse, spam, unauthorized access, and other violations of our Terms;
  • measure performance, debug, troubleshoot, and conduct product analytics and capacity planning;
  • communicate with you about your account, transactional notices, security alerts, and changes to the Service;
  • send marketing communications (where permitted and subject to your preferences);
  • comply with legal obligations, enforce our Terms, and protect our rights and the rights of others;
  • create de-identified or aggregated data for benchmarking, research, and product development.

3. AI & Automated Data Processing Disclosure

The Service uses AI and machine learning to process Customer Data, prompts, and integration content in order to generate outputs. Pulxiq does not use Customer Data to train foundational third-party models that are not under your control unless you opt in. Pulxiq may use de-identified or aggregated signals to improve internal models, heuristics, and product behavior. Outputs are probabilistic and may be inaccurate; review the Terms for additional disclaimers.

4. Sources of Data

We collect personal data (a) directly from you; (b) automatically from your devices and interactions with the Service; (c) from integrated providers you authorize; (d) from third-party enrichment, data, and business intelligence providers (e.g., Apollo, Hunter, Google Maps); and (e) from publicly available sources. We do not warrant the accuracy, completeness, or lawfulness of data obtained from third-party sources, and you remain responsible for verifying suitability for your use.

5. Lawful Bases for Processing (GDPR / UK GDPR)

Where GDPR or UK GDPR applies, we rely on the following lawful bases:

  • Performance of a contract — to provide the Service you have requested;
  • Legitimate interests — to operate, secure, and improve the Service, prevent fraud and abuse, and conduct B2B marketing, subject to your rights;
  • Consent — for certain cookies, marketing communications, and optional features;
  • Legal obligation — to comply with laws, regulations, and lawful requests.

With respect to Customer Data you submit to the Service, you (the Customer) are the controller and are solely responsible for identifying and maintaining the lawful basis for processing, providing required notices to data subjects, and honoring data-subject rights.

6. How We Share Data

We share personal data with:

  • Sub-processors and service providers who help operate the Service, including cloud hosting, database, email infrastructure, customer support, analytics, observability, payment processing, and AI/LLM providers, in each case under contractual confidentiality and data protection obligations;
  • Integrated platforms you authorize, such as your email, calendar, CRM, or enrichment providers, in accordance with the scopes you grant;
  • Professional advisors, including auditors, lawyers, and accountants;
  • Regulators, courts, and law enforcement where required by law or to protect rights, safety, or property;
  • Acquirers in connection with a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, subject to standard confidentiality protections.

We do not sell personal data in exchange for monetary consideration. Depending on your jurisdiction, certain disclosures to advertising or analytics providers may be deemed a "sale" or "share" under applicable law; you can exercise opt-out rights as described in Section 10.

7. International Data Transfers

We operate globally and may transfer personal data to, and process it in, the United States and other countries. Where required, we implement appropriate safeguards for cross-border transfers, including Standard Contractual Clauses, the U.K. Addendum, equivalent mechanisms, and supplementary measures.

8. Cookies & Tracking

We use cookies, pixels, local storage, and similar technologies to operate, secure, and analyze the Service. Strictly necessary cookies are always enabled; analytics and marketing technologies are used subject to applicable consent requirements. You may adjust your browser or platform settings to manage cookies; some features may not function properly without them.

9. Retention

We retain personal data for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce our agreements. Customer Data is retained for the duration of your subscription and deleted or returned upon termination, subject to backup retention windows and legal-hold obligations. De-identified or aggregated data may be retained indefinitely.

10. Your Rights

Subject to applicable law (including GDPR, UK GDPR, CCPA/CPRA, and other state privacy laws), you may have the right to:

  • access, correct, update, or delete personal data we hold about you;
  • object to or restrict certain processing, including profiling and direct marketing;
  • data portability;
  • opt out of "sale" or "sharing" of personal information, and of targeted advertising;
  • withdraw consent at any time without affecting prior lawful processing;
  • lodge a complaint with a supervisory authority (e.g., your local data protection regulator).

To exercise rights, contact [PRIVACY EMAIL]. We will verify your identity before fulfilling requests. If your request concerns Customer Data submitted by another Pulxiq customer, we will refer you to that customer, who is the controller.

11. Communication Preferences & Opt-Outs

You may unsubscribe from marketing emails at any time using the link in any such email or by contacting [PRIVACY EMAIL]. Transactional and account-related messages are necessary to provide the Service and cannot be opted out of while you maintain an account.

12. Security

We implement administrative, technical, and physical safeguards designed to protect personal data against unauthorized access, alteration, disclosure, or destruction, including encryption in transit, access controls, logging, least-privilege practices, and vendor due diligence. No method of transmission or storage is 100% secure, and we do not warrant absolute security. You are responsible for protecting your credentials and configuring access controls within your account.

13. Children

The Service is intended for business use by adults. We do not knowingly collect personal data from individuals under the age of 16. If you believe a child has provided us with personal data, please contact [PRIVACY EMAIL] and we will take appropriate steps to delete it.

14. Third-Party Sites & Services

The Service may link to or integrate with third-party websites and services that operate under their own privacy practices. We are not responsible for those practices, and we encourage you to review their policies.

15. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the Service or by email. The "Last Updated" date at the top indicates when revisions were last made. Continued use of the Service after the effective date constitutes acceptance of the revised policy.

16. Contact Us

Pulxiq, Inc.
Attn: Privacy
[COMPANY ADDRESS]
Email: [PRIVACY EMAIL]
Legal: [LEGAL EMAIL]

For E.U./U.K. data subjects, you may also contact our representative at [EU/UK REPRESENTATIVE CONTACT].