Privacy Policy
Introduction
PrimeThink by Novaware Ltd. ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our artificial intelligence platform and related services (collectively, the "Services").
We understand the importance of your personal data and are dedicated to transparency regarding how we handle it. Please read this policy carefully to understand our practices regarding your personal information and how we will treat it.
Information We Collect
Personal Information
We may collect personal information that you voluntarily provide to us when you:
Create an account
Use our Services
Contact our support team
Subscribe to our newsletter
Participate in surveys or promotions
This information may include:
Name, email address, and contact details
Company name and job title
Billing information and payment details
User preferences and settings
Any other information you choose to provide
Usage Data
We automatically collect certain information about how you interact with our Services, including:
IP address and device information
Browser type and version
Operating system
Usage patterns and activity
Time and date of your visits
Pages and features you access
Referring websites or sources
System logs and performance information
Content Data
As part of providing our Services, we process:
Text, data, and files you upload or submit
Conversation content with our AI assistants
Task and project information
Documents and materials you share
Group and collaboration data
Cookies and Tracking Technologies
We use cookies and similar tracking technologies to collect information about your browsing activities and to improve your experience with our Services. These technologies help us understand how you use our platform, remember your preferences, and optimize functionality. You will be given the option to consent to or reject cookies upon your first visit via a cookie banner.
How We Use Your Information
We use the collected information for various purposes, including:
Providing and Improving Our Services
Delivering the core functionality of the PrimeThink platform
Processing and responding to your requests
Adapting the AI functionality to your needs
Improving and enhancing our Services
Developing new features and capabilities
Business Operations
Managing your account and subscription
Processing payments and transactions
Communicating with you about your account
Providing customer support
Sending service updates and administrative messages
Analytics and Personalization
Analyzing usage patterns and trends
Personalizing your experience
Recommending features that may interest you
Measuring the effectiveness of our Services
Generating aggregated insights and statistics
Legal Compliance and Protection
Complying with applicable laws and regulations
Enforcing our Terms of Service
Protecting against misuse or unauthorized access
Addressing fraud or security incidents
Establishing, exercising, or defending legal claims
Data Storage and Security
Storage Location
Your information is stored on secure servers located in the United Kingdom. For users in the European Economic Area (EEA), we ensure adequate safeguards are in place for any data transfers outside the EEA in accordance with applicable data protection laws.
Retention Period
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When determining retention periods, we consider:
The amount, nature, and sensitivity of the data
The potential risk of harm from unauthorized use or disclosure
The purposes for which we process the data
Whether we can achieve those purposes through other means
Legal, regulatory, and compliance requirements
Security Measures
We implement a variety of security measures to protect your personal information, including:
Encryption of data in transit and at rest
Secure access controls and authentication
Regular security assessments and audits
Employee training on data protection
Physical and electronic safeguards
Incident response procedures
While we take reasonable steps to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data.
Sharing Your Information
We may share your information with:
Third-Party Tools and Integrations
We use third-party services such as Google Firebase Analytics to understand usage and improve the platform. When you use our Services, some information may be collected by these third parties in accordance with their privacy policies. We recommend reviewing the privacy policies of these third parties for more information about how they process your data.
Service Providers
Third-party vendors and service providers who help us operate our business and provide the Services, such as:
Cloud hosting providers (including Google Cloud and Amazon AWS)
Payment processors
Customer support services
Analytics providers (including Google Firebase Analytics to understand usage and improve the platform)
Marketing and communication platforms
These providers are contractually bound to use your information only as necessary to provide services to us and in accordance with our privacy commitments. We have Data Processing Agreements in place with our key service providers to ensure they handle your information in compliance with applicable data protection laws.
Business Transfers
If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of company assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.
Legal Requirements
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency) to:
Comply with a legal obligation
Protect and defend our rights or property
Prevent or investigate possible wrongdoing
Protect the personal safety of users or the public
Protect against legal liability
With Your Consent
We may share your information with third parties when you have given us your consent to do so.
Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal information:
Access and Portability
You may request access to the personal information we hold about you and request a copy in a structured, commonly used, and machine-readable format.
Correction and Updating
You can update or correct inaccurate or incomplete information by accessing your account settings or by contacting us directly.
Deletion and Restriction
You may request the deletion of your personal information or restrict our processing of such information under certain circumstances.
Objection and Withdrawal of Consent
You have the right to object to our processing of your personal information and to withdraw any consent you have previously given.
Complaint
You have the right to lodge a complaint with a supervisory authority if you believe our processing of your personal information violates applicable law.
To exercise these rights, please contact us using the information provided in the "Contact Us" section below. We will respond to data subject requests within one month, in accordance with applicable law.
You can opt out of marketing emails at any time by clicking the unsubscribe link in the footer of our emails or by contacting us directly.
Children's Privacy
Our Services are not directed to children under the age of 16. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will take steps to delete such information.
International Data Transfers
Your information may be transferred to, and processed in, countries other than the country in which you reside. These countries may have data protection laws that differ from those in your country.
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we ensure that transfers of your personal information to countries outside these regions are conducted in accordance with applicable data protection laws, including through the use of Standard Contractual Clauses or other appropriate transfer mechanisms.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. When we make changes, we will update the "Last Updated" date at the top of this policy and take appropriate measures to inform you, consistent with the significance of the changes we make.
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.
Corporate Users and Groups
If you use our Services on behalf of an organization (such as your employer) or within an organizational group, your information may be subject to both this Privacy Policy and your organization's privacy policies. The organization administering your group may:
Access information in and about your account
Control how your account is configured
Apply specific settings and policies
View usage and analytics data
Please refer to your organization's policies and contact your administrator for more information.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:
Privacy Officer
PrimeThink by Novaware Ltd.
Email: privacy@primethink.com
Address: 41 Great Portland Street, London W1W 7LA, United Kingdom
For general support inquiries: support@novaware.io
For users in the European Union, we have appointed a Data Protection Officer who is based in the United Kingdom and can be contacted at dpo@primethink.com.
Additional Information for California Residents
If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information. This section describes your CCPA rights and explains how to exercise them.
Rights under CCPA
Right to Know: You have the right to request information about the personal information we collect, use, disclose, and sell.
Right to Delete: You have the right to request the deletion of your personal information that we have collected.
Right to Opt-Out: You have the right to opt-out of the sale of your personal information.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.
California Shine the Light
California's "Shine the Light" law permits users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information we disclosed to third parties for direct marketing purposes and the names and addresses of the third parties with which we shared personal information in the preceding calendar year.
Additional Information for European Users
If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) or similar laws apply to our processing of your personal information.
Automated Decision-Making
We do not make automated decisions that produce legal or similarly significant effects on users without human involvement. If we begin to do so, we will update this policy and request your consent where required by law.
Legal Basis for Processing
We only process your personal information when we have a lawful basis to do so, which may include:
Contract: Processing is necessary to perform a contract with you or to take steps at your request before entering into a contract.
Consent: You have given us specific consent to process your personal information.
Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party, provided those interests are not overridden by your rights and interests.
Legal Obligation: Processing is necessary to comply with our legal obligations.
Vital Interests: Processing is necessary to protect vital interests, such as life or health.
Data Protection Authority
If you are located in the EEA, you have the right to lodge a complaint with your local data protection authority if you believe our processing of your personal information does not comply with applicable law.
AI Processing and Training
When you interact with our AI assistants, your inputs and our system's responses may be processed to provide and improve our Services. We may use de-identified and aggregated conversation data to:
Improve the accuracy and effectiveness of our AI models
Identify and fix bugs or issues
Develop new features and capabilities
Train our models to better understand user needs
We implement technical and organizational measures to protect the privacy of your data during this process. You can request more information about how your interactions are used by contacting our Data Protection Officer.
Account Deletion
When you delete your account:
Personal information associated with your account will be deleted within 30 days
Certain information may be retained in backups for up to 90 days
De-identified and aggregated data may be retained for analytical purposes
Information necessary for legal compliance or legitimate business purposes may be retained as required
To request account deletion, please contact our support team at support@novaware.io or through your account settings.
Data Breach Notification
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority without undue delay and, where feasible, within 72 hours of becoming aware of the breach. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify affected individuals directly. Such notifications will describe the nature of the breach, likely consequences, measures taken or proposed to address the breach, and contact details for more information.