Privacy Policy

Last Updated: February 28, 2026

This Privacy Policy explains how Amoofy, Inc. ("Amoofy," "we," "us") collects, uses, shares, and protects personal data when you interact with our website, services, or platform. It also describes your rights and how you can exercise them.

By using our Service, you agree to the collection and use of information in accordance with this Privacy Policy.

Key Commitments

Compliance: We're building our privacy program to align with applicable laws and standards, and working toward readiness for GDPR/UK GDPR, LGPD, PIPEDA, and relevant U.S. state privacy laws (e.g., CCPA/CPRA, VCDPA, CPA, CTDPA, UCPA), as applicable.
Children's Privacy: We do not knowingly collect data from children under 13 (U.S.) or under 16 (EU/UK), unless verifiable parental consent is obtained.
AI Transparency: When we use automated or AI-enabled tools to generate or assist with insights, we disclose this. We implement human oversight, and validation/guardrails intended to reduce errors and improve the reliability and traceability of outputs.
Security: We use industry-standard encryption and access controls and are working toward SOC 2 / ISO 27001 compliance.
No Sale of Data: We do not sell personal data or use participant responses for marketing without explicit consent.
Your Rights: You may access, correct, delete, or restrict use of your data. EU/UK users may also lodge complaints with their local data authority.

Definitions

Account: A unique account created to access our Service.
Application / Service: The software platform provided by Amoofy.
Company: Refers to Amoofy, Inc.
Customer / Controller: Organizations using the Service to collect data. They determine the lawful basis for collection and are responsible for respondent notices and consent.
Respondent: An individual who participates in a survey, interview, or storytelling session.
Processor: Amoofy processes data only under instructions from Customers.
Service Provider: Third parties engaged to support operations.
Personal Data: Any information relating to an identifiable individual.

Information We Collect

Personal Data: Name, email, phone, address, and similar identifiers.
Usage Data: IP address, device type, browser, operating system, pages visited.
Recordings & Stories: Audio, video, or written responses if enabled by the Customer.
Third-Party Integrations: Data collected via linked accounts or platforms.

How We Use Data

We use data to:

Provide, maintain, and improve the Service.
Fulfill contractual obligations with Customers.
Contact you for support, security alerts, and updates.
Generate anonymized and aggregated insights for Customers.
Ensure compliance with law and protect against fraud or misuse.

Sharing of Data

With Customers (Controllers) who collected the data.
With Service Providers under strict contractual terms.
With Affiliates or during a business transfer (with notice).
In anonymized or aggregated form.
With your consent, where applicable.

Retention & Transfers

Data is retained as long as necessary for service delivery or legal compliance.
International transfers are safeguarded through encryption, Standard Contractual Clauses (SCCs), and Data Processing Agreements (DPAs).

Your Rights

GDPR/UK GDPR: Access, rectification, deletion, portability, objection, withdrawal of consent.
CCPA/CPRA: Disclosure, deletion, opt-out of sale/sharing, no discrimination.
Global Coverage: Equivalent rights under LGPD (Brazil), PIPEDA (Canada), and other laws.

Requests: security@amoofy.com

Security

We apply technical and organizational safeguards including encryption, access controls, and monitoring. No system is 100% secure, but we continuously update protections.

Children's Data

We prohibit the collection of data from children under 13 (U.S.) or 16 (EU/UK) unless verified parental consent is obtained. Customers are responsible for compliance when involving minors.

Changes

We may update this Privacy Policy periodically. Customers will be notified of material changes.

Contact

Email: security@amoofy.com