Privacy Policy

Last updated: August 18, 2025

This Privacy Policy explains how Mave Technologies Inc. ("Mave", "we", "us", or "our") collects, uses, discloses, and safeguards personal information when you visit our websites, use the Mave platform and related services, or otherwise interact with us (together, the "Services"). It also describes your privacy rights and how to exercise them.

Quick summary: We collect information you provide to create and manage accounts, operate our AI-powered real estate marketing platform, process payments, improve our products, communicate with you, and comply with law. We share personal information with trusted service providers (including thirdparty AI/LLM vendors used to generate content), integration partners you connect, and as required by law. We don’t sell personal information.

 

1. Who we are & scope

This Policy applies to Mave Technologies Inc., an Ontario (Canada) company. It covers:

  • Visitors to our public websites and marketing pages.

  • Users who create an account and access the Mave platform.

  • Individuals who interact with us (e.g., support, events, recruiting).

This Policy does not replace any master subscription agreement, data processing agreement, or other contract between Mave and a customer (each, an MSA/DPA). Where an MSA/DPA applies, it governs to the extent of any conflict. For Customer Data that a brokerage or team inputs into the platform, Mave generally acts as a service provider/processoron behalf of that customer.

 

2. Key terms we use

  • Personal Information / Personal Data: Information about an identifiable individual (alone or combined), such as name, email, identifiers, device data, etc.

  • Customer Data: Any data (including personal data) that a customer or its authorized users upload, submit, or process via the Mave platform (e.g., listing data, prompts, media, audience lists).

  • Output: AIgenerated responses/content produced by the platform from your inputs.

  • ThirdParty LLMs: External large language model providers we use to process prompts and generate Output.

 

3. What we collect

A. Information you provide

  • Account & contact data: Name, company, role, email, phone, password, profile photo.

  • Business & real estate data: Brokerage/team affiliation, MLS board membership, license/agent IDs (if provided), property and marketing assets you upload.

  • Prompts, content & feedback: Inputs/prompts you send to the platform, the resulting Output, comments/ratings, and survey responses.

  • Billing: Billing address, tax IDs, and payment instrument details (processed by our payment processor; we do not store full card numbers).

  • Communications: Support requests, call recordings (if disclosed), and other correspondence.

B. Information collected automatically

  • Usage & log data: Feature use, clicks, timestamps, referring/exit pages, and diagnostic data.

  • Device & technical data: IP address, browser type, OS, language, time zone, and device identifiers.

  • Cookies and similar technologies: See Cookies below.

C. Information from third parties

  • Integration data: If you connect thirdparty services (e.g., MLS data sources, CRM, social media), we receive information as authorized by you and the third party.

  • Partners and service providers: We may receive contact details, lead/referral details, or verification information.

We do not intentionally collect sensitive personal information (e.g., health, biometric, precise geolocation) unless you voluntarily provide it and it is necessary for the Services. Please avoid uploading unnecessary sensitive data.

 

4. How we use personal information

We use personal information (including Customer Data, where we act as a processor) to:

  1. Provide and secure the Services: Create and manage accounts; authenticate users; deliver features; generate Output; provide support; monitor and secure the platform; prevent fraud, abuse, or misuse.

  2. Operate AI features: Transmit prompts and necessary context to ThirdParty LLMs to generate Output; return Output to you; store prompts/Output for your workspace history and to improve your experience.

  3. Improve and personalize: Analyze aggregated/usage data; tune and enhance product features; personalize content, templates, and suggestions for your team.

  4. Communicate: Send transactional messages (e.g., confirmations, notices, service updates), respond to inquiries, and send marketing communications where permitted (you can opt out anytime).

  5. Billing and administration: Process payments, detect fraud, handle accounting/taxes, and manage trials and subscriptions.

  6. Compliance and protection: Enforce terms, comply with legal obligations, and protect our rights, users, and the public.

No sale: We do not sell personal information.

Deidentified/aggregated data: We may create and use deidentified or aggregated statistics and insights that do not identify individuals; we may use and disclose such data for any lawful purpose.

 

5. AI & ThirdParty LLMs

To generate Output, Mave transmits your prompts and necessary context (which may include Customer Data) to ThirdParty LLMs and returns Output to you.

  • Encryption in transit: Data sent to/from ThirdParty LLMs is encrypted in transit using industrystandard protocols.

  • Model training: We have opted out of allowing Customer Data to be used to train thirdparty LLM providers’ foundation models.

  • Data processing contracts: We maintain data processing agreements with LLM providers that require appropriate privacy and security controls.

  • Product improvement: We may use Customer Data to improve Mave’s features and personalize your experience (e.g., remembering preferred tones or templates). We do not disclose your unique Customer Data to other customers.

  • Your responsibilities: Only submit data you are authorized to provide. Do not upload thirdparty personal data without proper notice/authority or in violation of MLS/board rules or other contractual restrictions applicable to you.

 

6. Cookies and similar technologies

We use cookies, SDKs, and similar technologies to operate and improve the Services, remember preferences, understand usage, and (where applicable) measure campaign performance. You can control cookies through your browser settings and, where available, our cookie banner/controls. Disabling certain cookies may affect site functionality.

Categories we may use:

  • Strictly necessary (authentication, security, load balancing)

  • Functional (preferences)

  • Analytics (usage statistics, diagnostics)

  • Marketing (only if/when we run campaigns; you can opt out via our cookie controls)

 

7. How we share information

We share personal information in the following situations:

  • Service providers (processors): Hosting, cloud, data storage, security, analytics, communications, customer support, payment processing, and ThirdParty LLMs.

  • Integration partners you choose: MLS/data feeds, social media platforms, CRMs, or other systems you connect to the platform.

  • Professional advisors: Lawyers, auditors, insurers, accountants.

  • Corporate transactions: In connection with a merger, financing, acquisition, or sale of all/part of our business.

  • Legal and safety: To comply with law or legal process; respond to lawful requests; protect rights, property, safety, or security of Mave, our users, or the public.

  • With consent or at your direction: Including showcasing customer name/logo or testimonials in accordance with your contract and preferences.

We do not allow service providers to use personal information for their own independent purposes unless they have your consent or it is required by law.

 

8. International data transfers

We are based in Canada and may process information in Canada, the United States, and other countries where we or our service providers operate. These locations may have different data protection laws than your jurisdiction. Where required, we implement appropriate safeguards (e.g., contractual clauses) for crossborder transfers.

 

9. Data retention

We retain personal information for as long as necessary to provide the Services, fulfill the purposes described in this Policy, comply with our legal obligations, resolve disputes, and enforce our agreements. Retention periods vary based on data type and context (e.g., account records, billing, audit logs). We may preserve deidentified/aggregated data without time limit.

 

10. Security

We maintain reasonable administrative, technical, and physical safeguards to protect personal information against unauthorized access, use, disclosure, alteration, or destruction. No method of transmission or storage is completely secure; we cannot guarantee absolute security. If we learn of a security incident affecting personal information, we will notify affected parties and regulators as required by law and our agreements.

 

11. Your rights & choices

Your rights depend on your location and applicable law. Subject to exceptions, you may have rights to:

  • Access: Request a copy of the personal information we hold about you.

  • Rectify: Request correction of inaccurate or incomplete data.

  • Delete: Request deletion of your personal information.

  • Portability: Receive certain data in a portable format.

  • Restrict or object: Restrict or object to certain processing, including where based on our legitimate interests or for direct marketing.

  • Withdraw consent: Where we rely on consent, you can withdraw it at any time.

To exercise your rights, contact us using the details in Contact us. We may ask for information to verify your identity and request. If we process your data on behalf of a customer (as a processor), we may refer your request to that customer.

Marketing communications: You can opt out of marketing emails by using the unsubscribe link in those emails. Transactional and service messages (e.g., account, billing, security) are not optional.

Cookies: Use your browser settings and our cookie banner (where available) to manage cookies.

 

12. Jurisdictionspecific notices

Canada (PIPEDA)

Mave complies with the principles of Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA). You may contact us to access or correct your personal information or to file a complaint. You may also contact the Office of the Privacy Commissioner of Canada if concerns remain unresolved.

European Economic Area/United Kingdom (GDPR/UK GDPR)

  • Controller vs processor: For website/marketing data and accountlevel data, Mave is a controller. For Customer Data processed inside the platform for subscribed customers, Mave acts primarily as a processor on behalf of the customer.

  • Legal bases: We rely on performance of a contract, legitimate interests (e.g., product improvement, security), consent (e.g., marketing cookies), and legal obligations.

  • Supervisory authority: You have the right to lodge a complaint with your local authority. If you are in the UK, you can contact the ICO. If in the EEA, contact your national authority.

California (CCPA/CPRA)

We are a “business” under California law for website/marketing data and an authorized “service provider” for Customer Data processed for subscribed customers.

  • We do not sell personal information.

  • We do not share personal information for crosscontext behavioral advertising, except where you consent to marketing cookies on our sites (which you can opt out of).

  • California residents can exercise rights to know/access, correct, delete, and limit use of sensitive personal information (if applicable) by contacting us (see Contact us). Authorized agents may submit requests subject to verification.

 

13. Children’s privacy

Our Services are not directed to children under 13 (or under 16 in the EEA/UK). We do not knowingly collect personal information from children. If you believe a child has provided personal information, please contact us so we can take appropriate action.

 

14. Thirdparty links and services

Our Services may link to thirdparty websites, apps, or services. We are not responsible for the privacy practices of those third parties. Review their policies before providing personal information.

 

15. Changes to this Policy

We may update this Policy from time to time. If we make material changes, we will provide notice (e.g., by posting on our site or emailing account owners). Your continued use of the Services after the effective date of an update constitutes acceptance of the revised Policy.

 

16. Contact us

Mave Technologies Inc.
Toronto, Ontario, Canada
Email: support@maveai.co

If you are located in the EEA/UK and have questions about crossborder transfers or would like details about our transfer safeguards, contact us at the address above.

 

17. Additional terms for platform customers

For subscribed customers, the following terms clarify how this Policy interacts with your contract:

  • Processing role: For Customer Data you or your authorized users upload to the platform, we act as a processor/service provider under your MSA/DPA and process that data to provide the Services. You are responsible for obtaining any consents and providing notices to individuals whose personal data you upload.

  • LLM usage: We send prompts and necessary context to ThirdParty LLMs to generate Output for you. We have opted out of LLM providers’ model training on Customer Data. Data is encrypted in transit, and we maintain contracts requiring appropriate safeguards.

  • Derived data: We may create and use deidentified/aggregated statistics to improve the Services. We do not disclose your unique Customer Data to other customers.

  • Security & support: We maintain reasonable safeguards and will notify you of personaldata incidents as required by law and your MSA/DPA.

 

Note: This template is provided for general informational purposes and does not constitute legal advice. Privacy requirements vary by jurisdiction and business model. Please consult legal counsel to tailor this Policy for your specific use and to confirm obligations such as appointing an EU/UK representative or DPO, if required.