2️⃣

Privacy Policy

Privacy Policy

ContentFly Inc., doing business as Moonvalley AI (“Moonvalley,” “we,” “us,” or “our”), is committed to protecting your privacy. We provide an AI-based content generation platform (the “Platform”), along with a website and other related services (collectively, the “Services”).

This Privacy Policy explains what personal information we collect, how we use it, who we share it with, the choices you have regarding your information, and the rights you can exercise under applicable privacy laws in the United Kingdom (UK), Canada, and the United States (US).

1. Introduction

“Personal information” or “your information” refers to information that is linked or reasonably linkable to you.

This Privacy Policy applies whenever you use our Services or otherwise interact with us. By using our Services, you agree to the collection and use of your personal information as described in this Privacy Policy.

If you have any questions or concerns about our privacy practices, please refer to the “Contact Us” section at the end of this Privacy Policy.

2. How We Collect Personal Information

Types of Personal Information We Collect

We collect the following types of personal information directly from you or through your use of our Services:

  1. Contact and Account Information:
    • Details Collected: Your name, email address, postal address, telephone number, company name, position, and usernames.
    • Purpose: To create and manage your account, authenticate your identity when you log in, and communicate with you about your account and the Services.
  2. Content:
    • Details Collected: Any text or image prompts you provide to generate content, and any content (including videos) generated through our Services based on your prompts.
    • Purpose: To provide and personalize our content generation Services according to your requests.
  3. Feedback or Correspondence:
    • Details Collected: Information you provide when you contact us with questions, feedback, reviews, or other communications.
    • Purpose: To respond to your inquiries, improve our Services, and address any issues you may have.
  4. Preferences and Interests:
    • Details Collected: Information about how you prefer to receive communications from us and your interests related to our Services.
    • Purpose: To tailor our communications and enhance your user experience.
  5. Payment Information:
    • Details Collected: Payment card details, billing address, and transaction history.
    • Purpose: To process transactions securely via third-party payment processors. We do not store full payment card numbers on our servers.
  6. Device, Usage, and Activity Information:
    • Details Collected: Information about the device you use to access our Services (e.g., IP address, operating system, browser type), how you interact with our Services (e.g., pages viewed, links clicked), and identifiers such as cookies.
    • Purpose: To monitor and analyze usage, improve the functionality and user experience of our Services, and ensure the security of our systems.

Information Collected from Other Sources

  1. Single Sign-On Services:
    • Details Collected: If you log into your Moonvalley account through a third-party single sign-on service (e.g., Google), we collect information such as your name, email address, and any other information that the third-party platform shares with us according to their privacy policy.
    • Purpose: To simplify the account creation and login process.
  2. Publicly Available Information:
    • Details Collected: Information from publicly available sources like LinkedIn profiles or company websites.
    • Purpose: To enhance our understanding of our user base and improve our Services.

Information We Derive

We may derive insights from the information we collect:

  • Inferences: For example, we may infer your general location from your IP address or deduce your preferences based on how you interact with our Services.
  • Purpose: To personalize your experience, recommend features or content, and improve our Services.

3. How We Use Your Personal Information

We use the personal information we collect for the following purposes:

  1. Provide and Support the Services:
    • Activities: Operating, maintaining, and delivering our Services; processing transactions; providing customer support; and ensuring the functionality of our Platform.
    • Examples: Generating content based on your prompts, troubleshooting technical issues, and managing user accounts.
  2. Communicate with You:
    • Activities: Responding to your inquiries; sending administrative information like confirmations, technical notices, updates, and security alerts.
    • Examples: Notifying you about changes to our Services, responding to support requests, and sending account-related communications.
  3. Improve and Monitor Our Services:
    • Activities: Analyzing usage trends; conducting research and analytics to enhance user experience; developing new products and features.
    • Examples: Identifying areas of the Services that are frequently used to focus development efforts, conducting surveys to gather feedback.
  4. Protect You and Us:
    • Activities: Detecting, investigating, and preventing fraudulent transactions or unauthorized activities; enforcing our Terms of Service; complying with legal obligations.
    • Examples: Monitoring for suspicious activity, verifying user identities, and ensuring compliance with applicable laws.
  5. Promote Our Business:
    • Activities: Sending you promotional communications about our Services; tailoring marketing communications based on your preferences.
    • Note: We will only send you marketing communications if you have opted in, and you can opt out at any time.
    • Examples: Sending newsletters, informing you about new features or promotions.
  6. Assess and Engage in Business Transactions:
    • Activities: Evaluating or conducting mergers, acquisitions, reorganizations, or asset sales.
    • Examples: Sharing information with prospective buyers or partners under confidentiality agreements.

4. Disclosing Your Information

Affiliates and Service Providers

To perform the activities described above, we may share your personal information with our affiliates and trusted third-party service providers who perform services on our behalf. These providers include:

  1. Payment Processors:
    • Purpose: To securely process your payment transactions.
    • Examples: Companies like Stripe or PayPal.
  2. Business Operations Support:
    • Purpose: To assist with internal operations such as compliance, human resources, and customer relationship management.
    • Examples: Providers of accounting software, HR management systems.
  3. IT and Infrastructure Providers:
    • Purpose: To operate, secure, and maintain our Services and IT systems.
    • Examples: Cloud hosting services like AWS.
  4. Communication Platforms:
    • Purpose: To facilitate communications with you.
    • Examples: Email service providers, customer support platforms.
  5. Analytics and Marketing Services:
    • Purpose: To understand user behavior and improve our Services.
    • Examples: Google Analytics, marketing automation tools.
  6. Professional Advisors:
    • Purpose: To obtain legal, accounting, or other professional advice.
    • Examples: Law firms, accounting firms.

All service providers are contractually obligated to protect your personal information and use it only as necessary to provide their services.

Other Third Parties

We may disclose your personal information to:

  1. Compliance with Laws and Legal Proceedings:
    • Purpose: To comply with legal obligations, respond to lawful requests, and protect our rights and property.
    • Examples: Disclosing information in response to court orders, subpoenas, or government requests.
  2. Protecting Rights and Safety:
    • Purpose: To protect the safety of our users, employees, or the public.
    • Examples: Investigating fraud, security breaches, or other potentially harmful activities.
  3. Business Transfers:
    • Purpose: As part of a merger, acquisition, financing, or sale of assets.
    • Examples: Sharing information with a potential buyer under confidentiality agreements.
  4. With Your Consent:
    • Purpose: For any other purpose disclosed to you at the time we collect the information, provided you agree to it.
    • Examples: Sharing testimonials with your permission.

5. Interacting with Us Online

We use various technologies to collect information about your interactions with our Services:

Cookies and Similar Technologies

  • What Are Cookies: Small text files stored on your device to collect standard internet log information and visitor behavior information.
  • Purpose: To remember your preferences, enhance user experience, and gather statistical data about site usage.

Types of Cookies We Use

  1. Essential Cookies:
    • Purpose: Necessary for the functioning of our Services.
    • Examples: Keeping you logged in during your session.
  2. Analytical/Performance Cookies:
    • Purpose: To analyze how users navigate our Services and improve functionality.
    • Examples: Tracking page visits, clicks, and session duration.
  3. Functional Cookies:
    • Purpose: To remember your preferences and personalize content.
    • Examples: Language selection, region settings.
  4. Targeting/Advertising Cookies:
    • Purpose: To deliver relevant advertisements and track the effectiveness of marketing campaigns.
    • Examples: Displaying ads based on your browsing history.

Third-Party Analytics and Advertising

We engage third-party service providers to perform analytics and advertising services:

  • Analytics Providers: Such as Google Analytics, to help us understand how users interact with our Services.
  • Advertising Partners: To deliver targeted advertisements on other websites or platforms.

Your Choices

  • Managing Cookies: You can adjust your browser settings to refuse cookies or alert you when cookies are being used.
  • Opt-Out of Targeted Advertising: Use industry opt-out tools such as the Digital Advertising Alliance's opt-out page.
  • Do Not Track Signals: Our Services currently do not respond to “Do Not Track” signals.

6. International Transfers and Storage

Our staff and service providers are located around the world. This means that your personal information may be transferred to, stored, or processed in countries outside of your home jurisdiction, including countries that may not have the same data protection laws as your country.

Safeguards for International Transfers

We take reasonable steps to ensure that your personal information receives an adequate level of protection:

  1. Standard Contractual Clauses (SCCs):
    • For UK and EU Users: We may rely on SCCs approved by the European Commission to transfer personal data outside the UK/EU.
  2. PIPEDA-Compliant Safeguards:
    • For Canadian Users: We adhere to the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial laws when transferring data internationally.
  3. US State-Specific Protections:
    • For US Users: We comply with applicable state privacy laws, such as the California Consumer Privacy Act (CCPA).
  4. Contractual Obligations:
    • We enter into agreements with our service providers that require them to protect your personal information in accordance with applicable laws and this Privacy Policy.

Security Measures

Please refer to the “Technical and Organizational Safeguards” section below for details on how we protect your information during transfers.

7. Retention and Destruction of Personal Information

We retain your personal information only as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.

Retention Periods

  1. Account Information:
    • Duration: Retained until you close your account or request deletion.
  2. Transaction Records:
    • Duration: Retained for at least 7 years to comply with tax and accounting regulations.
  3. Usage Data:
    • Duration: Retained for analytics purposes for a period necessary to improve our Services.

Secure Destruction

When we no longer need your personal information, we securely destroy it using industry-standard methods:

  • Electronic Data: Permanently deleted or anonymized to prevent reconstruction.
  • Physical Records: Shredded, incinerated, or otherwise destroyed in a secure manner.

8. Children’s Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have inadvertently collected such information, we will take steps to delete it promptly. If you believe we have collected information from a child under 18, please contact us using the information provided in the “Contact Us” section.

9. Privacy Rights and Choices

Your Rights

Depending on your location and applicable laws, you may have the following rights regarding your personal information:

  1. Access:
    • Request confirmation of whether we process your personal information and access to that data.
  2. Correction:
    • Request correction of inaccurate or incomplete personal information.
  3. Deletion:
    • Request deletion of your personal information, subject to certain exceptions.
  4. Objection:
    • Object to the processing of your personal information for certain purposes.
  5. Restriction:
    • Request restriction of processing under certain circumstances.
  6. Data Portability:
    • Request a copy of your personal information in a structured, commonly used, and machine-readable format.

How to Exercise Your Rights

  • Contact Us: Submit a request using the contact information provided in the “Contact Us” section.
  • Verification: We may need to verify your identity before fulfilling your request.
  • Response Time: We strive to respond to all legitimate requests within 30 days.

Additional Rights for California Residents

Under the CCPA, California residents have the right to:

  • Opt-Out of Sale: We do not sell personal information. If this practice changes, we will update this Privacy Policy and provide a mechanism to opt out.
  • Non-Discrimination: You will not receive discriminatory treatment for exercising your privacy rights.

10. Technical and Organizational Safeguards

We implement reasonable and appropriate security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include:

Encryption

  • In Transit: We use Transport Layer Security (TLS) to encrypt data transmitted between your device and our servers.
  • At Rest: Sensitive data stored on our servers or with third-party providers is encrypted using industry-standard encryption algorithms.

Access Controls

  • Role-Based Access: Access to personal information is limited to authorized personnel who require it to perform their job duties.
  • Authentication Measures: Use of secure authentication protocols, including strong passwords and, where feasible, multi-factor authentication.

Monitoring and Audits

  • Regular Reviews: Periodic assessments of our data processing activities and security measures.
  • Third-Party Audits: We rely on third-party service providers who may conduct their own security audits and certifications.

Incident Response

  • Policies and Procedures: Established protocols to detect, respond to, and mitigate data breaches or security incidents.
  • Notifications: In the event of a data breach affecting your personal information, we will notify you and relevant authorities as required by law.

Data Minimization

  • Principle: We collect only the personal information necessary for the purposes identified in this Privacy Policy.
  • Anonymization: Where possible, we anonymize or pseudonymize personal information to reduce risks.

Employee Training

  • Awareness Programs: Regular training for employees on data privacy and security practices.
  • Confidentiality Agreements: Employees are required to sign confidentiality agreements and are subject to disciplinary action for non-compliance.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons.

  • Notification of Changes: We will notify you of any significant changes by updating the date at the top of this Privacy Policy and, if required, through additional notifications (e.g., email or in-app alerts).
  • Continued Use: Your continued use of our Services after the effective date of the updated Privacy Policy constitutes your acceptance of the changes.

12. Contact Us

If you have any questions, comments, or concerns about this Privacy Policy or our privacy practices, please contact us:

  • Email: support@moonvalley.com
  • Postal Address: ContentFly Inc. 1 King St W, 4800-238, Toronto, Ontario, Canada, M5H 1A1

13. Additional Information for Specific Regions

United Kingdom (UK) and European Economic Area (EEA)

If you are located in the UK or EEA, you have additional rights under the General Data Protection Regulation (GDPR):

  • Legal Basis for Processing: Our legal bases for processing your personal information include consent, performance of a contract, compliance with legal obligations, and legitimate interests.
  • Data Protection Officer: While we may not be required to appoint a Data Protection Officer, you can contact us with any data protection inquiries at privacy@moonvalley.com or dpo@moonvalley.com
  • Complaints: You have the right to lodge a complaint with your local data protection authority if you believe we have violated applicable data protection laws.

Canada

For Canadian residents:

  • Consent: By providing us with your personal information, you consent to its collection, use, and disclosure as outlined in this Privacy Policy.
  • Challenging Compliance: You may contact us to discuss our compliance with Canadian privacy laws.

United States (US)

For residents of certain states like California:

  • Shine the Light Law: California residents may request information about our disclosure of personal information to third parties for their direct marketing purposes.
  • Do Not Sell My Personal Information: As per CCPA, we do not sell your personal information.

Thank you for taking the time to read our Privacy Policy. We are committed to protecting your personal information and respecting your privacy.

← Previous

Legal