Privacy Policy

Updated: 11/26/2024

ContentFly Inc., doing business as Moonvalley AI (“Moonvalley,” “we,” “us,” or “our”), is committed to protecting your privacy. We provide an AI-based content generation platform (the “Platform”), along with a website and other related services (collectively, the “Services”).

This Privacy Policy explains what personal information we collect, how we use it, who we share it with, the choices you have regarding your information, and the rights you can exercise under applicable privacy laws in the United Kingdom (UK), Canada, and the United States (US).

If you have any questions or concerns about our privacy practices, please refer to the “Contact Us” section at the end of this Privacy Policy.

1. Application of this Policy

“Personal information” or “your information” refers to information that is linked or reasonably linkable to you or another identifiable individual.

This Privacy Policy applies whenever you use our Services or otherwise interact with us. By using our Services, accessing the Platform, or otherwise providing us with your personal information, you agree to the collection, use, disclosure, and other handling of your personal information as described in this Privacy Policy.

When you provide us with any personal information relating to another individual, you represent to us that you have the consent of that individual to provide us with their information, and they have been made aware that their personal information may be handled as described in this Privacy Policy.

2. How and Why We Collect Personal Information

Types of Personal Information We Collect

Information Collected From You

We collect the following types of personal information directly from you or through your use of our Services:

1. Contact and Account Information:
• Details Collected: Your name, email address, postal address, telephone number, company name, position, and usernames.
• Purpose: To create and manage your account, authenticate your identity when you log in, and communicate with you about your account and the Services.
2. Feedback or Correspondence:
• Details Collected: Information you provide when you contact us with questions, feedback, reviews, or other communications.
• Purpose: To respond to your inquiries, improve our Services, and address any issues you may have.
3. Preferences and Interests:
• Details Collected: Information about how you prefer to receive communications from us and your interests related to our Services.
• Purpose: To tailor our communications and enhance your user experience.
4. Payment Information:
• Details Collected: Payment card details, billing address, and transaction history.
• Purpose: To process transactions securely via third-party payment processors. We do not store full payment card numbers on our servers.
5. Device, Usage, and Activity Information:
• Details Collected: Information about the device you use to access our Services (e.g., IP address, operating system, browser type), how you interact with our Services (e.g., pages viewed, links clicked), and identifiers such as cookies (see the section below entitled “Interacting with Us Online” for details).
• Purpose: To monitor and analyze usage, improve the functionality and user experience of our Services, and ensure the security of our systems.

Information Collected from Other Sources

We may collect personal information about you from the following third-party sources in relation to your use of the Services:

1. Single Sign-On Services:
• Details Collected: If you log into your Moonvalley account through a third-party single sign-on service (e.g., Google), we collect information such as your name, email address, and any other information that the third-party platform shares with us according to their privacy policy.
• Purpose: To simplify the account creation and login process.
2. Publicly Available Information:
• Details Collected: Information from publicly available sources like LinkedIn profiles or company websites.
• Purpose: To enhance our understanding of our user base and improve our Services.

Information We Derive

We may derive insights from the information we collect about you.

For example, we may infer your general location from your IP address or deduce your preferences based on how you interact with our Services in order to personalize your experience, recommend features or content, and improve our Services.

Information You Submit in Content Generation Prompts

It is important that you do not include any personal information in any text or image prompts you upload or submit to the Platform to generate content. This includes, for example, any image or video of, or text that can be used to identify, yourself or any other individual. Submitting personal information to the Platform is prohibited by the Terms of Service of the Platform.

3. How We Use Your Personal Information

We use the personal information we collect for the following purposes:

1. Provide and Support the Services:
• Activities: Operating, maintaining, and delivering our Services; processing transactions; providing customer support; and ensuring the functionality of our Platform.
• Examples: Generating content based on your prompts, troubleshooting technical issues, and managing user accounts.
2. Communicate with You:
• Activities: Responding to your inquiries; sending administrative information like confirmations, technical notices, updates, and security alerts.
• Examples: Notifying you about changes to our Services, responding to support requests, and sending account-related communications.
3. Improve and Monitor Our Services:
• Activities: Analyzing usage trends; conducting research and analytics to enhance user experience; developing new products and features.
• Examples: Identifying areas of the Services that are frequently used to focus development efforts, conducting surveys to gather feedback.
4. Protect You and Us:
• Activities: Detecting, investigating, and preventing fraudulent transactions or unauthorized activities; enforcing our Terms of Service; complying with legal and regulatory obligations.
• Examples: Monitoring for suspicious activity, verifying user identities, and ensuring compliance with applicable laws.
5. Promote Our Business:
• Activities: Sending you promotional communications about our Services; tailoring marketing communications based on your preferences.
• Note: We will only send you marketing communications if you have opted in, and you can opt out at any time by using the unsubscribe mechanism contained in the communication or otherwise by contacting us directly using the contact information set out below under ‘Contact Us.’
• Examples: Sending newsletters, informing you about new features or promotions.
6. Assess and Engage in Business Transactions:
• Activities: Evaluating or conducting mergers, acquisitions, reorganizations, or asset sales.
• Examples: Sharing information with prospective buyers or partners under confidentiality agreements.

4. Disclosing Your Information

Affiliates and Service Providers

To perform the activities described above, we may share your personal information with our affiliates and trusted third-party service providers who perform services on our behalf. These providers include:

1. Payment Processors:
• Purpose: To securely process your payment transactions.
• Examples: Payment companies like Stripe or PayPal.
2. Business Operations Support:
• Purpose: To assist with internal operations such as compliance, human resources, and customer relationship management.
• Examples: Providers of accounting software, HR management systems.
3. IT and Infrastructure Providers:
• Purpose: To operate, secure, and maintain our Services and IT systems.
• Examples: Cloud hosting services.
4. Communication Platforms:
• Purpose: To facilitate communications with you.
• Examples: Email service providers, customer support platforms.
5. Analytics and Marketing Services:
• Purpose: To understand user behavior and improve our Services.
• Examples: web analytics tools, marketing automation tools.
6. Professional Advisors:
• Purpose: To obtain legal, accounting, or other professional advice.
• Examples: Law firms, accounting firms.

All our service providers are contractually obligated to protect your personal information and use it only as necessary to provide their services.

Other Third Parties

We may disclose your personal information to other third parties for the following purposes:

1. Compliance with Laws and Legal Proceedings:
• Purpose: To comply with legal and regulatory obligations, respond to lawful requests, and protect our rights and property.
• Examples: Disclosing information in response to court orders, subpoenas, or government requests.
2. Protecting Rights and Safety:
• Purpose: To protect the safety of our users, employees, or the public.
• Examples: Investigating fraud, security breaches, or other potentially harmful activities.
3. Business Transfers:
• Purpose: As part of a merger, acquisition, financing, or sale of assets.
• Examples: Sharing information with a potential buyer under confidentiality agreements.
4. With Your Consent:
• Purpose: For any other purpose disclosed to you at the time we collect the information, provided you agree to it.
• Examples: Sharing testimonials with your permission.

5. Interacting with Us Online

We use various technologies to collect information about your interactions with our Services.

Cookies and Similar Technologies

• What Are Cookies: Small text files stored on your device to collect standard internet log information and visitor behavior information.
• Purpose: To remember your preferences, enhance user experience, and gather statistical data about site usage.

Types of Cookies We Use

1. Essential Cookies:
• Purpose: Necessary for the functioning of our Services.
• Examples: Keeping you logged in during your session.
2. Analytical/Performance Cookies:
• Purpose: To analyze how users navigate our Services and improve functionality.
• Examples: Tracking page visits, clicks, and session duration.
3. Functional Cookies:
• Purpose: To remember your preferences and personalize content.
• Examples: Language selection, region settings.
4. Targeting/Advertising Cookies:
• Purpose: To deliver relevant advertisements and track the effectiveness of marketing campaigns.
• Examples: Displaying ads based on your browsing history.

Third-Party Analytics and Advertising

We engage third-party service providers to perform analytics and advertising services:

• Analytics Providers: We use web analytics tools including Google Analytics to help us understand how users interact with our Services. To learn more about Google Analytics, click here. Users can deactivate the Google Analytics function with a browser add-on, which can be downloaded here.
• Advertising Partners: We use advertising partners to deliver targeted advertisements on other websites or platforms.

Your Choices

• Managing Cookies: You can adjust your browser settings to refuse cookies or alert you when cookies are being used.
• Opt-Out of Targeted Advertising: You can opt-out such through our cookie opt out banner on our website provided by CookieYes.

Please note that our Services currently do not respond to “Do Not Track” signals.

Third-Party Websites

The Platform or the Services, including our website, may include links to other websites that are operated or controlled by a third party. These websites are not governed by this Policy, and we encourage you to review any privacy policies associated with linked third-party websites.

6. International Transfers and Storage

Our staff and service providers are located around the world. This means that your personal information may be transferred to, stored, or processed in countries outside of your home jurisdiction, including jurisdictions that may not have the same data protection laws as your own.

When your personal information is transferred to a jurisdiction outside of your province or country, it may be subject to the law of that foreign jurisdiction, including any law permitting or requiring disclosure of the information to the government, government agencies, courts and law enforcement in that jurisdiction.

Safeguards for International Transfers

We take reasonable steps to ensure that your personal information receives an adequate level of protection:

1. Standard Contractual Clauses (SCCs):
• For UK and EEA Users: We may rely on SCCs approved by the European Commission to transfer personal data outside the UK/EEA.
2. PIPEDA-Compliant Safeguards:
• For Canadian Users: We implement all appropriate safeguards required under to the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial laws when transferring data internationally.
3. US State-Specific Protections:
• For US Users: We comply with applicable state privacy laws, such as the California Consumer Privacy Act (CCPA).
4. Contractual Obligations:
• We enter into agreements with our service providers that require them to protect your personal information in accordance with applicable laws and this Privacy Policy.

Please refer to the “Technical and Organizational Safeguards” section below for details on how we protect your information during transfers.

7. Retention and Destruction of Personal Information

We retain your personal information only as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.

Secure Destruction

When we no longer need your personal information, we securely destroy it using industry-standard methods:

• Electronic Data: Permanently deleted or anonymized to prevent reconstruction.
• Physical Records: Shredded, incinerated, or otherwise destroyed in a secure manner.

8. Children’s Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have inadvertently collected such information, we will take steps to delete it promptly. If you believe we have collected information from a child under 18, please contact us using the information provided in the “Contact Us” section.

9. Privacy Rights and Choices

Your Privacy Rights

Depending on your location and applicable laws, you may have the following rights regarding your personal information:

• Access: You can request confirmation of whether we process your personal information and request access to the personal information we maintain about you.
• Correction: You can request the correction of inaccurate or incomplete personal information that we maintain about you.
• Withdrawing consent or objecting to processing: Depending on where you live, you may withdraw your consent for or otherwise object to the collection, use, or disclosure of your personal information. However, withdrawing consent or objecting to our processing of your personal information will affect our ability to provide you with the Services.

Please see the section below entitled “Additional Information for Specific Regions” for more details on privacy rights that may be available to you depending on where you live.

How to Exercise Your Rights

• Contact Us: Submit a request in writing using the contact information provided in the “Contact Us” section below.
• Verification: We may need to verify your identity before fulfilling your request.
• Our Response: We strive to respond to all legitimate requests within 30 days. In some cases, the rights set out in this Policy will not apply to your jurisdiction, or our legal obligations will prevent us from granting a request for access to or correction or personal information. We will inform you in writing of the reasons for any such decision.

10. Technical and Organizational Safeguards

We implement reasonable and appropriate physical, technical, and administrative security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include:

• Encryption of personal information in transit and at rest;
• Limiting access to personal information only to authorized personnel who require it to perform their job duties;
• Secure authentication protocols (e.g. passwords) for our personnel;
• Regular monitoring and audits;
• Incident response policies and procedures;
• Limiting collection and handling of personal information, and de-identifying or anonymizing it where possible; and
• Training our personnel and entering into confidentiality agreements with them.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons.

• Notification of Changes: We will notify you of any significant changes by updating the date at the top of this Privacy Policy and, if required, through additional notifications (e.g., email or in-app alerts).
• Continued Use: Your continued use of our Services after the effective date of the updated Privacy Policy constitutes your acceptance of the changes.

12. Contact Us

If you have any questions, comments, or concerns about this Privacy Policy or our privacy practices, please contact us:

• Email: support@moonvalley.com
• Postal Address: ContentFly Inc. 1 King St W, 4800-238, Toronto, Ontario, Canada, M5H 1A1

13. Additional Information for Specific Regions

United Kingdom (UK) and European Economic Area (EEA)

If you are located in the UK or EEA, you have additional rights under the General Data Protection Regulation (GDPR) or UK GDPR.

• Legal Basis for Processing: Our legal bases for processing your personal information include consent, performance of a contract, compliance with legal obligations, and legitimate interests.
• Data Protection Officer: While we may not be required to appoint a Data Protection Officer, you can contact us with any data protection inquiries at privacy@moonvalley.com or dpo@moonvalley.com.
• Complaints: You have the right to lodge a complaint with your local data protection authority if you believe we have violated applicable data protection laws.
• Deletion and restriction: Request deletion of, or restrictions on the processing of, your personal information where it is no longer necessary, subject to certain exceptions.
• Data portability: You may request a copy of your personal information in a structured, commonly used, and machine-readable format.

Quebec

If you are located in Quebec, you may exercise the following additional rights:

• Deletion and restriction: Request deletion of, or restrictions on the processing of, your personal information where it is no longer necessary, subject to certain exceptions.
• Data portability: You may request a copy of your personal information in a structured, commonly used, and machine-readable format.

United States (US)

Residents of certain states like California may exercise the following additional rights:

• Shine the Light Law: California residents may request information about our disclosure of personal information to third parties for their direct marketing purposes.
• Do Not Sell My Personal Information: As per CCPA, we do not sell your personal information. If this practice changes, we will update this Privacy Policy and provide a mechanism to opt out.
• Non-Discrimination: You will not receive discriminatory treatment for exercising your privacy rights.

Thank you for taking the time to read our Privacy Policy. We are committed to protecting your personal information and respecting your privacy.

On this page

• Privacy Policy
• 1. Application of this Policy
• 2. How and Why We Collect Personal Information
• Types of Personal Information We Collect
• Information Collected From You
• Information Collected from Other Sources
• Information We Derive
• Information You Submit in Content Generation Prompts
• 3. How We Use Your Personal Information
• 4. Disclosing Your Information
• Affiliates and Service Providers
• Other Third Parties
• 5. Interacting with Us Online
• Cookies and Similar Technologies
• Types of Cookies We Use
• Third-Party Analytics and Advertising
• Your Choices
• Third-Party Websites
• 6. International Transfers and Storage
• Safeguards for International Transfers
• 7. Retention and Destruction of Personal Information
• 8. Children’s Privacy
• 9. Privacy Rights and Choices
• Your Privacy Rights
• How to Exercise Your Rights
• 10. Technical and Organizational Safeguards
• 11. Changes to This Privacy Policy
• 12. Contact Us
• 13. Additional Information for Specific Regions
• United Kingdom (UK) and European Economic Area (EEA)
• Quebec
• United States (US)