At Merlinx (“we,” “our,” or “us”), your privacy is important to us. We are committed to protecting your personal information and being transparent about how we collect, use, and share data. This Privacy Policy explains the types of data we collect, how we use it, who we share it with, and your rights in relation to your personal information.

By using Merlinx, you agree to this Privacy Policy. If you do not agree with the practices described herein, please do not use the Platform.

Information We Collect

Merlinx collects various types of information to provide, maintain, and improve our services.

Personal Information You Provide

We collect information directly from you when you create an account, subscribe to a service, or interact with the platform. This includes:

• Full Name
• Email Address
• Phone Number
• Business Information: such as your company name, industry, and professional role.
• Profile Information: including your business profile, uploaded or integrated Content (e.g., FAQs, catalogs, policies), and configuration settings.
• Financial Information: payment details (collected and processed through third-party payment processors) if you subscribe to a paid service.

Automatically Collected Information

When you use Merlinx, we automatically collect certain information to understand user interactions, diagnose problems, and improve the platform. This includes:

• IP Address: used for geographical information and security purposes.
• Device Information: browser type, operating system, and device settings.
• Usage Data: such as the pages you visit, features you use, and time spent on the platform.
• Interaction Data: information on interactions with customers and leads, such as conversation logs, message metadata, and engagement outcomes.
• Geolocation Data: if enabled by your device.

Payment Information

We collect and process payment information via secure third-party processors. Merlinx does not store credit card or other financial information directly. Payment processors may collect:

• Credit/Debit Card Information
• Billing Address
• Transaction Data

Data from Third Parties

In some cases, we may receive information about you from third-party services such as social media platforms or analytics providers, which help us better understand user preferences and improve our services.

How We Use Your Information

Merlinx uses the information collected for various purposes, including:

• Providing Services: To create and manage your account, deliver services, enable AI-powered customer engagement and sales workflows, and support configured integrations.
• Personalization: To tailor your experience on Merlinx, such as providing recommendations or optimizations for customer engagement based on your business profile, Content, and preferences.
• Communication: To send updates, notifications, and responses to your inquiries regarding services, subscriptions, and platform activity.
• Security: To monitor for fraudulent activity and protect the integrity of the platform.
• Analytics: To track platform performance and usage trends, allowing us to improve the overall user experience.
• Marketing: To send promotional offers, new services, and personalized content based on your usage of the platform (with your consent where required by law).

Contractual Necessity

• We process your personal data when it is necessary to enter into or fulfill a contract with you. This includes processing your personal data to:
• Provide the services offered by Merlinx.
• Manage your account and subscriptions.
• Communicate with you regarding the services, including customer support and notifications regarding changes to your account or service availability.

Legitimate Interests:

• We process your personal data based on our legitimate interests, provided that such interests are not overridden by your privacy rights. Our legitimate interests include:
• Improving and optimizing the performance and user experience of the platform.
• Securing our platform and detecting any fraudulent or malicious activity.
• Marketing our services to current users or potential customers, unless you opt out of marketing communications.

Consent

• In situations where we are required by law to obtain your consent, we will process your personal data only after you have provided explicit and informed consent. This includes:
• Processing sensitive personal data, where applicable.
• Sending you marketing communications about services, offers, or promotions that may be of interest to you, when required by law.
• Using cookies or other tracking technologies to personalize content or advertising, in accordance with our Cookie Policy.

You have the right to withdraw your consent at any time by contacting us or through the tools provided on our platform. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

Legal Obligation:

We may process your personal data when required by legal obligations, including compliance with applicable laws, regulations, legal processes, or government requests. This includes:

• Complying with tax, accounting, and reporting obligations.
• Responding to valid legal requests, such as subpoenas, court orders, or other legal processes.

Vital Interests:

In exceptional cases, we may process personal data when it is necessary to protect your vital interests or those of another individual. This is typically applicable in emergency situations, such as where the data is necessary to prevent harm or protect life.

Sharing of Information

Merlinx shares your information in limited circumstances, including:

Service Providers

We engage trusted third-party providers to assist with our services, including payment processors, cloud storage services, analytics providers, and email delivery services. These providers only have access to your information to perform specific tasks on our behalf, and they must adhere to privacy and security obligations consistent with this Privacy Policy.

With Other Users and Customer Interactions

Information such as your business profile and customer-facing responses may be presented to customers or end-users interacting with your Merlinx agent(s). Personal contact information will not be shared with third parties without your explicit consent, except as necessary to provide the service (for example, transmitting lead details to systems you have connected).

Legal Obligations

We may disclose personal information if required to do so by law or if such disclosure is necessary to comply with a valid legal request from a regulatory authority.

Corporate Transactions

In the event of a merger, acquisition, reorganization, or sale of Merlinx’s assets, personal information may be transferred as part of the transaction. In such cases, we will provide notice before your personal information is transferred and becomes subject to a different privacy policy.

Cookies and Tracking Technologies

Merlinx uses cookies and similar tracking technologies to collect information about how users interact with our platform. This helps us optimize user experience, improve functionality, and deliver personalized content.

Types of Cookies Used

• Essential Cookies: Necessary for basic platform functionality (e.g., user authentication, security).
• Analytics Cookies: Used to gather information on how users navigate the platform, including the most visited pages and any errors encountered.
• Functionality Cookies: Enable the platform to remember your settings and preferences, such as language and region.
• Advertising Cookies: Allow us to deliver personalized ads based on your interactions with the platform.

Managing Cookies

You can control or disable cookies through your browser settings. However, disabling cookies may affect the functionality of Merlinx and limit your ability to use certain features.

Data Security

Merlinx is committed to protecting your personal information using industry-standard security measures. These measures include:

• Data Encryption: All sensitive information, including payment details, is encrypted during transmission using SSL (Secure Socket Layer) technology.
• Access Controls: Access to personal data is restricted to authorized personnel who are required to follow strict confidentiality obligations.
• Security Audits: We use world class data centers that performs regular audits that are conducted to assess vulnerabilities and ensure compliance with industry standards such as ISO 27001 and PCI DSS.
• While we implement robust security measures, no system is entirely foolproof. In the event of a data breach, Merlinx will notify affected users and relevant authorities as required by law.

Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Right to Access and Update

You can access and update your personal information at any time by logging into your account settings.

Right to Data Portability

You may request a copy of your data in a machine-readable format for your own use or to transfer to another service provider.

Right to Deletion

You can request that we delete your account and any personal data associated with it by contacting [Insert Contact Information]. Please note that certain legal obligations may require us to retain some data.

Right to Object

You have the right to object to the processing of your personal data for direct marketing purposes or when processing is based on our legitimate interest.

Right to Withdraw Consent

If you have provided consent for data processing, you may withdraw it at any time. However, withdrawing consent will not affect the lawfulness of data processing before the withdrawal.

International Data Transfers

Merlinx may transfer and process your data outside your home country, including to countries that may not provide the same level of data protection. In such cases, we ensure that appropriate safeguards, such as Standard Contractual Clauses (SCCs) or other recognized legal mechanisms, are in place to protect your information.

Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including for legal, accounting, and reporting obligations. You may request the deletion of your personal data, and we will comply unless retention is required for legitimate business or legal purposes.

Children’s Privacy

Merlinx is not intended for children under the age of 18. We do not knowingly collect personal information from individuals under 18. If we discover that a child has provided personal data, we will take steps to delete that information.

Data Breach Notification

In the event of a data breach that affects your personal information, Merlinx will promptly notify you and the appropriate regulatory authorities, providing details about the breach and any steps you can take to protect yourself.

Modifications to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the updated version on the platform. Continued use of Merlinx following such changes constitutes your acceptance of the updated policy.

Governing Law

This Privacy Policy, and any disputes arising out of or related to it, shall be governed by and construed in accordance with the laws of the DIFC laws will apply to any matters relating to the use of Merlinx and its services.

Dispute Resolution

All disputes arising out of or in connection with this Privacy Policy, including any question regarding its existence, validity, or termination, shall be subject to the exclusive jurisdiction of the Dubai International Financial Centre (DIFC) Courts.

Indemnification

You agree to indemnify, defend, and hold harmless Merlinx, its affiliates, officers, directors, employees, agents, and service providers from and against any and all claims, liabilities, damages, losses, costs, expenses, or fees (including reasonable attorney’s fees) that arise from or relate to:

• Your violation of this Privacy Policy.
• Your use of the Platform or services.
• Your violation of any rights of another party, including intellectual property or privacy rights.
• Any other actions connected with your use of Merlinx’s services.

Merlinx reserves the right, at its own expense, to assume exclusive defense and control of any matter subject to indemnification by you, in which event you will fully cooperate with Merlinx in asserting any available defenses.

Limitation of Liability

To the maximum extent permitted by applicable law, Merlinx, its affiliates, officers, directors, employees, agents, and service providers shall not be liable for any indirect, incidental, special, consequential, or punitive damages, or any loss of profits or revenues, whether incurred directly or indirectly, or any loss of data, use, goodwill, or other intangible losses, resulting from:

• Your access to or use of, or inability to access or use, the Platform or services.
• Any unauthorized access to, use of, or alteration of your transmissions or content.
• Any other matter relating to the Platform or services.

For the avoidance of doubt, in no event shall Merlinx’s total liability for all claims related to the services exceed the amount you paid to Merlinx in the twelve (12) months preceding the date of the event giving rise to the liability. This amount is limited to the subscription plan fees you paid for using Merlinx.

Contact Us

If you have any questions or concerns regarding this Privacy Policy or how your personal data is handled, please contact us at: legal@dxwand.com