Privacy for madarX services.

This Privacy Policy explains how madarX collects, uses, protects, and deletes personal information when you visit madarx.io, use madarX products, or sign in using Google OAuth.

Effective date: June 13, 2026

1. Who we are

madarX builds applied intelligence systems for institutions, governance, regulatory operations, and workflow intelligence. References to “madarX,” “we,” “us,” and “our” mean the operator of madarx.io and related madarX services.

Contact: ak@madarx.io and dbd@madarx.io.

2. Information we collect

Information you provide

Name, email address, organization, and message content when you contact us or request access.
Account and workspace details you choose to add inside a madarX product.
Support, feedback, and operational correspondence.

Information collected automatically

Basic device, browser, IP address, referral URL, page visit, and log data used for security, debugging, and service reliability.
Cookies or similar storage when required for authentication, session continuity, security, or preferences.

Google OAuth information

If you sign in with Google, we may receive the information needed to authenticate you, such as your Google account identifier, name, email address, email verification status, and profile image. If a madarX product requests additional Google permissions, the Google consent screen will list those scopes before access is granted.

3. How we use information

Provide, secure, personalize, and improve madarX services.
Create and manage user accounts, authentication sessions, workspaces, invitations, and permissions.
Respond to inquiries, demos, support requests, and partnership conversations.
Monitor service performance, investigate errors, prevent abuse, and protect users and systems.
Comply with legal, regulatory, accounting, and security obligations.

We do not sell personal information. We do not use Google user data for advertising. We only use Google OAuth data to provide the user-facing features, authentication, and security functions the user authorizes.

4. Google API limited use

madarX’s use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

We request only the Google data needed for the feature being used.
We use Google user data only to provide or improve user-facing functionality, authentication, account security, or support requested by the user.
We do not transfer Google user data to third parties except as necessary to provide the service, comply with applicable law, protect against abuse or security threats, or as part of a user-directed action.
We do not allow humans to read Google user data unless the user asks us to, it is necessary for security or abuse investigation, or it is required by law.
We do not use Google user data to build advertising profiles, serve ads, or train generalized AI models unrelated to the user’s requested madarX service.

5. Sharing and subprocessors

We may share information with trusted service providers that host, secure, authenticate, monitor, or support the service, such as cloud hosting, database, analytics, authentication, email, and infrastructure providers. These providers are permitted to process information only for the services they provide to madarX.

We may also disclose information if required by law, to protect rights and safety, to investigate abuse, or in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate protections.

6. Retention and deletion

We keep personal information only as long as reasonably necessary for the purposes described in this Policy, including security, legal, accounting, and operational needs. Retention periods vary based on the type of data, product configuration, and legal obligations.

You may request access, correction, export, or deletion of your personal information by emailing ak@madarx.io. We may need to verify your identity before completing a request.

7. Security

We use technical and organizational safeguards designed to protect personal information, including access controls, encryption in transit where supported, environment separation, logging, and least-privilege operational practices. No internet service is completely secure, and we cannot guarantee absolute security.

8. International processing

madarX and its service providers may process information in countries other than the one where you live. Where required, we use appropriate safeguards for cross-border transfers.

9. Children

madarX services are not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided personal information, contact us and we will take appropriate steps.

10. Changes

We may update this Privacy Policy from time to time. When we do, we will update the effective date above. Material changes may be communicated through the site or service.