Privacy Policy

1. Data We Collect

• Account data: name, email, company name, role, password hash, preferences, and authentication logs.
• Billing data: subscription plan, payment status, invoices, and limited billing identifiers processed by Paddle. We do not store full payment card numbers.
• Usage data: IP address, device/browser type, pages viewed, feature usage, audit events, API calls, error logs, and security signals.
• Customer Content: forms, submissions, attachments, workflow records, and configurations you upload or create in the Service.
• Communications: support requests, emails, and messages you send to us.
• Cookies and similar technologies as described in our Cookie Policy.

2. How We Use Data

• Provide, operate, maintain, and secure the Service.
• Authenticate users, enforce permissions, and prevent fraud or abuse.
• Process subscriptions, invoices, and account administration.
• Send service, transactional, and security-related communications.
• Improve features, troubleshoot issues, and develop new functionality, including AI-assisted tools.
• Comply with legal obligations and respond to lawful requests.
• Enforce our Terms and protect the rights, property, and safety of Makeen, users, and others.

3. Legal Bases (where applicable)

Where laws such as the GDPR require a legal basis, we rely on: performance of a contract; legitimate interests in operating and securing the Service; compliance with legal obligations; and consent where required (for example, certain marketing cookies or optional communications).

4. How We Share Data

We do not sell personal data. We share data only as described below:

• Service providers and subprocessors that help us host, operate, bill, email, monitor, or support the Service (for example, cloud infrastructure, Paddle, email delivery, and AI model providers where enabled).
• Your organization administrators and authorized users within your company workspace.
• Third parties you configure through connectors, webhooks, exports, or public share links.
• Authorities, regulators, or parties to a legal process when required by law or to protect rights and safety.
• Successors in the event of a merger, acquisition, or asset sale, subject to this Privacy Policy.

5. International Transfers

We may process and store data in Oman and other countries where we or our providers operate. When transferring personal data internationally, we implement appropriate safeguards such as contractual protections and security controls consistent with applicable law.

6. Retention

We retain personal data for as long as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary by data type. Customer Content is retained according to your subscription, workspace settings, and applicable law. Backups may persist for a limited period after deletion.

7. Security

We implement administrative, technical, and organizational measures designed to protect personal data. See our Security Statement for more detail. No method of transmission or storage is completely secure.

8. Your Rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing, and to data portability or withdrawal of consent. To exercise rights relating to your Mauqe account, contact privacy@mauqe.com. We may need to verify your identity.

If we process personal data on behalf of your organization, please contact your organization administrator or refer to our Data Processing Agreement.

9. Children's Privacy

The Service is not directed to children under 18, and we do not knowingly collect personal data from children. If you believe a child has provided us data, contact privacy@mauqe.com.

10. Changes and Contact

We may update this Privacy Policy from time to time. Material changes will be posted with an updated effective date.

Data protection contact: privacy@mauqe.com

Makeen Technology — Mauqe, Sultanate of Oman