Privacy Policy

We use your information to provide, operate, and improve our services; personalize your experience; process transactions; send service-related communications; respond to your requests and support inquiries; and ensure platform security.

We analyze aggregated, anonymized usage patterns to improve product features, develop new services, and enhance system performance. This analysis never involves sharing identifiable data with third parties.

With your consent, we may send marketing communications about new features, products, or promotions. You can opt out at any time via the unsubscribe link in any marketing email.

Our AI systems process your business data exclusively to deliver intelligent insights, automate responses, and optimize operations within your account. Your data is never used to train general-purpose AI models without your explicit, written consent.

AI-generated responses and recommendations are based on your data and platform-wide patterns. We use anonymized, aggregated data to improve model accuracy, but your proprietary business information is never exposed to other customers.

You retain full control over AI processing preferences. You can adjust automation levels, review AI-generated content before publication, and disable specific AI features at any time through your account settings.

We implement enterprise-grade security measures including AES-256 encryption at rest, TLS 1.3 encryption in transit, and regular third-party penetration testing and security audits.

Access to customer data is restricted through role-based access controls, multi-factor authentication for all employees, and comprehensive audit logging. We follow the principle of least privilege across our entire infrastructure.

Our infrastructure is hosted on SOC 2 Type II certified cloud providers with data centers in the United States. We maintain incident response procedures and will notify affected customers within 72 hours of any confirmed data breach.

We use essential cookies required for platform functionality, including session management, authentication, and security. These cannot be disabled while using our services.

We use analytics cookies (such as Google Analytics) to understand how visitors interact with our website. These cookies collect anonymized data and can be disabled through your browser settings or our cookie preference center.

We do not use third-party advertising cookies or tracking pixels on our platform. We do not participate in cross-site tracking or sell browsing data to advertisers.

Our products integrate with third-party platforms including Google Business Profile, TripAdvisor, Booking.com, Expedia, and various OTAs and channel managers. Data shared with these platforms is governed by their respective privacy policies.

We use trusted service providers for payment processing (Stripe), email delivery, cloud hosting, and analytics. These providers are contractually obligated to protect your data and may only use it to perform services on our behalf.

We will never sell, rent, or trade your personal information to third parties for their marketing purposes. Data sharing is limited to what is necessary to deliver our services and comply with legal obligations.

We retain your account information and business data for as long as your account is active. Upon account termination, you have 30 days to export your data before it is permanently deleted from our active systems.

Backup copies may persist in encrypted backups for up to 90 days after deletion from active systems, after which they are permanently purged.

Certain data may be retained longer where required by law, to resolve disputes, enforce agreements, or for legitimate business purposes such as fraud prevention. We will inform you of any such retention upon request.

Under the California Consumer Privacy Act (CCPA), California residents have the right to know what personal information is collected, request deletion, opt out of the sale of personal information (we do not sell data), and not be discriminated against for exercising these rights.

Under the General Data Protection Regulation (GDPR), EU residents have additional rights including the right to access, rectification, erasure, data portability, restriction of processing, and the right to object to processing. You also have the right to lodge a complaint with a supervisory authority.

To exercise any of these rights, contact us at privacy@multisystems.ai. We will respond to verified requests within 30 days (CCPA) or without undue delay and within one month (GDPR).

Our services are designed for business use and are not directed at individuals under the age of 16. We do not knowingly collect personal information from children.

If we become aware that we have inadvertently collected data from a child under 16, we will take immediate steps to delete that information. If you believe a child has provided us with personal data, please contact us at privacy@multisystems.ai.

Our primary data processing occurs in the United States. If you access our services from outside the US, your data may be transferred to and processed in the United States, where data protection laws may differ from your jurisdiction.

For transfers from the European Economic Area (EEA), we rely on Standard Contractual Clauses approved by the European Commission to ensure adequate data protection. We also implement supplementary technical and organizational measures as needed.

We may update this Privacy Policy periodically to reflect changes in our practices, technologies, legal requirements, or other factors. We will notify you of material changes via email and through a prominent notice on our platform at least 30 days before the changes take effect.

Your continued use of our services after the effective date of any changes constitutes acceptance of the updated policy. We encourage you to review this page periodically for the latest information.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at privacy@multisystems.ai.

You may also reach us through our contact page at multisystems.ai/contact. We aim to respond to all privacy-related inquiries within 5 business days.