Privacy Policy
Last updated: March 16, 2026 | Effective: March 16, 2026
Summary: We respect your privacy. We collect minimal data necessary to provide our services, never sell your personal information, and give you full control over your data.
1. Introduction
Momey ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, applications, and services (collectively, the "Services").
This policy applies to all users worldwide and incorporates requirements from:
- GDPR (European Union General Data Protection Regulation)
- CCPA/CPRA (California Consumer Privacy Act / California Privacy Rights Act)
- LGPD (Brazil's Lei Geral de Proteção de Dados)
- POPIA (South Africa's Protection of Personal Information Act)
- PDPA (Various Asia-Pacific Data Protection Acts)
- PIPEDA (Canada's Personal Information Protection and Electronic Documents Act)
2. Information We Collect
2.1 Information You Provide
- Account Information: Name, email address, phone number when you register
- Profile Information: Business name, preferences, settings
- Communications: Messages you send through our chat system
- Payment Information: Billing details processed securely via our payment processor
2.2 Automatically Collected Information
- Device Information: Browser type, operating system, device identifiers
- Usage Data: Pages visited, features used, time spent on pages
- Log Data: IP address, access times, referring URLs
- Cookies: See our Cookie Policy for details
2.3 Information from Third Parties
- Social Login: If you sign in via Google or other providers
- Analytics Partners: Aggregated usage statistics
3. How We Use Your Information
We use your information to:
- Provide, maintain, and improve our Services
- Process transactions and send related information
- Send technical notices, updates, and support messages
- Respond to your comments, questions, and requests
- Analyze usage patterns to improve user experience
- Detect, prevent, and address technical issues and fraud
- Comply with legal obligations
4. Legal Bases for Processing (GDPR)
Under GDPR, we process your data based on:
| Purpose | Legal Basis |
|---|---|
| Providing Services | Contract performance |
| Analytics (with consent) | Consent |
| Marketing (with consent) | Consent |
| Security & Fraud Prevention | Legitimate interest |
| Legal Compliance | Legal obligation |
6. Your Rights
Depending on your location, you have the right to:
Access
Request a copy of your personal data
Rectification
Correct inaccurate or incomplete data
Erasure
Request deletion of your data ("right to be forgotten")
Portability
Receive your data in a machine-readable format
Restriction
Limit how we process your data
Object
Object to processing based on legitimate interests
Withdraw Consent
Revoke consent at any time
Lodge Complaint
File a complaint with supervisory authority
To exercise these rights, contact us at privacy@momey.com or use the "Manage My Data" feature in your account settings.
7. Data Retention
We retain your data for as long as:
- Your account is active
- Needed to provide services to you
- Required by law (e.g., tax records, legal disputes)
After account deletion, we retain anonymized analytics data but delete personal information within 30 days, except where legally required to retain it longer.
8. International Data Transfers
Your data may be transferred to and processed in countries outside your residence. We ensure appropriate safeguards through:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Data Processing Agreements with all service providers
- Compliance with applicable data protection frameworks
9. Security
We implement industry-standard security measures including:
- TLS/SSL encryption for data in transit
- AES-256 encryption for data at rest
- Regular security audits and penetration testing
- Access controls and authentication
- Employee security training
While we strive to protect your data, no method of transmission over the Internet is 100% secure. We encourage you to use strong passwords and enable two-factor authentication.
10. Children's Privacy
Our Services are not intended for children under 16 (or the applicable age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately.
11. Regional Privacy Rights
11.1 European Economic Area (EEA) Residents
Under GDPR, you have enhanced rights as described in Section 6. Our Data Protection Officer can be reached at dpo@momey.com.
11.2 California Residents (CCPA/CPRA)
California residents have the right to:
- Know what personal information we collect and how it's used
- Delete personal information
- Opt-out of the sale of personal information (we do not sell data)
- Non-discrimination for exercising privacy rights
- Correct inaccurate personal information
- Limit use of sensitive personal information
"Do Not Sell or Share My Personal Information": We do not sell or share personal information as defined under CCPA/CPRA.
11.3 Brazil Residents (LGPD)
Brazilian residents have similar rights under LGPD. Contact our DPO for assistance.
11.4 Other Jurisdictions
We comply with local data protection laws worldwide. Contact us with jurisdiction-specific questions.
12. Contact Us
For privacy-related inquiries:
Email: privacy@momey.com
Data Protection Officer: dpo@momey.com
Mail:
Momey Inc.
Attn: Privacy Team
[Address to be added]
We aim to respond to all legitimate requests within 30 days (or sooner where required by law).
Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes by posting the new policy on this page and updating the "Last Updated" date. For significant changes, we may also send email notification.