Privacy Policy

We collect information you provide directly to us — such as your name, email address, company, and communications when you contact us or engage our services. We also collect usage data automatically when you interact with our platform, including IP address, browser type, pages visited, and referral source. For clients, we may access advertising account data, CRM records, and analytics data as necessary to deliver our services. We do not sell your personal data to third parties.

We use the data we collect to provide, maintain, and improve our services; communicate with you about your account and our services; detect, prevent, and respond to fraud, security incidents, and technical issues; comply with legal obligations; and, with your consent, send you marketing communications. Client advertising and analytics data is used exclusively to deliver and optimize the services we have been engaged to provide.

We work with trusted third-party providers to operate our business, including cloud infrastructure providers, analytics tools, and advertising platforms. These providers access your data only as necessary to perform services on our behalf and are bound by confidentiality obligations. We maintain an up-to-date list of sub-processors and will notify you of material changes. We do not allow third parties to use your data for their own marketing purposes.

We retain personal data for as long as necessary to provide our services and fulfill the purposes described in this policy, unless a longer retention period is required or permitted by law. Client advertising and performance data is retained for the duration of the engagement plus 24 months. You may request deletion of your data at any time, subject to legal and contractual obligations that may require us to retain certain records.

Depending on your jurisdiction, you may have rights including: access to the personal data we hold about you; correction of inaccurate data; deletion of your data; restriction of processing; data portability; and objection to processing based on legitimate interests. To exercise any of these rights, contact us at privacy@supercurve.ai. We will respond to requests within 30 days. We will not discriminate against you for exercising your privacy rights.

We use cookies and similar technologies to operate our website, remember your preferences, and understand how visitors use our site. Essential cookies are required for the site to function and cannot be disabled. Analytics cookies help us understand traffic patterns — these can be disabled without affecting functionality. We do not use third-party advertising cookies on our website. You can manage cookie preferences through your browser settings.

We implement industry-standard security measures including encryption in transit (TLS 1.3) and at rest (AES-256), access controls based on the principle of least privilege, regular security assessments and penetration testing, and incident response procedures with defined SLAs. No method of transmission or storage is 100% secure. In the event of a breach affecting your data, we will notify you in accordance with applicable law.

If you have questions, concerns, or requests related to this Privacy Policy or our data practices, please contact our privacy team at privacy@supercurve.ai. For EU/UK residents, if you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection authority. Our registered address and Data Protection Officer contact are available upon request.