MFMSOFT PRIVACY NOTICE

Last Updated: 10-04-2025

Welcome to MFMsoft—an AI-powered solution which enables MFMsoft to capture real-time consumer transactional data directly from operators who sell consumer product companies goods to consumers through their restaurtant or retail establishment. This Privacy Notice explains how MFMsoft, LLC ( “MFMsoft”, “we”, “us” or “our”) collects, uses, discloses, and otherwise processes personal data in connection with the operation of our website at mfmsoft.com, the provision of our services, as well as any specific product, service, or application that references or links to this Privacy Notice

This Privacy Notice does not address our privacy practices relating to MFMsoft job applicants, employees and other employment-related individuals, nor data that is not subject to applicable data protection laws (such as deidentified information or information that does not relate to, or is not linkable to any identified or identifiable individual). This Privacy Notice is also not a contract and does not create any legal rights or obligations not otherwise provided by law.

Data protection laws sometimes differentiate between “controllers” and “processors” of personal data. A “controller” determines the purposes and means (the why and how) of processing personal data. A “processor,” which is sometimes referred to as a “service provider,” processes personal data on behalf of a controller subject to the controller’s instructions.

This Privacy Notice describes our privacy practices where we are acting as the controller of personal data. However, this Privacy Notice does not cover or address how our customers may process personal data when they use our services, or how we may process personal data on their behalf in accordance with their instructions where we are acting as their processor, such as when we grant access to our services to customers’ authorized users. As a result, we recommend referring to the privacy notice of the customer with which you have a relationship for information on how they engage processors, like us, to process personal data on their behalf. In addition, we are generally not permitted to respond to individual requests relating to personal data we process on behalf of our customers, so we recommend directing any requests to the relevant customer.

The categories of personal data we collect depend on how you interact with us and our services. For example, you may provide us your personal data directly when you contact us or interact with us, or sign up to our services (either on your own behalf or as the administrative contact for a corporate customer).

We also collect personal data automatically when you interact with our websites and other services and may also collect personal data from other sources and third parties.

We collect the following categories of personal data individuals provide us:

1. Contact Information, including first and last name, email address, mailing address, and communication preferences. We use this information to communicate with you directly about our services, respond to your questions and to send you marketing communications in accordance with your preferences.
2. Professional Information, including job title, company name, professional background, and the nature of your relationship with us. We use this information primarily to communicate with you or the customer you represent about our services, to determine how we communicate with you, to administer your or the customer’s account, to provide you with our services, and for customer support purposes.
3. Account information, such as the login credentials for any account you have on our services. We use this information primarily to grant you access to certain features of our services.
4. Feedback and Support Information, including the contents of custom messages sent through the forms, email addresses, or other contact information we make available to customers, as well as recordings of calls with us, where permitted by law (including through the use of automated tools provided by us or our third-party providers). We use this information primarily to investigate and respond to your inquiries, to communicate with you via online chat, email, phone, text message or social media, and to improve our products and services.

If you choose to contact us, we may need additional information to fulfill the request or respond to your inquiry. We may provide additional privacy disclosures where the scope of the request we receive or personal data we require fall outside the scope of this Privacy Notice. In that case, the additional privacy disclosures will govern how we may process the information you provide at that time.

We, and our third-party partners, automatically collect information you provide to us and information about how you access and use our website, and our products and services when you engage with us. We typically collect this information through the use of a variety of our own and our third-party partners’ automatic data collection technologies, including (i) cookies or small data files that are stored on an individual’s computer and (ii) other, related technologies, such as web beacons, pixels, embedded scripts, mobile SDKs, location-identifying technologies and logging technologies. Information we collect automatically about you may be combined with other personal information we collect directly from you or receive from other sources.

We, and our third-party partners, use automatic data collection technologies to automatically collect the following data when you use our services or otherwise engage with us:

1. Information About Your Device and Network, including the device type, manufacturer, and model, operating system, IP address, browser type, Internet service provider, and unique identifiers associated with you, your device, or your network (including, for example, a persistent device identifier or advertising ID). We employ third-party technologies designed to allow us to recognize when two or more devices are likely being used by the same individual and may leverage these technologies (where permitted) to link information collected from different devices.
2. Information About the Way Individuals Use Our Services and Interact With Us, including the site from which you came, the site to which you are going when you leave our services, how frequently you access our services, whether you open emails or click the links contained in emails, whether you access our services from multiple devices, and other browsing behavior and actions you take on our services (such as the pages you visit, the content you view, videos you watch, the communications you have through our services, and the content, links and ads you interact with). We employ third-party technologies designed to allow us to collect detailed information about browsing behavior and actions that you take on our services, which may record your mouse movements, scrolling, clicks, and keystroke activity on our services and other browsing, search or purchasing behavior. These third-party technologies may also record information you enter when you interact with our products or services, or engage in chat features or other communication platforms we provide.
3. Information About Your Location, including general geographic location that we or our third-party providers may derive from your IP address.

All of the information collected automatically through these tools allows us to improve your customer experience. For example, we may use this information to enhance and personalize your user experience, to keep you logged in when you access certain features of our services, monitor and improve our website, products and services, to offer communications features such as live and automated chat, and to improve the effectiveness of our website, products, services, communications and customer service. We may also use this information to: (a) provide and monitor the effectiveness of our services; (b) monitor aggregate metrics such as total number of visitors, traffic, usage, and demographic patterns on our website; (c) diagnose or fix technology problems; and (d) otherwise to plan for and enhance our website, products and services.

For information about the choices you may have in relation to our use of automatic data collection technologies, please refer to the Your Privacy Choices section below.

We may receive the same categories of personal data as described above from the following sources and other parties:

1. Employers: If you interact with our services in connection with your employment, we may obtain personal data about you from your employer or another company for which you work. For example, we may obtain your contact information from your employer to allow us to communicate with you about your employer’s customer relationship with us.
2. Other Customers: We may receive your personal data from our other customers. For example, a customer may provide us with your contact information as a part of a referral.
3. Social Media: When you interact with our services through other social media networks, such as when you follow us or share our content on other social networks, we may receive some information that you permit the social network to share with third parties. The data we receive is dependent upon your privacy settings with the social network, and may include profile information, profile picture, username, and any other information you permit the social network to share with third parties. You should always review and, if necessary, adjust your privacy settings on third-party websites and social media networks and services before sharing information and/or linking or connecting them to other services. We use this information primarily to operate, maintain, and provide to you the features and functionality of our products and services, as well as to communicate directly with you, such as to send you messages about features that may be of interest to you.
4. Service Providers: Our service providers that perform services on our behalf, such as analytics and certain marketing providers, collect personal data and often share some or all of this information with us. For example, we receive personal data you may submit in response to requests for feedback to our survey providers.
5. Other Sources: We may also collect personal data about you from other sources, including publicly available sources, third-party data providers, brand partnerships, or through transactions such as mergers and acquisitions.
6. Inferences: We may generate inferences or predictions about you and your interests and preferences based on the other personal data we collect and the interactions we have with you.

In addition to the primary purposes for using personal data described above, we may also use personal data we collect to:

1. Fulfill or meet the reason the information was provided, such as to fulfill our contractual obligations, to facilitate payment for our products and services, or to deliver the services requested;
2. Manage our organization and its day-to-day operations;
3. Communicate with you, including via email, text message, chat, social media and/or telephone calls;
4. Facilitate the relationship we have with you and, where applicable, the company you represent;
5. Request you provide us feedback about our product and service offerings;
6. Address inquiries or complaints made by or about an individual in connection with our products or services;
7. Create and maintain accounts for our users;
8. Market our products and services to you, including through email, phone, text message, push notification, and social media;
9. Administer, improve, and personalize our products and services, including by recognizing you and remembering your information when you return to our products and services;
10. Develop, operate, improve, maintain, protect, and provide the features and functionality of our products and services;
11. Identify and analyze how you use our products and services;
12. Create aggregated or de-identified information that cannot reasonably be used to identify you, which information we may use for purposes outside the scope of this Privacy Notice;
13. Conduct research and analytics on our user base and our products and services, including to better understand the demographics of our users;
14. Improve and customize our products and services to address the needs and interests of our user base and other individuals we interact with;
15. Test, enhance, update, and monitor the products and services, or diagnose or fix technology problems;
16. Help maintain and enhance the safety, security, and integrity of our property, products, services, technology, assets, and business;
17. Defend, protect, or enforce our rights or applicable contracts and agreements (including our Terms of Use), as well as to resolve disputes, to carry out our obligations and enforce our rights, and to protect our business interests and the interests and rights of third parties;
18. Detect, prevent, investigate, or provide notice of security incidents or other malicious, deceptive, fraudulent, or illegal activity and protect the rights and property of MFMsoft and others;
19. Facilitate business transactions and reorganizations impacting the structure of our business;
20. Comply with contractual and legal obligations and requirements;
21. Fulfill any other purpose for which you provide your personal data, or for which you have otherwise consented.

In order to provide our services, we collect real-time transaction data from consumer-facing businesses. The data we collect is limited to items purchased, time and date of the transaction, quantity, price, and anything that is related to the transaction, excluding the buyer’s information. It is not associated with,related to, or reasonably linked to any identified or identifiable individual.

If you are in the European Economic Area (“EEA”) or United Kingdom, we rely on the following lawful bases for processing your personal data as described above:

Processing purpose	Personal data we use	Lawful basis we rely on
Communicate with you in connection with providing our services to, and managing our contractual relationship with you or the customer you represent, and administering your or the relevant customer’s account on the services.	Contact Information Professional Information Account Information	If you are the customer, the processing is necessary for the performance of a contract with you. If you are the primary contact for a corporate customer, the processing is necessary for our legitimate interests, namely administering our relationship with customers.
Communicating with you or the company you represent in connection with marketing and promoting the services.	Contact Information Professional Information	The processing is necessary for our legitimate interests, namely promoting and marketing our services. Where required by law, we rely on your consent.
Providing customer support.	Contact Information Professional Information Feedback and Support Information	If you are the customer, the processing is necessary for the performance of a contract with you. If you contact us on behalf of a corporate customer, we process this personal information for this purpose as a processor on behalf of the relevant customer.
Technical operation of our website.	Information About Your Device and Network Information About the Way Individuals Use Our Services and Interact With Us	The processing is necessary for the performance of a contract with you.
Technical operation of our services.	Information About Your Device and Network Information About the Way Individuals Use Our Services and Interact With Us	If you are the customer, the processing is necessary for the performance of a contract with you. If you contact us on behalf of a corporate customer, we process this personal information for this purpose as a processor on behalf of the relevant customer.
Ensuring the security of, and identifying and preventing fraudulent or malicious use of our website and services.	Information About Your Device and Network Information About the Way Individuals Use Our Services and Interact With Us Information About Your Location	The processing is necessary for our legitimate interests, namely ensuring the security and integrity of our website and services.
Monitoring and analysing the performance of our website and services, fixing errors on our website and services, identifying ways in which we can improve the website and services and developing new features and functionalities on the services.	Information About Your Device and Network Information About the Way Individuals Use Our Services and Interact With Us Information About Your Location Feedback and Support Information	Where required by applicable law, we rely on your consent. Where permitted by applicable law, the processing is necessary for our legitimate interests, namely monitoring the performance of our website and services and identifying bug fixes and improvements.

The following privacy choices are made available to all individuals with whom we interact.

1. Email Communication Preferences: You can stop receiving promotional email communications from us by clicking on the “unsubscribe” link provided in any of our email communications. Please note you cannot opt-out of service-related email communications (such as, account verification, transaction confirmation, or service update emails).
2. Direct Mailing Preferences: You can stop receiving promotional direct mail communications from us by contacting us at [email protected].Please note this opt-out does not affect any mailings that are controlled by third parties that may feature or mention our services.

Where we have your consent for the processing of your personal data (e.g., when you opt in to receive certain types of marketing communications from us), you may withdraw your consent by following the instructions provided when your consent was requested or by contacting us as set forth in the Contact Us section below.

Where a MFMsoft-specific preference manager or privacy setting is not available, you may be able to utilize third-party tools and features to further restrict our use of automatic data collection technologies. For example, (i) most browsers allow you to change browser settings to limit automatic data collection technologies on websites, (ii) most email providers allow you to prevent the automatic downloading of images in emails that may contain automatic data collection technologies, and (iii) many devices allow you to change your device settings to limit automatic data collection technologies for device applications. Please note that blocking automatic data collection technologies through third-party tools and features may negatively impact your experience using our services, as some features and offerings may not work properly or at all. Depending on the third-party tool or feature you use, you may not be able to block all automatic data collection technologies or you may need to update your preferences on multiple devices or browsers. We do not have any control over these third-party tools and features and are not responsible if they do not function as intended.

If you have any questions about reviewing, modifying, or deleting your personal data, you can contact us directly at [email protected]. We may not be able to modify or delete your personal data in all circumstances.

The device and/or platform you use to interact with us (such as you mobile device or social media provider), may provide you additional choices with regard to the data you choose to share with us. For example, many mobile devices allow you to change your device permissions to prevent our products and services from accessing certain types of information from your device (such as your contact lists or precise geolocation data), and many social media platforms allow you to change your platform permissions to prevent integrated products and services from accessing certain types of information connected with your profile. Please refer to your device or platform provider’s user guides for additional information.

If you are in the EEA or UK, in addition to the choices set out above, you have the following rights in respect of the personal data that we process:

1. Right of access. You have the right to obtain:
   
   1. confirmation of whether, and where, we are processing your personal data;
   2. information about the categories of personal data we are processing, the purposes for which we process your personal data and information as to how we determine applicable retention periods;
   3. information about the categories of recipients with whom we may share your personal data; and
   4. a copy of the personal data we hold about you.
2. Right of portability. You have the right, in certain circumstances, to receive a copy of the personal data you have provided to us in a structured, commonly used, machine-readable format that supports re-use, or to request the transfer of your personal data to another person.
3. Right to rectification. You have the right to obtain rectification of any inaccurate or incomplete personal data we hold about you without undue delay.
4. Right to erasure. You have the right, in some circumstances, to require us to erase your personal data without undue delay if the continued processing of that personal data is not justified.
5. Right to restriction. You have the right, in some circumstances, to require us to limit the purposes for which we process your personal data if the continued processing of the personal data in this way is not justified, such as where the accuracy of the personal data is contested by you.

Right to object. You also have a right, in some circumstances, to object to any processing based on our legitimate interests. There may, however, be compelling reasons for continuing to process your personal data, and we will assess and inform you if that is the case.

If you wish to exercise any of the above rights, please contact us as set forth in the Contact Us section below. We may ask you to provide information to confirm your identity or help us locate the personal data in respect of which you are exercising your rights.

You also have the right to lodge a complaint to your national data protection authority. If you are in the EEA, you can find your local data protection authority at https://www.edpb.europa.eu/about-edpb/about-edpb/members_en. If you are in the UK, you have an additional right to complain to us, as well as a right to complain to the national data protection authority (the ICO), which can be contacted using the details at https://ico.org.uk/global/contact-us/.

Our services are not directed to, and we do not intend to, or knowingly, collect or solicit personal data from children under the age of 13. If an individual is under the age of 13, they should not use our services or otherwise provide us with any personal data either directly or by other means. If a child under the age of 13 has provided personal data to us, we encourage the child’s parent or guardian to contact us to request that we remove the personal data from our systems. If we learn that any personal data we collect has been provided by a child under the age of 13, we will promptly delete that personal data.

We will usually retain the personal data we collect about you for no longer than reasonably necessary to fulfil the purposes for which it was collected, and in accordance with our legitimate business interests and applicable law. However, if necessary, we may retain personal data for longer periods of time as required under applicable law or as needed to resolve disputes or protect our legal rights.

To determine the appropriate duration of the retention of personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of personal data and if we can attain our objectives by other means, as well as our legal, regulatory, tax, accounting, and other applicable obligations.

Once retention of the personal data is no longer reasonably necessary for the purposes outlined above, we will either delete or deidentify the personal data or, if that is not possible (for example, because personal data has been stored in backup archives), we will securely store the personal data and isolate it from further active processing until deletion or deidentification is possible.

Our services may include links to third-party websites, plug-ins, applications and other services. Except where we post, link to or expressly adopt or refer to this Privacy Notice, this Privacy Notice does not apply to any personal data practices of third parties. To learn about the personal data practices of third parties, please visit their respective privacy notices.

We may update this Privacy Notice from time to time. When we make changes to this Privacy Notice, we will change the date at the beginning of this Privacy Notice. If we make material changes to this Privacy Notice, we will notify individuals by email to their registered email address, by prominent posting on this website or our other platforms, or through other appropriate communication channels. All changes shall be effective from the date of publication unless otherwise provided.

If you have any questions or requests in connection with this Privacy Notice or other privacy-related matters, please send an email to [email protected].