Privacy Policy

Last updated June 17, 2026

1. About this policy

This Privacy Policy explains how MisaLabs Inc ("MisaLabs", "we", "us", "our") collects, uses and protects personal data when you visit our website, contact us, do business with us, or apply for a job with us.

MisaLabs is an enterprise AI platform company. Our platform supports the full lifecycle of AI applications and can be deployed across cloud, hybrid and on-premises environments.

If you have any questions about this policy or your personal data, you can contact us at:

Email: privacy@misalabs.ai

Post:
MisaLabs Inc.
3717 Buchanan St
San Francisco, CA 94123
United States

2. When MisaLabs is a "controller" and when it is a "processor"

This policy covers the personal data for which MisaLabs is the controller — that is, where we decide why and how the data is used. This mainly relates to our website, our marketing and business contacts, and recruitment.

When our customers use the MisaLabs platform to process personal data, the customer is the controller of that data and MisaLabs acts only as a processor on the customer's instructions. This policy does not apply to that processing. If you believe your personal data is being processed by an organization that uses MisaLabs, please contact that organization directly to exercise your rights; we will support our customer in responding.

3. The personal data we collect and why

Website visitors

What we collect: IP address, device and browser information, pages viewed and usage data, cookie and similar identifiers, and any information you submit through forms.

Why: To operate, secure and improve our website and understand how it is used.

Lawful basis: Our legitimate interests in running and securing our website; and your consent for analytics and non-essential cookies (see Section 4).

People who contact us or request a demo

What we collect: Your name, business contact details, employer and role, and the content of your enquiry.

Why: To respond to your enquiry, provide information you request, and discuss our products and services.

Lawful basis: Our legitimate interests in responding to enquiries and pursuing business relationships; and, where relevant, taking steps at your request before entering into a contract.

Customers, suppliers and partners (business contacts)

What we collect: Name, business contact details, role, and contractual and billing information.

Why: To manage our relationship, provide and receive services, administer contracts, and handle invoicing and payments.

Lawful basis: Performance of a contract; compliance with legal obligations (such as accounting and tax); and our legitimate interests in managing our business relationships.

Marketing subscribers

What we collect: Name, business contact details and your marketing preferences.

Why: To send you updates, content and information about our products and services that may interest you.

Lawful basis: Your consent, and/or our legitimate interests in business-to-business marketing where permitted. You can opt out at any time using the unsubscribe link in our emails or by contacting us.

Job applicants

What we collect: Your contact details, CV/résumé, work history and qualifications, interview notes, and eligibility-to-work information.

Why: To assess your application and manage our recruitment process.

Lawful basis: Taking steps at your request before entering into a contract, and our legitimate interests in recruitment; with your consent if we keep your details for future opportunities.

We do not use your personal data to make solely automated decisions that produce legal or similarly significant effects about you.

4. Cookies and similar technologies

Our website uses cookies and similar technologies. Strictly necessary cookies are used to make the site work and keep it secure. Other cookies — such as analytics and marketing cookies — are only used with your consent.

When you first visit our site, you can accept, reject or manage non-essential cookies through our cookie banner, and you can change your choices at any time through our cookie settings or your browser. For more detail on the specific cookies we use, their purpose and how long they last, see our Cookie Policy.

5. Who we share personal data with

We share personal data only where necessary, with:

• Service providers acting on our behalf — for example, website hosting, analytics, customer-relationship management, email and marketing, payment processing, and IT and security providers. They may only use the data to provide services to us.
• Professional advisers, such as auditors and legal advisers.
• Authorities and regulators, where we are required or permitted by law.
• Other parties in connection with a business reorganization, merger or sale, subject to appropriate protections.

We do not sell your personal data.

6. International data transfers

MisaLabs is based in the United States, and some of our service providers are located in other countries. Where we transfer personal data from the United Kingdom or the European Economic Area to a country that has not been recognized as providing an adequate level of protection, we put appropriate safeguards in place — such as the European Commission's Standard Contractual Clauses and the UK International Data Transfer Addendum — together with any additional measures required. You can contact us for more information about these safeguards.

7. How long we keep personal data

We keep personal data only for as long as we need it for the purposes described in this policy, and to meet our legal, accounting, tax and contractual obligations. For example, we keep enquiry and marketing data until you opt out or after a period of inactivity, and we keep contract and billing records for the period required by law. When we no longer need personal data, we securely delete or anonymize it.

8. How we protect personal data

We use appropriate technical and organizational measures to protect personal data, including access controls on a least-privilege basis, strong authentication, encryption of data in transit and, where appropriate, at rest, logging and monitoring, and secure development practices.

9. Your rights

Depending on your location and the circumstances, you may have the right to:

• access the personal data we hold about you;
• have inaccurate data corrected;
• have your data erased;
• restrict or object to how we use your data;
• receive your data in a portable format;
• withdraw consent at any time, where we rely on consent (this does not affect processing carried out before you withdraw it); and
• lodge a complaint with a data protection authority.

To exercise any of these rights, please contact us at privacy@misalabs.ai. We will respond within the time required by applicable law. We may need to verify your identity before acting on your request.

10. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date above and, where appropriate, notify you. Please review this page periodically.

11. How to contact us

If you have any questions, concerns or requests regarding this policy or your personal data, please contact:

MisaLabs Privacy Officer
Email: privacy@misalabs.ai

MisaLabs Inc.
3717 Buchanan St
San Francisco, CA 94123
United States