Ship your AI products, faster
Get in touch to learn how AI teams are saving 100+ hours of development time per month
© Copyright H3 Labs Inc, All rights reserved.
This Privacy Policy describes Our policies and procedures on the collection, use, and disclosure of Your information when You use the Service and tells You about Your privacy rights and how applicable laws, including the General Data Protection Regulation (GDPR) and the Health Insurance Portability and Accountability Act (HIPAA), protect You.
We use Your Personal data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.
The words of which the initial letter is capitalized have meanings defined as under. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.
For the purposes of this Privacy Policy:
- Account means a unique account created for You to access our Service or parts of our Service.
- Affiliate means an entity that controls, is controlled by or is under common control with a party, where "control" means ownership of 50% or more of the shares, equity interest or other securities entitled to vote for election of directors or other managing authority.
- Company (referred to as either "the Company", "We", "Us" or "Our" in this Agreement) refers to H3 Labs Inc, Mountain View, CA, 94041.
- Cookies are small data files stored on your computer, mobile device, or other devices by a website. These files contain information such as your browsing history, preferences, and activity on the website, helping the website recognize you on subsequent visits, improve your user experience, and personalize content or ads
- Country refers to: California, United States
- Device means any device that can access the Service such as a computer, a cellphone or a digital tablet.
- Personal Data is any information that relates to an identified or identifiable individual. This includes information that can directly or indirectly identify an individual, such as names, identification numbers, location data, online identifiers, or factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that individual, in accordance with General Data Protection Regulation (GDPR) requirements.
- Protected Health Information (PHI) refers to any individually identifiable health information that is created, received, maintained, or transmitted by the Company, related to an individual's past, present, or future physical or mental health condition, the provision of healthcare, or payment for healthcare services. This information is protected under the Health Insurance Portability and Accountability Act (HIPAA) and includes any data that can be used to identify an individual, such as names, addresses, birthdates, Social Security numbers, and medical records.
- Service refers to the Maxim AI platform, which provides tools for building, evaluating, and monitoring AI applications, including prompt engineering, dataset management, AI performance evaluation, observability, debugging, and real-time alerts. The Service is accessible via the Website https://www.getmaxim.ai.
- Service Provider means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service or to assist the Company in analyzing how the Service is used.
- Third-party Social Media Service refers to any website or any social network website through which a User can log in or create an account to use the Service.
- Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit or other usage statistics).
- Website refers to Maxim AI, accessible from https://www.getmaxim.ai/
- You/Your means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.
While using Our Service, We may ask You to provide Us with certain personally identifiable information that can be used to contact or identify You. Personally identifiable information may include, but is not limited to:
- Email address
- First name and last name
- Date of birth (if required by law or for age verification)
- Phone number
- Address, State, Province, ZIP/Postal code, City
- Health-related data, if applicable, collected in accordance with HIPAA, with explicit consent.
Usage Data is collected automatically when using the Service.
Usage Data may include information such as Your Device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data. Collection of such information, including your IP address, is done with your explicit consent, which is provided by opting into our services. Additionally, data is retained for specific periods in accordance with this Privacy Policy.
When You access the Service by or through a mobile device, We may collect certain information automatically, including, but not limited to, the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data.
We may also collect information that Your browser sends whenever You visit our Service or when You access the Service by or through a mobile device.
The Company allows You to create an account and log in to use the Service through the following Third-party Social Media Services:
- Google
- GitHub
Data Collection via Google or GitHub Sign-In: When you choose to log in to our application using Google or GitHub Sign-In, you provide an explicit consent to us to collect the following information from your Google or GitHub account:
- Your Google or GitHub account email address
- Your Google or GitHub username
- Profile picture (if accessible)
- First and last name (if available)
- Public repositories and related information (for GitHub, if relevant to our services)
Purpose of Data Use: The data collected through Google or GitHub Sign-In is used for:
- Authenticating your identity and providing access to our application.
- Additionally, the data may be used for enhancing user experience and ensuring secure access to the Service, in line with GDPR requirements for transparency in processing.
We process this data based on your explicit consent (Article 6(1)(a) GDPR) and, in the case of any health-related data subject to HIPAA, for legitimate healthcare-related purposes as required.
We will only use your personal data in accordance with applicable laws. The following legal bases apply to our use of your data:
1. Performance of a Contract: We process your Identity and Contact Data, Payment Information, and other relevant information to fulfill our obligations under a contract with you. This includes providing our Services, and processing transactions. If you are an end user of our Services without a direct contract with us, we may rely on our legitimate interests.
2. Legitimate Interest If you are an end user of our Services without a direct contract with us, we may rely on our legitimate interests. We may process your data where it is necessary for our legitimate interests or those of a third party, provided that your rights and interests do not override these interests. Our legitimate interests have been mentioned in the Use of Your Personal Data section of this Privacy Policy. Where the legitimate interests are not specified above, we will clearly explain to you what those legitimate interests are at the time that we collect your information.
3. Consent: In situations where your consent is required, we will use your personal data only after obtaining your explicit consent. You have the right to withdraw your consent at any time, but this will not affect any processing that has already taken place. For GDPR, you may exercise your rights under Articles 15 to 22, including the right to erasure ("right to be forgotten") and the right to data portability. If health-related data is collected, you also have specific rights under HIPAA.
4. Compliance with Legal Obligations: We will process your personal data to comply with our legal obligations under the law. This includes cooperating with regulatory authorities, law enforcement, and other governmental entities as required.
The information obtained from Google or GitHub is stored securely on an encrypted database. We implement the following security measures to protect your data:
- Encryption of sensitive data
- Two-factor authentication for database access.
- Regular security audits.
- Data minimization practices, ensuring only necessary data is stored
- Data breach notification procedures, ensuring prompt reporting in case of unauthorized access to sensitive information
- Access control policies to restrict access to personal data to authorized personnel only.
We do not share the data collected via Google or GitHub Sign-In with third parties, except:
- As necessary to comply with applicable laws and regulations.
- With service providers who assist us in providing the Service, under strict data processing agreements.
- In the event of a business transfer, such as a merger or acquisition, provided that the receiving entity agrees to uphold the same privacy standards.
- With your explicit consent, if required for other purposes.
We respect your rights and strive to honor them. Below, we outline the rights you may have under Chapter 3 of GDPR and how you can exercise them.
To exercise any of these rights, you or an authorized agent may submit a request by emailing us at [email protected]. Upon receiving your request, we may verify your identity by requesting information sufficient to confirm it. If we deny your request, you may have the right to appeal by contacting us at the same email address.
1. Right to Know: You may have the right to know what personal data we process about you. This includes understanding the categories of personal data we collect, the sources of this data, the purposes for its collection, and the third parties with whom we share it
2. Access & Data Portability: You may have the right to request access to a copy of the personal data we hold about you, subject to certain exceptions. In some cases, and where applicable law permits, you also have the right to request the transfer of your personal data to another party in a structured, commonly used, and machine-readable format
3. Right to Deletion: You may have the right to request the deletion of your personal data that we have collected, under certain conditions. For instance, if the data is no longer necessary for the purposes for which it was originally collected, you can request its removal. We will comply with such requests unless there are legal grounds for retaining the data.
4. Right to Correction: You may have the right to request that we correct any inaccurate or incomplete personal data we hold about you. While we will make every effort to rectify inaccuracies, please note that some corrections may not be feasible due to technical limitations or other constraints.
5. Right to Object: You may have the right to object to the processing of your personal data in certain circumstances, including for direct marketing purposes. If you object to processing based on legitimate interests, we will cease processing unless we demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims.
6. Right to Restriction of Processing: You may have the right to request the restriction of the processing of your personal data in certain situations, such as when you contest the accuracy of the data or when you have objected to our processing, but we need to verify whether we have overriding legitimate grounds to continue processing it.
7. Right to Withdraw Consent: Where our processing of your personal data is based on your consent, you have the right to withdraw that consent at any time. You can withdraw your consent by writing to us at [email protected]. Please note that withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal.
8. Right to Complain: If you have concerns about how we collect, use, or share your personal data, you have the right to lodge a complaint with the United States Federal Trade Commission.
We do not engage in decision-making based solely on automated processing that produces legal effects or significantly affects you in a similar way. We do not use automated processing for decisions that impact your legal rights, financial circumstances, or access to essential services.
We use Cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies used are beacons, tags, and scripts to collect and track information and to improve and analyze Our Service. The technologies We use may include:
- Cookies or Browser Cookies. A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of our Service. Unless you have adjusted Your browser setting so that it will refuse Cookies, our Service may use Cookies.
- Web Beacons. Certain sections of our Service and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity). This helps us monitor and improve the effectiveness of our communication.
Cookies can be "Persistent" or "Session" Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser. You can learn more about cookies on TermsFeed website article.
We use both Session and Persistent Cookies for the purposes set out below:
- Necessary / Essential Cookies
- Purpose: These Cookies are essential to provide You with services available through the Website and to enable You to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the services that You have asked for cannot be provided, and We only use these Cookies to provide You with those services.
- Cookies Policy / Notice Acceptance Cookies
- Purpose: These Cookies identify if users have accepted the use of cookies on the Website. We only use non-essential cookies, such as those for tracking and analytics, with your explicit consent. You have the option to accept or refuse non-essential Cookies. By default, no such Cookies are placed without your approval.
- Functionality Cookies
- Purpose: These Cookies allow us to remember choices You make when You use the Website, such as remembering your login details or language preference. The purpose of these Cookies is to provide You with a more personal experience and to avoid You having to re-enter your preferences every time You use the Website.
- Analytics Cookies: We use these to analyze how users interact with our Service to improve its performance. All analytics data is aggregated and anonymized
For more information about the cookies we use and your choices regarding cookies, please visit the Cookies section of our Privacy Policy.
The Company may use Personal Data for the following purposes:
- To provide and maintain our Service, including to monitor the usage of our Service.
- To manage Your Account: to manage Your registration as a user of the Service. The Personal Data You provide can give You access to different functionalities of the Service that are available to You as a registered user.
- For the performance of a contract: the development, compliance and undertaking of the purchase contract for the products, items or services You have purchased or of any other contract with Us through the Service.
- To contact You: To contact You by email, telephone calls, SMS, or other equivalent forms of electronic communication, such as a mobile application's push notifications regarding updates or informative communications related to the functionalities, products or contracted services, including the security updates, when necessary or reasonable for their implementation.
- To provide You with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless You have opted not to receive such information.
- To manage Your requests: To attend and manage Your requests to Us.
- For business transfers: We may use Your information to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Personal Data held by Us about our Service users is among the assets transferred.
- To comply with legal obligations: We may process your personal data where required to comply with laws
- For legitimate interests: We may use your data for data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns, and to evaluate and improve our Service, products, services, marketing, and your experience, provided that such processing does not outweigh your rights and freedoms.
- For other purposes: We may use Your information for other purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our Service, products, services, marketing and your experience.
We may share Your personal information in the following situations:
- With Service Providers: We may share Your personal information with Service Providers to monitor and analyze the use of our Service, to contact You.
- For business transfers: We may share or transfer Your personal information in connection with, or during negotiations of, any merger, sale of Company assets, financing, or acquisition of all or a portion of Our business to another company.
- With Affiliates: We may share Your information with Our affiliates, in which case we will require those affiliates to honor this Privacy Policy. Affiliates include Our parent company and any other subsidiaries, joint venture partners or other companies that We control or that are under common control with Us.
- With processors and sub-processors: We may disclose your personal information to third-party data processors under strict data processing agreements.
- With Your consent: We may disclose Your personal information for any other purpose with Your consent.
We retain your personal data for as long as reasonably necessary to fulfill the purposes outlined in this Privacy Policy, or as required by applicable laws. The duration for which we retain your data depends on the nature of the information, the purpose for which it is processed, and any legal or regulatory requirements.
When your personal data is no longer required by us or our service providers, we will take the appropriate steps to securely destroy, delete, erase, or anonymize the data, in compliance with applicable legal standards.
We may process your personal data in an aggregated or de-identified form for various purposes, such as analyzing the effectiveness of our Services, conducting research, studying user behavior, and improving our platform. This data cannot be linked back to you personally. This includes, but is not limited to:
- Feedback Utilization: When you provide feedback and grant us permission, we may disassociate any identifiable data from your user ID, allowing us to use this information to enhance our Services.
- Policy Enforcement: If our systems identify any content that potentially violates our Terms of Use, we may disassociate such content from your user ID to train our trust and safety systems and improve our internal processes. However, if necessary, we may re-identify this information to enforce our Terms of Service against the responsible user.
- User Behavior Analysis: To continually enhance the user experience, we may aggregate and analyze general user behavior and usage data. This aggregated data does not identify individual users and is used solely for the purpose of improving our Services.
In rare cases, such as to enforce our Terms of Service or comply with legal requirements, we may temporarily re-identify this data. Once the issue is resolved, the data will be re-anonymized or securely deleted. By using our platform, you agree to this data lifecycle management and the associated processes for handling, retaining, and ultimately disposing of your personal data in a secure and lawful manner.
Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of Your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from Your jurisdiction.
Your consent to this Privacy Policy followed by Your submission of such information represents Your agreement to that transfer.
The Company will take all steps reasonably necessary to ensure that Your data is treated securely and in accordance with this Privacy Policy and no transfer of Your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of Your data and other personal information.
We are a U.S.-based company, but your personal data may be transferred to, stored, and processed in countries other than your own, including the United States, where our servers and central operations are located. When we transfer your data internationally, we ensure that it is protected by implementing appropriate safeguards in accordance with applicable data protection laws. This may include entering into standard contractual clauses or other legally recognized mechanisms to ensure that your data receives an adequate level of protection. By using our Services, you consent to the transfer of your personal data to countries outside of your country of residence, including to jurisdictions that may have different data protection rules than your country.
You have the right to delete or request that We assist in deleting the Personal Data that We have collected about You.
Our Service may give You the ability to delete certain information about You from within the Service.
You may update, amend, or delete Your information at any time by signing in to Your Account, if you have one, and visiting the account settings section that allows you to manage Your personal information. You may also contact Us to request access to, correct, or delete any personal information that You have provided to Us.
Please note, however, that We may need to retain certain information when we have a legal obligation or lawful basis to do so.
If the Company is involved in a merger, acquisition or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy.
Under certain circumstances, the Company may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).
The Company may disclose Your Personal Data in the good faith belief that such action is necessary to:
- Comply with a legal obligation
- Protect and defend the rights or property of the Company
- Prevent or investigate possible wrongdoing in connection with the Service
- Protect the personal safety of Users of the Service or the public
- Protect against legal liability
We are committed to ensuring the security of Your Personal Data and will implement appropriate technical and organizational measures to protect it against unauthorized access, disclosure, alteration, or destruction, in compliance with applicable laws, including the General Data Protection Regulation (GDPR) and the Health Insurance Portability and Accountability Act (HIPAA).
While We employ industry-standard security measures such as encryption, firewalls, and secure servers to safeguard Your Personal Data, please be aware that no method of transmission over the Internet or electronic storage is completely secure. Consequently, although We will make reasonable efforts to protect Your Personal Data, We cannot guarantee its absolute security.
In the event of a data breach, we will act swiftly to contain the breach, assess its impact, and mitigate any harm. We will promptly notify affected individuals within 72 hours if there is a risk to their rights and freedoms, providing details of the breach, the steps we are taking to address it, and any actions you should take to protect yourself. We will also report the breach to relevant authorities as required by law, and take measures to prevent future incidents.
Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 13 without verification of parental consent, We take steps to remove that information from Our servers.
If We need to rely on consent as a legal basis for processing Your information and Your country requires consent from a parent, We may require Your parent's consent before We collect and use that information.
Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party's site. We strongly advise You to review the Privacy Policy of every site You visit.
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page.
We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update the "Last updated" date at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
We have appointed a Data Protection Officer to oversee our management of your personal information in accordance with this Privacy Policy. If you have any questions or concerns about our privacy practices with respect to your personal information, you can reach out to our Data Protection Officer:
Name: Akshay Deo
Email: [email protected]
Phone Number: (+91) 9970095388
In compliance with Article 27 of the GDPR, we have appointed Rickert Rechtsanwaltsgesellschaft mbH as our EU representative. If you are located within the European Union and have any queries or requests related to the processing of your personal data, you may contact our EU representative directly using the following details:
Rickert Rechtsanwaltsgesellschaft mbH
Colmantstraßeße 15
53115 Bonn
Germany
Emali: [email protected]
Our EU representative is available to handle any inquiries or requests related to your rights under GDPR.