PRIVACY POLICY

Effective Date: July 15, 2025

ReferralStack, a subsidiary of Outbox Labs Inc. ("ReferralStack," "we," "our," or "us"), values your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website at https://www.referralstack.ai (the "Website") or use our services (collectively, the "Services").

By accessing or using the Website and Services, you consent to the practices described in this Privacy Policy. If you do not agree with any of the terms outlined in this policy, please do not use the Services.

  1. Information We Collect

    2. 1.1 Personal Information: We may collect personal information that you voluntarily provide when you register for an account, communicate with us, or use the Services. This includes:

    • Account Information: Your name, email address, phone number, username, password, and other account-related information.
    • Payment Information: Your billing address, credit card details, and other financial information when you make payments for our Services.
    • Communications: Any information you provide when you contact us or interact with customer support.

    1.2 Usage Data: We automatically collect certain information when you use the Services, such as:

    • Log Data: Your IP address, browser type, browser version, pages visited on our Website, the time and date of your visit, and other diagnostic data.
    • Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to track your activity on the Website and to improve user experience. You can manage cookie settings through your browser.

    1.3 Third-Party Information: We may collect information from third parties, such as:

    • Affiliate and Partner Data: Information about your interactions with third-party affiliate programs or other services integrated with our platform.
    • Social Media: If you connect your account with social media platforms, we may collect certain information from those platforms, subject to their privacy policies.
  2. How We Use Your Information

    3. 2.1 Provide and Improve Services: We use the information we collect to:

    • Provide, maintain, and improve our Services.
    • Process payments and transactions.
    • Respond to customer inquiries and provide support.
    • Personalize your experience and tailor the Services to your needs.

    2.2 Communication: We may use your contact information to send you:

    • Service-related communications, such as updates, invoices, or technical notices.
    • Marketing communications, unless you opt out (see section 6 for your opt-out rights).
    • Alerts and reminders about your account or subscription.

    2.3 Legal Compliance: We may use your information to comply with applicable laws, regulations, or legal processes, including to:

    • Prevent fraud or abuse of our Services.
    • Enforce our Terms of Service.
    • Respond to lawful requests from public authorities, including to meet national security or law enforcement requirements.

    2.4 Analytics and Research: We use usage data and other information to:

    • Analyze trends and improve the functionality of our Services.
    • Conduct research and development to enhance user experience.
    • Measure the effectiveness of our marketing campaigns.
  3. Data Sharing and Disclosure

    4. 3.1 Service Providers: We may share your personal data with third-party service providers who perform services on our behalf, including payment processors, cloud hosting providers, marketing platforms, and customer support services. These service providers are only authorized to use your data as necessary to provide their services to us.

    3.2 Business Transfers: In the event of a merger, acquisition, or sale of assets, your personal data may be transferred as part of the transaction. We will notify you of such changes through email or notice on our Website.

    3.3 Legal Compliance: We may disclose your personal data to comply with legal obligations, resolve disputes, and enforce our agreements. This includes sharing your information with law enforcement authorities or government agencies when required by law.

    3.4 Affiliate and Partner Sharing: We may share your data with affiliate partners or business collaborators in connection with the Services, such as affiliate program operators. However, such sharing will be done only in accordance with this Privacy Policy and applicable laws.

    3.5 Aggregated Data: We may share non-personally identifiable information (e.g., aggregated or anonymized data) with third parties for analytics, marketing, or research purposes.

  4. Data Retention

    5. 4.1 Retention Period: We will retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. This includes retaining data for purposes of resolving disputes, complying with legal obligations, or enforcing agreements.

    4.2 Deletion of Data: If you wish to request the deletion of your personal data, you may contact us at [email protected]. We will make reasonable efforts to delete your data, subject to any legal requirements or business needs for retaining the information.

  5. Data Security

    6. 5.1 Security Measures: We take the security of your personal data seriously and employ a variety of technical and organizational measures to protect it, including encryption, firewalls, and secure servers. However, no method of data transmission or storage can be guaranteed to be 100% secure.

    5.2 Your Responsibility: You are responsible for maintaining the confidentiality of your account login credentials and for ensuring that no unauthorized individuals have access to your account. If you suspect any unauthorized access, please notify us immediately.

  6. Your Privacy Rights

    7. As a user, you have the following rights regarding your personal data:

    • Access and Correction: You have the right to access the personal data we hold about you and to request corrections if the data is inaccurate or incomplete. You can update your information directly through your account settings or by contacting us.
    • Data Portability: You have the right to request a copy of your personal data in a commonly used, machine-readable format for the purpose of transferring it to another service provider.
    • Deletion and Erasure: You have the right to request the deletion of your personal data, subject to certain exceptions. We may retain certain information for legal or business reasons.
    • Opt-Out of Marketing Communications: You can opt out of receiving marketing emails or other communications from us by following the unsubscribe instructions in the communications or by contacting us at [email protected].
    • Right to Object: You may object to the processing of your personal data based on legitimate interests, including processing for marketing purposes, by contacting us at [email protected].
    • Right to Withdraw Consent: If we process your data based on your consent, you have the right to withdraw your consent at any time. This will not affect the legality of processing based on consent before its withdrawal.
  7. International Data Transfers

    8. 7.1 Cross-Border Data Transfers: By using our Services, you acknowledge that your personal data may be transferred to and processed in countries outside your jurisdiction, including the United States. These countries may not have the same level of data protection laws as your home country, but we will take steps to ensure that your data is handled in accordance with this Privacy Policy.

    7.2 Data Protection Mechanisms: We use appropriate safeguards, such as Standard Contractual Clauses (SCCs), to ensure that personal data transferred across borders is protected in line with applicable data protection laws.

  8. Children's Privacy

    9. 8.1 No Use by Minors: The Services are not intended for individuals under the age of 18, and we do not knowingly collect personal data from minors. If we learn that we have inadvertently collected personal data from a child under 18, we will take steps to delete that information as soon as possible.

  9. Third-Party Websites and Services

    10. 9.1 Links to Third-Party Websites: Our Website may contain links to third-party websites or services that are not operated by us. We are not responsible for the content or privacy practices of these third-party sites. We encourage you to review their privacy policies before providing any personal data.

    9.2 Third-Party Tools: We may integrate third-party tools (such as payment processors or marketing platforms) with the Services. These third parties may collect and use your personal data according to their own privacy policies.

  10. Changes to This Privacy Policy

    11. 10.1 Modifications: We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or technological advancements. Any changes will be posted on this page, and the "Effective Date" will be updated accordingly.

    10.2 Notification: If we make significant changes to this Privacy Policy, we will notify you via email or through a prominent notice on our Website. Please review the policy periodically for updates.

  11. Contact Information

    12. If you have any questions or concerns about this Privacy Policy, or if you wish to exercise any of your rights under applicable data protection laws, please contact us at:

    Email: [email protected]