Privacy Policy

This Privacy Policy ("Policy") describes how MYCOBI, Inc. ("MYCOBI," "we," "us," or "our") collects, uses, discloses, and protects information when you use our investment readiness platform, website, and related services (collectively, the "Service").

By using our Service, you consent to the collection and use of information in accordance with this Policy. If you do not agree with our policies and practices, please do not use our Service.

Applicability: This Policy applies to all users of our Service, including companies, investors, advisors, job applicants, and website visitors.

2.1 Assessment Data: We collect comprehensive business and investment readiness information including:

• Investment readiness diagnostic responses and scores
• Business readiness level (BRL) assessments
• Technology readiness level (TRL) evaluations
• Financial metrics, projections, and business models
• Competitive analysis and market opportunity assessments
• Company stage, industry, and funding goals

2.2 User Account Information:

• Name, email address, and contact information
• Company name, role, and professional background
• Authentication credentials and access logs
• User preferences and platform settings
• Platform usage patterns and behavior analytics

2.3 Technical and System Data:

• IP addresses, device information, and browser details
• Session data, usage timestamps, and navigation patterns
• Bug reports with screenshots and system information
• Error logs and system performance metrics
• Cookies, web beacons, and similar tracking technologies

2.4 Communication Data:

• Messages and feedback submitted through the platform
• Support requests and correspondence
• Survey responses and user feedback
• Beta testing comments and suggestions

3.1 Service Provision:

• Provide investment readiness assessments and evaluations
• Generate AI-powered recommendations and insights
• Facilitate connections between companies, investors, and advisors
• Maintain and improve platform functionality

3.2 AI and Machine Learning:

• Train and improve AI algorithms for assessment accuracy
• Generate personalized recommendations and insights
• Analyze patterns to improve platform effectiveness
• Develop new features and capabilities

3.3 Communication and Support:

• Send important updates and notifications
• Provide customer support and respond to inquiries
• Share relevant content and educational materials
• Conduct user research and feedback collection

3.4 Research and Development:

• Create anonymized, aggregated datasets for industry research
• Develop benchmarking and comparative analytics
• Improve assessment methodologies and scoring frameworks
• Advance investment readiness evaluation standards

We process your personal information based on the following legal grounds:

• Contract Performance: To provide the services you have requested and fulfill our contractual obligations
• Legitimate Interests: To improve our services, conduct research, and ensure platform security
• Consent: For marketing communications and certain data processing activities where required
• Legal Compliance: To comply with applicable laws, regulations, and legal processes
• Vital Interests: To protect the safety and security of our users and platform

5.1 Service Providers: We may share information with trusted third-party service providers who assist us in:

• Cloud hosting and data storage (AWS, Google Cloud)
• Customer relationship management (HubSpot)
• Analytics and performance monitoring
• Email communications and marketing
• Payment processing and financial services

5.2 Business Partners and Integrations:

• Investor networks and venture capital firms
• Accelerator programs and startup ecosystems
• Professional service providers and advisors
• Research institutions and industry organizations

5.3 Legal and Regulatory Requirements:

• Compliance with court orders, subpoenas, or legal processes
• Protection of our rights, property, or safety
• Prevention of fraud or illegal activities
• Regulatory reporting and compliance obligations

5.4 Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

6.1 Technical Safeguards:

• End-to-end encryption for data transmission (TLS 1.3)
• Advanced encryption for data at rest (AES-256)
• Multi-factor authentication requirements
• Regular security audits and vulnerability assessments
• Secure cloud infrastructure with redundancy and backup systems

6.2 Administrative Safeguards:

• Strict access controls and permission management
• Employee training on data protection and security
• Regular security awareness programs
• Incident response and breach notification procedures
• Data minimization and retention policies

6.3 Physical Safeguards:

• Secure data centers with 24/7 monitoring
• Environmental controls and disaster recovery systems
• Physical access restrictions and monitoring
• Regular backup and recovery testing

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this Policy:

• Account Information: Retained while your account is active and for a reasonable period thereafter
• Assessment Data: Retained for platform improvement and research purposes, typically 7 years
• Communication Records: Retained for customer support and legal compliance, typically 3 years
• Technical Logs: Retained for security and performance monitoring, typically 1 year
• Legal Requirements: Some data may be retained longer to comply with applicable laws

You may request deletion of your information, subject to legal and business requirements.

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request access to and copies of your personal information
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information ("right to be forgotten")
• Portability: Request transfer of your data to another service provider
• Restriction: Request limitation of processing under certain circumstances
• Objection: Object to processing based on legitimate interests or for marketing purposes
• Withdraw Consent: Withdraw consent for processing where consent is the legal basis

To exercise these rights, please contact us at privacy@mycobi.com. We will respond to your request within 30 days.

We use cookies and similar technologies to enhance your experience and analyze platform usage:

• Essential Cookies: Required for platform functionality and security
• Analytics Cookies: Help us understand how you use our platform
• Preference Cookies: Remember your settings and preferences
• Marketing Cookies: Used for targeted advertising and marketing (with consent)

You can control cookie settings through your browser preferences. Note that disabling certain cookies may affect platform functionality.

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place:

• Standard Contractual Clauses approved by relevant authorities
• Adequacy decisions by competent data protection authorities
• Certification schemes and codes of conduct
• Binding corporate rules and other appropriate safeguards

By using our Service, you consent to the transfer of your information to countries that may have different data protection laws than your country.

Our Service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

If we discover that we have collected personal information from a child under 16, we will take steps to delete such information promptly.

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by:

• Posting the updated Policy on our website
• Sending email notifications to registered users
• Providing notice through our platform
• Other appropriate means as required by law

Your continued use of our Service after any changes constitutes acceptance of the updated Policy.

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: privacy@mycobi.com
• Legal Department: legal@mycobi.com
• Data Protection Officer: dpo@mycobi.com
• General Inquiries: hello@mycobi.com

We will respond to your inquiry within 30 days of receipt.