Privacy Policy

1. Information We Collect

Information You Provide Directly

When you interact with our website or services, you may provide us with information including:

• Contact details such as your name, email address, phone number, and company name when you request a demo or contact us
• Account credentials when you register for the Aqueduct platform
• Payment and billing information when you purchase our products or services
• Communications you send us through contact forms, email, or support requests
• Information submitted when downloading resources or registering for webinars

Information Collected Automatically

When you access our website or use our services, we automatically collect certain technical information:

• Device information including IP address, browser type, operating system, and unique device identifiers
• Usage patterns such as pages visited, time spent on our site, and how you navigate through our content
• Approximate location based on your IP address
• Cookies and similar technologies to improve your experience and understand how you use our services

Building and Sensor Data

When you deploy the Aqueduct platform in your facilities, we collect operational data to provide our services:

• Sensor readings from IoT devices monitoring water, energy, temperature, humidity, and air quality
• Equipment performance metrics and operational status from building management systems
• Data from LoRaWAN, BACnet, Modbus, and other protocols your systems use
• Alerts, notifications, and AI-generated insights based on your building data
• Historical trends and patterns identified by our analytics

Information from Other Sources

We may receive information about you from business partners, AWS infrastructure services, and publicly available sources to improve our services and ensure security.

2. How We Use Your Information

Providing and Improving Services

We use the information we collect to deliver and enhance our platform:

• Operating the Aqueduct platform and processing building data in real time
• Applying AI and machine learning to detect leaks, equipment failures, and energy waste
• Generating alerts, reports, and predictive maintenance recommendations
• Providing technical support and responding to your inquiries
• Improving our algorithms and developing new features based on usage patterns

Business Operations

We use your information for legitimate business purposes:

• Processing transactions and sending invoices, receipts, and payment confirmations
• Communicating about service updates, new features, and system maintenance
• Analyzing how customers use our platform to identify improvements
• Conducting security monitoring and fraud prevention
• Complying with legal obligations and responding to lawful requests

Marketing Communications

With your consent, we may use your contact information to send you information about products, services, case studies, and industry insights. You can opt out of marketing emails at any time using the unsubscribe link in any email we send.

3. How We Share Your Information

We do not sell your personal information. We share your information only in these limited circumstances:

Service Providers

We work with third party companies that help us operate our business and deliver services to you. These providers include AWS for cloud infrastructure, payment processors, email service providers, and analytics tools. All service providers are contractually obligated to protect your information and use it only for the purposes we specify.

Business Transfers

If Milvian Group is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information becomes subject to a different privacy policy.

Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

With Your Consent

We may share your information with other parties when you explicitly consent to such sharing.

4. Data Security

We implement appropriate technical and organizational measures to protect your information from unauthorized access, alteration, disclosure, or destruction.

Our security measures include:

• End to end encryption for data transmission using industry standard protocols
• Encryption at rest for all data stored on AWS infrastructure
• Role based access controls ensuring personnel access only the data necessary for their functions
• Regular security audits and penetration testing
• SOC 2 compliance for our platform and infrastructure
• Secure authentication mechanisms including support for single sign on
• Comprehensive logging and monitoring to detect suspicious activity

While we take extensive precautions, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but continuously work to protect your information using industry best practices.

5. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes described in this policy.

Specific retention periods:

• Account information is retained while your account remains active and for a reasonable period afterward to comply with legal obligations
• Building sensor data is retained according to your service agreement, typically for the duration of your subscription plus a retention period for historical analysis
• Transaction records are kept for seven years to comply with tax and accounting requirements
• Marketing contact information is retained until you unsubscribe or request deletion
• Support communications are retained for three years to maintain service quality and resolve disputes

When we no longer need your information, we securely delete or anonymize it so it cannot be attributed to you.

6. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

Access and Correction

You can access and update your account information at any time by logging into the Aqueduct platform or contacting us directly. We will respond to requests for information we hold about you within 30 days.

Deletion

You can request deletion of your personal information, subject to certain exceptions such as legal retention requirements. Note that deleting your account will result in loss of access to our services.

Data Portability

You can request a copy of your data in a machine-readable format. For building data, we provide export capabilities directly within the Aqueduct platform.

Marketing Opt Out

You can opt out of marketing communications at any time by clicking the unsubscribe link in emails or contacting us at hello@milvian.group. Note that even if you opt out of marketing, we will still send you transactional messages about your account and services.

Cookies

You can control cookies through your browser settings. However, disabling certain cookies may affect the functionality of our website and services.

7. International Data Transfers

Milvian Group operates globally with team members and infrastructure across North America, Europe, and Asia. Your information may be transferred to and processed in countries other than where you reside.

We rely on AWS infrastructure which maintains data centers in multiple regions. For customers in the European Economic Area, we offer data residency options to keep your building data within EU regions. When we transfer data internationally, we use appropriate safeguards such as Standard Contractual Clauses approved by the European Commission.

8. Children's Privacy

Our services are designed for businesses and are not directed at children under 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately and we will delete it.

9. Third Party Links

Our website may contain links to third party websites, including AWS Marketplace and partner sites. We are not responsible for the privacy practices of these external sites. We encourage you to review the privacy policies of any third party sites you visit.

10. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. When we make significant changes, we will notify you by email or through a prominent notice on our website. The "Last Updated" date at the top of this policy indicates when it was most recently revised.

We encourage you to review this policy regularly to stay informed about how we protect your information.