Deep Mag logo

Deep Mag

← Back to Home

Privacy Policy

Last Updated: January 9, 2026

PRIVACY POLICY

Effective Date: January 9, 2026

Deep Mag ("we," "our," or "us") operates Deep Mag AI ("Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

1. INFORMATION WE COLLECT

1.1 Information You Provide:
   - Account information (name, email address, password)
   - Profile information
   - Documents and files you upload
   - Project and organization information
   - Communications with us

1.2 Information We Collect Automatically:
   - Usage data and analytics
   - Device information (IP address, browser type, operating system)
   - Log data (access times, pages viewed, actions taken)
   - Authentication tokens and session information

1.3 Information from Third-Party Services:
   - When you connect third-party services (e.g., Procore), we receive data authorized by your OAuth permissions
   - We store OAuth tokens securely to facilitate integration functionality

2. HOW WE USE YOUR INFORMATION

We use the information we collect to:
   - Provide, maintain, and improve the Service
   - Process and analyze your documents using AI
   - Authenticate your identity and manage your account
   - Send you service-related communications
   - Respond to your inquiries and provide customer support
   - Detect, prevent, and address technical issues and security threats
   - Comply with legal obligations
   - Enforce our Terms of Service

3. AI PROCESSING AND DATA STORAGE

3.1 Document Processing: When you upload documents, we:
   - Temporarily store files in Google Cloud Storage during processing
   - Process documents using OpenAI's services to create vector embeddings
   - Store processed content in OpenAI vector databases for your projects
   - Delete original files from Google Cloud Storage after successful processing
   - Retain processed content in vector databases for Service functionality

3.2 AI Service Providers: We use the following AI services:
   - OpenAI: For document analysis, vector storage, and AI-powered features
   - These services process your data in accordance with their privacy policies and our data processing agreements

4. DATA SHARING AND DISCLOSURE

4.1 We do not sell your personal information.

4.2 We may share your information in the following circumstances:
   a. Service Providers: With third-party service providers who perform services on our behalf (e.g., Google Cloud, OpenAI, Netlify), subject to confidentiality obligations
   b. Business Transfers: In connection with a merger, acquisition, or sale of assets
   c. Legal Requirements: When required by law, court order, or governmental authority
   d. Protection of Rights: To protect our rights, property, or safety, or that of our users or others
   e. With Your Consent: When you explicitly authorize us to share information

4.3 Third-Party Integrations: When you connect third-party services (e.g., Procore), information is shared according to your authorization and the third-party's privacy policy. You may revoke access at any time.

5. DATA SECURITY

5.1 Security Measures: We implement industry-standard security measures to protect your information:
   - Encryption of data in transit (HTTPS/TLS)
   - Encryption of data at rest (Firestore, Google Cloud Storage)
   - Secure authentication (Firebase Auth, two-factor authentication support)
   - Access controls and authorization checks
   - Regular security audits and monitoring

5.2 Data Isolation: We implement multi-tenant security with project-level and organization-level isolation to prevent unauthorized access to your data.

6. DATA RETENTION

6.1 Account Data: We retain your account information for as long as your account is active or as needed to provide the Service.

6.2 Documents: Original uploaded documents are deleted from temporary storage after processing. Processed content is retained in vector databases to provide Service functionality.

6.3 Deleted Accounts: Upon account deletion, we will delete your personal information within 30 days, except where retention is required by law or for legitimate business purposes.

7. YOUR RIGHTS AND CHOICES

7.1 Access and Correction: You may access and update your account information at any time through your account settings.

7.2 Data Deletion: You may request deletion of your account and associated data by contacting us or using account deletion features.

7.3 Data Export: You may request a copy of your data by contacting us.

7.4 Cookie Preferences: You can control cookies through your browser settings, though this may affect Service functionality.

7.5 Marketing Communications: You may opt out of marketing communications by following the unsubscribe instructions in our emails or contacting us.

8. COOKIES AND TRACKING

8.1 We use cookies and similar technologies to:
   - Maintain your session and authenticate your identity
   - Remember your preferences
   - Analyze Service usage and improve functionality

8.2 Third-Party Cookies: We may use third-party analytics services (e.g., Google Analytics) that use cookies. These are subject to the third-party's privacy policies.

9. CHILDREN'S PRIVACY

The Service is not intended for users under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete such information.

10. INTERNATIONAL DATA TRANSFERS

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using the Service, you consent to such transfers.

11. CALIFORNIA PRIVACY RIGHTS

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
   - Right to know what personal information is collected, used, shared, or sold
   - Right to delete personal information
   - Right to opt out of the sale of personal information (we do not sell personal information)
   - Right to non-discrimination for exercising your privacy rights

12. EUROPEAN PRIVACY RIGHTS (GDPR)

If you are located in the European Economic Area (EEA), you have additional rights:
   - Right to access your personal data
   - Right to rectification of inaccurate data
   - Right to erasure ("right to be forgotten")
   - Right to restrict processing
   - Right to data portability
   - Right to object to processing
   - Right to withdraw consent

13. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. We will notify you of material changes by:
   - Posting the updated policy on this page with an updated "Effective Date"
   - Sending you an email notification (if you have an account)
   - Displaying a notice in the Service

Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy.

14. DATA CONTROLLER INFORMATION

Deep Mag is the data controller for personal information collected through the Service.

15. CONTACT US

For questions about this Privacy Policy or our data practices, please contact us at:

Email: vince@deepmag.ai
Address: 131 Continental Dr Suite 305 Newark, DE, 19713 US

For data protection inquiries in the EEA, you may also contact your local data protection authority.

Questions about our privacy practices? Contact us at vince@deepmag.ai