BrandJet Privacy Policy

BrandJet is committed to protecting your privacy. This Privacy Policy explains what information we collect from users of our website and services (collectively, the "Services"), how we use and share that information, and the choices you have regarding your information. This policy applies to all users of the Services worldwide. We aim to comply with applicable privacy laws, including the EU General Data Protection Regulation (GDPR) and relevant U.S. state privacy laws, and we strive to be transparent about our data practices.

By using BrandJet's Services, you agree to the collection and use of information as described in this Privacy Policy. If you do not agree, please do not use the Services.

We collect both personal information and non-personal information in order to provide and improve the Services. The types of information we may collect include:

Account and Contact Information: When you register for BrandJet or subscribe to our Services, we collect information such as your name, business or organization name (if applicable), email address, phone number, postal or billing address, and login credentials (username and password). We may also collect your job title and other professional details if you provide them. If you contact us for support or inquiries, we will collect the information you choose to share with us (such as your contact details and the content of your communications).

Payment Information: If you purchase a subscription, our third-party payment processor will collect your payment card details (such as credit card number, expiration date, and CVV) and billing information. BrandJet itself does not store your full credit card number or financial account numbers; however, we may retain non-sensitive billing details such as the last four digits of your card, the card type, expiry, and billing address for record-keeping. All payment transactions are processed via secure encrypted channels by reputable payment processors in accordance with PCI-DSS standards.

Third-Party Integration Data: If you choose to connect or integrate third-party accounts or services with BrandJet (for example, linking your Google Analytics, Facebook, Twitter, or YouTube accounts), we will collect certain information from those third-party accounts with your permission. This may include account identifiers and any data from that service that you specifically authorize us to retrieve on your behalf. For instance, if you link a social media account, we might collect analytics data or content related to your account or pages; if you link Google Analytics, we might collect website traffic metrics. The exact data retrieved will depend on the integration and the permissions you grant at the time of connecting. We will use this information solely to provide the Services' functionality to you (see How We Use Information below). Please note: The information we receive from a linked account is subject to the privacy settings and policies of that third-party service. We encourage you to review the privacy policies of any services you integrate with BrandJet.

Brand Mentions and Public Content: A core feature of BrandJet is to monitor public information on the internet about your brand or specified keywords. In doing so, our systems collect publicly available content from third-party sources such as social media posts (e.g. tweets on Twitter/X, Reddit comments), news articles, blog posts, forum discussions, YouTube videos, and other online content that mention the keywords or topics you are tracking. This content may include personal data about the individuals who authored or are mentioned in such content (for example, a social media username or a person's name in a news article). **Important:** BrandJet processes this data on your behalf to deliver the monitoring and analytics Services. The information collected can include the text of posts or articles, author names or handles, profile images, timestamps, and related metadata that are publicly available. We do not actively collect sensitive personal data about individuals from these sources, but incidental inclusion of such data might occur if it's part of a public post. All public content collected is used for generating insights (like sentiment analysis, trends, and alerts) for our users (i.e., the brand being monitored), and for no other purposes.

Usage Data: We automatically collect certain information about how you access and use our website and platform. This may include technical information such as your device type, browser type, operating system, IP address, device identifiers, and general location information (country or region). We also log usage information like the pages or features you use, the times and dates of your visits, the links you click, and the search queries or inputs you make on the platform. If we send emails, we may collect data on whether you open or click on emails. We gather this data through server logs, cookies, and similar tracking technologies (see Cookies and Tracking below) to help administer and improve the Services.

Cookies and Similar Technologies: We use cookies (small text files stored on your device) and similar tracking technologies (such as web beacons or pixels) on our website to personalize and enhance your experience. For example, cookies help with functions like keeping you logged in, remembering your preferences, and analyzing site traffic. We may use both session cookies (which expire when you close your browser) and persistent cookies (which remain until deleted) for authentication, security, and analytics. We may also use third-party analytics tools (like Google Analytics) that set their own cookies to collect aggregate usage data (these third parties only receive truncated IP addresses and usage information, not your name or contact info). You can control cookies through your browser settings and other tools; however, disabling cookies may affect certain features of the Services. For more details, please see our Cookies Policy (if available) or contact us.

Sensitive Personal Data: We do not intentionally collect any special categories of personal data from our users or through our Services (such as government ID numbers, financial account passwords, racial or ethnic origin, health information, biometric data, etc.). We ask that you do not provide such sensitive information to us. BrandJet's monitoring features focus on business and brand-related content and are not intended to collect sensitive personal data. If you believe we have inadvertently collected sensitive data, please contact us to have it removed. (Note: We also do not target or knowingly collect any information from children; see Children's Privacy below.)

We use the collected information for various purposes consistent with providing and improving the Services and as otherwise described in this Policy. The primary uses include:

Providing and Improving the Service: We use your information to operate the BrandJet platform and deliver the features you expect. This includes using your account and contact info to set up your account, authenticate you when you log in, and provide you with the monitoring and analytics tools you subscribed to. For example, we will use the keywords or sources you configure to fetch mentions from the web, analyze sentiment and trends, and present results to you. We process data from your integrated accounts (with your authorization) in order to include those data points in your dashboards and reports. Essentially, all data you provide or that we collect is used to fulfill the Services you have requested and ensure they function correctly. We also use data (like usage patterns and feedback) to maintain, optimize, and improve the Services over time – for instance, identifying performance issues, refining our AI models for sentiment analysis, or adding new features that we believe will enhance user experience.

Communicating with You: We may use your contact information (email, phone number) to send you service-related communications. These include confirmations, invoices, technical notices, updates, security alerts, and support messages. For example, if there is a critical issue affecting the platform or an upcoming maintenance window, we may notify you via email. We will also respond to you regarding any customer support inquiries you send us. Additionally, if you sign up with us, we may send onboarding materials or tips to help you use the Service effectively. Some communications (like account notifications and security alerts) are considered transactional and necessary as part of the Service.

Marketing and Newsletters: If you have subscribed to our newsletter or if you are an active customer, we may send you occasional marketing communications about new features, industry insights, or promotions, as permitted by law. Any marketing email will provide an easy way to opt out (unsubscribe) if you do not wish to receive such messages. We will obtain any necessary consent required by applicable law before sending you marketing communications. (If you opt out of marketing emails, we may still send you non-promotional communications such as those about your account or transactions.)

Alerts and Notifications: One of BrandJet's key offerings is proactive alerts (for example, notifying you within minutes if a potential crisis or viral mention is detected). We will use your information to send these alerts via the channels you configure. This might include emails, push notifications, or integrations with messaging apps (if you set that up). Alerts will contain information related to your monitored topics (e.g., a summary of the mention or trend detected). You can adjust your alert settings in your account preferences at any time.

Analytics and Aggregation: We internally use data about users' access and usage of the Service (including log and cookie data) to understand how our platform is performing and how users engage with it. This helps us analyze product metrics such as usage volumes, feature popularity, and user behavior flow. We may generate aggregate or de-identified data from your personal information and usage, which does not identify you, for our own legitimate business purposes – for example, computing overall statistics like "total number of mentions tracked across all customers" or improving our AI algorithms' accuracy by learning from aggregated data patterns. Aggregated data contains no personal identifiers and may be used freely by us. We do not use any data you provide to us (or that we collect on your behalf) to profile or target you as an individual for advertising; any analytics or automated processing we do is solely in service of providing and enhancing the BrandJet product for users.

Preventing Fraud and Legal Compliance: We may use information to monitor for and prevent fraudulent, abusive, or unlawful activities. For instance, we keep logs that could help investigate suspicious logins or usage that violates our Terms of Service. We also may use personal data to enforce our agreements and terms, including investigating potential violations thereof. If necessary, we will use and disclose information to comply with legal obligations – for example, to respond to lawful requests by public authorities or to meet national security or law enforcement requirements (see Disclosures for Legal Reasons below). We also use your information as needed for accounting, record-keeping, and regulatory compliance (such as maintaining transaction records for tax and financial reporting).

In summary, we limit the use of personal information to the purposes described above and in a manner that is compatible with the context in which we collected it or for which you provided consent. We do not sell your personal information to third parties for their own marketing or profit.

(Legal Bases for EU/UK users: If you are in the EU or UK, our legal grounds for processing your data include: (i) the performance of a contract (we process data to provide the Service you signed up for); (ii) our legitimate interests, such as improving our Services, preventing fraud, and sending marketing to business contacts, balanced against your data protection rights; (iii) your consent, where applicable (for example, for optional integrations or for sending marketing emails in certain jurisdictions); and (iv) compliance with legal obligations. We respect your rights under GDPR – see Your Rights below.)

We understand that your personal and business data is important, and we are not in the business of selling it to unconnected third parties. We share information in the following limited circumstances:

With Service Providers ("Processors"): We employ trusted third-party companies to perform certain functions in order to provide the Services. This includes hosting providers (for cloud infrastructure and data storage), email and notification delivery services, payment processors, analytics services, and customer support tools. These service providers only receive the information necessary for them to carry out their specific tasks on our behalf – for example, our cloud hosting provider stores our databases which contain your account data, our payment processor receives your billing details to process transactions, and our email service gets your email address and name to send communications. We contractually require service providers to safeguard personal information and to only use it for the purposes we specify (they are not permitted to use your info for their own unrelated purposes). A list of key sub-processors can be provided upon request.

Within Our Corporate Group: If NJ Media LLC has affiliates, parent, or subsidiary companies in the future (or if BrandJet becomes part of a larger corporate group), we may share your information within that group for internal administrative purposes and to provide the Service (for example, a subsidiary that helps with development or customer support). All such entities will honor the commitments in this Privacy Policy.

At Your Direction, with Integrations: If the Service allows you to export or share data to a third-party application (for instance, if you set up an integration to send BrandJet reports or alerts to a tool like Slack, Microsoft Teams, or another platform), we will share the data as directed by you. Similarly, if you choose to participate in any co-marketing or testimonial (with your consent), we might publish your name or logo on our website; but this is only with explicit permission.

With Other Users in Your Organization: If your subscription is part of a multi-user or enterprise account, the data and activity under the account may be visible to the account administrator or other authorized users within your organization. For example, if your company has multiple team members using BrandJet, certain account information and collected data might be shared among those team accounts (per the product's designed functionality). This is controlled by the account admin settings.

In Reports You Generate: The Service may allow you to generate reports or export data (for instance, a PDF of an analytics report or a CSV of collected mentions). If you choose to share or publish those outputs (for example, sending a report to your client or posting a chart publicly), any personal information contained in those outputs (like an excerpt of a tweet with a username) will be disclosed to the recipients based on your action. This is under your control; BrandJet only facilitates the export at your instruction.

For Legal Reasons: We may disclose your information when we believe in good faith that such disclosure is necessary to comply with a legal obligation or request (such as a subpoena, court order, or search warrant). We may also share information if we believe it is necessary to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety or rights of any person, or violations of our Terms of Service. This includes exchanging information with law enforcement or other companies and organizations for fraud protection, spam/malware prevention, and similar purposes.

Business Transfers: In the event BrandJet (or NJ Media LLC) is involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of Service to another provider, your information may be transferred as part of such a transaction. We would seek to ensure the acquiring entity honors the commitments of this Privacy Policy or provides notice and choice if your data becomes subject to a new privacy policy as a result of the transfer. For example, if a third party acquires our company or platform, personal data may be part of the assets transferred.

With Consent: We will share personal information with others if we have your explicit consent to do so. For instance, if we ever want to use your personal testimonial or success story on our site, we would ask for your permission. Or if you opt-in to a feature that requires sharing data with a third party not otherwise covered above, we will disclose that and obtain your consent.

No Selling of Personal Data: We do not sell or rent your personal information to data brokers or marketers. We do not share your personal data with third parties for their own direct marketing purposes unless you give us consent to do so. In the context of privacy laws like the California Consumer Privacy Act (CCPA), we do not "sell" personal information as defined by the CCPA. If this stance ever changes, we will update this policy and provide applicable opt-out mechanisms.

Third-Party Websites: Our website may contain links to third-party websites or services (for example, a link to an article or a partner's site). If you click those links, you will be directed to sites we do not control. This Privacy Policy does not apply to information collected on those external sites. We encourage you to review the privacy policies of any third-party sites or services before providing any information to them. BrandJet is not responsible for the privacy practices or content of such third parties.

BrandJet is based in the United States, and our cloud infrastructure is distributed across multiple data centers or nodes which may be located in different countries. When you use our Services, your personal information may be transferred to and stored on servers in the United States and/or other countries which may not have the same data protection laws as your home jurisdiction. For example, if you are an EU resident, please note that your personal data may be processed in the U.S. or elsewhere outside of the European Economic Area (EEA).

However, we take steps to ensure that adequate safeguards are in place to protect personal data that is transferred internationally. These safeguards may include:

Relying on the European Commission's Standard Contractual Clauses (SCCs) for data transfers from the EEA/UK to the U.S. and other countries, which contractually oblige the recipient to provide a level of protection equivalent to EU law;

Ensuring our vendors who process personal data internationally have appropriate data processing agreements and, where needed, SCCs in place;

Implementing technical measures such as encryption of data in transit and at rest, and policies to handle any government data requests in accordance with law.

By using the Services or providing us with your information, you acknowledge this transfer, storage, and processing of your information in countries outside of your country of residence. If applicable law requires, we will obtain your explicit consent for such cross-border transfers. We remain responsible for personal information that is transferred to a third party abroad for processing on our behalf, and we will take appropriate measures to ensure it remains protected.

If you have questions about our international data transfers or need more information about the safeguards in place, you can contact us (see Contact Us below).

We retain personal information for as long as reasonably necessary to fulfill the purposes for which it was collected, including to provide the Services, to comply with legal or accounting requirements, or to resolve disputes. Specifically:

Account Information: We will keep your account data while your account is active. If you cancel your account or your subscription expires, we may retain your data for a certain period in case you reactivate or for other legitimate business needs. By default, if an account is fully terminated, we aim to delete or anonymize the personal data within a reasonable time after termination, unless we are required to keep it longer (e.g., for legal compliance). We may retain backup copies for a limited period (e.g., in encrypted backups) before those are deleted as part of routine cycles.

Monitored Data: Any data collected on your behalf (like social media mentions, analytics data) will be retained in your account as long as you are an active customer or as needed to provide the Service. If you remove certain items (e.g., delete an alert or remove a keyword), we will delete or anonymize the associated data from the active databases, though it might persist in secure backups for a time. Aggregated or derivative insights that do not identify individuals may be retained indefinitely.

Communications: If you contacted us, we may retain records of support tickets or communications for a period of time to help us manage the relationship and train our support team.

Legal Necessity: We may retain information for longer if required by law (for example, some transaction records must be kept for financial audits/taxation for a number of years) or if needed for legitimate legal interests such as handling potential disputes (in which case, we would retain only what is necessary and for the specifically required duration).

When we have no ongoing legitimate business need to process your personal information, we will either delete it or anonymize it. If deletion is not immediately feasible (for instance, because your data is stored in archives), we will securely store the data and isolate it from further use until deletion is possible.

We take the security of your personal information seriously. BrandJet implements industry-standard security measures to protect your data from unauthorized access, alteration, disclosure, or destruction. These measures include:

Encryption: All data transmitted between your device and our servers is protected using HTTPS/TLS encryption. For sensitive data, we employ encryption at rest as well. For example, passwords are stored only in hashed form (we never store plaintext passwords).

Access Controls: We limit access to personal data to authorized employees and contractors who have a legitimate need to know in order to operate or improve the Service. They are subject to strict confidentiality obligations. Internal access to systems is protected by strong authentication (e.g., multi-factor authentication) and network security controls.

Network and Application Security: Our servers are hosted in secure facilities with measures like firewalls, intrusion detection systems, and regular vulnerability scanning. We keep our software and infrastructure updated and apply security patches in a timely manner. We also use cloud security best practices to isolate customer data.

Monitoring: We monitor the Service for potential security vulnerabilities and attacks, and we have systems in place to detect and respond to unusual activities. We also periodically review our information collection, storage, and processing practices to improve security.

Personnel Training: Our team members are trained on data privacy and security practices. We have protocols for handling personal data safely and responding to potential incidents.

However, please be aware that no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee its absolute security. You should also play a role in keeping your data secure by maintaining good password hygiene and notifying us if you notice any unauthorized account activity.

In the event of a data breach that affects your personal information, we will notify you and the appropriate authorities as required by law, and will take all reasonable steps to mitigate any damage.

Depending on your jurisdiction and the applicable laws, you may have certain rights regarding your personal information. We are committed to honoring the rights of individuals as required by relevant laws (such as GDPR for EU residents and CCPA for California residents). These rights may include:

Access and Portability: You have the right to request a copy of the personal information we hold about you. We can provide this in a commonly used electronic form. For EU users, you have the right to data portability, which means in certain cases you can request to receive your personal data in a structured, machine-readable format, or have it transmitted to another provider.

Rectification: If any of your personal data is inaccurate or incomplete, you have the right to ask us to correct it. You can update most of your basic account information directly in your BrandJet account settings. For any other corrections, contact us and we will address it.

Deletion: You have the right to request deletion of your personal data (the "right to be forgotten"). Upon verified request, we will delete the personal information we have about you, except to the extent we are permitted or required to retain certain information (for example, to fulfill legal obligations or if the data is critical to the service you still use). Do note that deleting essential data (like your account info) may result in termination of your Service since we need it to operate your account. Also, content that was collected from third-party public sources as part of monitoring might be deleted or de-identified in our system, but we cannot remove the original content from the third-party source (e.g., we cannot delete a news article that exists on a news site).

Restriction of Processing: In certain circumstances (for instance, if you contest the accuracy of your data or lawfulness of processing), you have the right to request that we restrict processing your data until the issue is resolved.

Objection to Processing: You may have the right to object to our processing of your personal data when such processing is based on legitimate interests. If you object, we will consider whether our legitimate grounds override your interests or rights. Where we process personal data for direct marketing, you have an unconditional right to object and opt-out.

Opt-Out of Sale (for CCPA): Although we do not sell personal information as defined by CCPA, California residents have the right to direct a business that sells personal data to stop selling it. We confirm we do not sell your data. If that ever changes, we will provide a "Do Not Sell My Info" option and honor such requests.

Opt-Out of Marketing Communications: You can always opt out of our marketing or newsletter emails by clicking the "unsubscribe" link in those emails or by adjusting your email preferences in your account. (As noted, even if you opt out of marketing, we may still send essential service or account communications.)

Non-Discrimination: If you exercise any of your rights under applicable privacy laws, we will not discriminate against you for doing so. For example, we will not deny you services or charge you different prices or provide a lesser quality of service because you exercised your privacy rights.

To exercise your rights, please contact us at support@brandjet.ai with your specific request. We may need to verify your identity before fulfilling certain requests (for instance, for access or deletion) to ensure the security of your data. Verification might involve confirming ownership of the email associated with your account or other information. In some cases, we may refuse requests as permitted by law – for example, if fulfilling a deletion request would prevent us from complying with legal obligations, or if requests are excessive or unfounded. We will inform you of the outcome of your request within the timeframe required by law (generally within 30 days for most requests, extendable as allowed).

If you are an authorized agent making a request on behalf of someone else, we may require proof of authorization and also verify identity directly with the individual as needed.

Additional Rights for EEA/UK Residents: If you are in the EEA or UK, you also have the right to lodge a complaint with your local data protection supervisory authority if you believe we have infringed your privacy rights. We encourage you to contact us first so we can attempt to resolve your concerns.

Our Services are not intended for use by children or minors under the age of 18, and we do not knowingly collect personal information from anyone under 13 (and in certain jurisdictions, under 16) without verifiable parental consent. If you are under the age threshold, please do not use BrandJet or provide any personal information about yourself. If we learn that we have inadvertently collected personal data from a child under 13 (or the relevant minimum age), we will take steps to delete that information as soon as possible. Parents or guardians who believe that we might have information about a child can contact us at support@brandjet.ai to request deletion.

BrandJet integrates with various third-party platforms and APIs to provide our Services. It is important for users to be aware of the privacy implications of these integrations:

Social Media and Web Sources: When we collect data from social networks (such as Twitter/X, Reddit, etc.) or websites, we abide by those platforms' terms of use and policies. However, any personal information in that collected content is governed by the privacy policy of the original platform. We simply process publicly available data for your analytics purposes. We advise you to respect privacy and use the data obtained responsibly. If individuals whose content we collect have concerns, they would need to address it with the original platform (e.g., have a tweet deleted on Twitter). BrandJet will comply with any platform-specific requirements (for example, rate limits, data handling rules) and expects users to do the same.

YouTube API Services: Specifically, we want to disclose that BrandJet's Services may use the YouTube API to retrieve public YouTube data (such as videos or comments mentioning your brand). If you choose to integrate or monitor YouTube content, you are agreeing to be bound by the YouTube Terms of Service as part of using that feature. YouTube's Terms can be found at https://www.youtube.com/t/terms. In addition, Google's Privacy Policy, which governs data provided through YouTube API Services, is available at https://policies.google.com/privacy. We will only use YouTube API data in accordance with this Privacy Policy. You have the ability to revoke BrandJet's access to your YouTube account and data at any time via the Google security settings page (for example, at Google Security Settings).

Other Third-Party APIs: If we integrate with other AI or search platforms (like OpenAI's ChatGPT or similar) to perform the "AI Search Monitoring," we will handle any data exchange in compliance with those providers' terms. For instance, if BrandJet queries an AI service about your brand, the query (which may include your brand name or related content) is sent to that AI provider's API. We will not send personal user data to such AI services, only the necessary query or context. But be mindful that any data returned by an AI might not be 100% accurate or may include public information about third parties that we cannot control. Use caution and refer to those AI platforms' policies when interpreting results.

We may update or revise this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. If we make material changes, we will notify you by posting the updated policy on our website and updating the "Last Updated" date at the top, and/or by sending you a notification (e.g., via email or within the Service) explaining the changes. Please review any changes carefully. Continued use of the Services after the effective date of the updated Privacy Policy constitutes your acceptance of the changes, to the extent permitted by law. If you do not agree with the changes, you should stop using the Services and may request us to delete your personal information.

We encourage you to periodically review this page for the latest information on our privacy practices. Older versions of this Privacy Policy may be archived and available upon request for your reference.

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal information, please contact us:

Email: support@brandjet.ai