Privacy Policy

Effective Date: 9 August 2025

Makyo Co (“Makyo,” “we,” “our,” or “us”) provides a no-code platform to build apps and websites with an AI layer and third-party integrations (“Services”). This Privacy Policy explains how we collect, use, disclose, and protect personal information.

1) Scope

This Policy applies to personal information we process about visitors, account holders, end users of apps built with Makyo, and prospects. If you are an end user of a customer’s app, Makyo processes your data as a processor/service provider; the Makyo customer is your data controller/business.

2) Information We Collect

  • Account & billing: name, email, password, company, plan, payment tokens (via our payment processor).
  • Workspace/project data: schemas, content, media, app configs, logs, version history, rollback metadata.
  • Integrations: data retrieved from services you connect (e.g., Google Drive, OneDrive, Gmail, Stripe) per your permissions.
  • Support & communications: messages, tickets, feedback, call/chat recordings where applicable.
  • Usage & device: IP, device/OS/browser, pages/actions, diagnostics, crash reports, performance metrics.
  • Cookies/IDs: authentication, security, preferences, analytics, and (if you consent) marketing.

3) How We Use Information

  • Provide, secure, and troubleshoot the Services (including AI features and versioning/rollback).
  • Operate integrations you authorize.
  • Improve features, quality, and performance (aggregate or de-identified where possible).
  • Billing, account management, and customer support.
  • Send service notices; send marketing only where permitted and with opt-out.
  • Detect/prevent fraud, abuse, and security incidents; comply with law.

4) Legal Bases (EU/UK)

  • Contract: to deliver the Services.
  • Legitimate interests: to improve and secure the platform, and to market to business contacts.
  • Consent: for cookies/marketing where required.
  • Legal obligation: record-keeping, sanctions screening, tax.

5) Sharing

  • Service providers/sub-processors: hosting, storage, analytics, support, email, payments, AI inference. Bound by contracts and security obligations.
  • Integration partners you choose: according to your settings and the third party’s terms.
  • Corporate events: merger, acquisition, financing, or sale of assets.
  • Legal/safety: to comply with law or protect rights, safety, and integrity.

We do not sell personal information and we do not share it for cross-context behavioral advertising without your consent.

6) International Transfers

We are USA-based. Where required, we use appropriate safeguards such as EU/UK Standard Contractual Clauses and additional measures.

7) Security

  • Encryption in transit and at rest for core data stores.
  • Access controls, least-privilege, audit logging, vulnerability management, and incident response.
  • No method is 100% secure; you are responsible for strong passwords and access hygiene.

8) Retention

We retain personal information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. You may request deletion; see “Your Rights.” Backups and logs are purged on rolling schedules.

9) Your Rights

  • EU/UK/EEA: access, rectify, erase, restrict, object, portability, and consent withdrawal.
  • US (e.g., CA, CO, CT, VA, UT): know/access, correct, delete, portability, opt-out of targeted advertising/profiling/sale (we don’t sell), appeal adverse decisions.

Submit a request at [email protected]. We will verify and respond within applicable timelines. You will not receive discriminatory treatment for exercising rights.

10) Children

The Services are not directed to children under 13 (or under 16 in the EU). We do not knowingly collect children’s data.

11) Cookies & Tracking

We use strictly necessary cookies and, with consent where required, analytics and marketing cookies. Manage preferences via our cookie banner or your browser settings.

12) AI Features

  • Inputs and outputs may be processed to deliver AI functionality and to improve quality and safety (using aggregation and de-identification where feasible).
  • You control what data you send to AI features. Do not input highly sensitive data unless necessary and properly safeguarded.

13) Data Processing Roles & DPA

For customer end-user data, Makyo acts as a processor/service provider under a Data Processing Addendum (DPA) with Standard Contractual Clauses. Contact us to execute our DPA: [email protected].

14) Changes

We may update this Policy. We will post the new version and update the “Effective Date.” Material changes will be notified via the Service or email.

15) Contact

Makyo Co
Attn: Privacy

Privacy Policy

Effective Date: 9 August 2025

Makyo Co (“Makyo,” “we,” “our,” or “us”) provides a no-code platform to build apps and websites with an AI layer and third-party integrations (“Services”). This Privacy Policy explains how we collect, use, disclose, and protect personal information.

1) Scope

This Policy applies to personal information we process about visitors, account holders, end users of apps built with Makyo, and prospects. If you are an end user of a customer’s app, Makyo processes your data as a processor/service provider; the Makyo customer is your data controller/business.

2) Information We Collect

  • Account & billing: name, email, password, company, plan, payment tokens (via our payment processor).
  • Workspace/project data: schemas, content, media, app configs, logs, version history, rollback metadata.
  • Integrations: data retrieved from services you connect (e.g., Google Drive, OneDrive, Gmail, Stripe) per your permissions.
  • Support & communications: messages, tickets, feedback, call/chat recordings where applicable.
  • Usage & device: IP, device/OS/browser, pages/actions, diagnostics, crash reports, performance metrics.
  • Cookies/IDs: authentication, security, preferences, analytics, and (if you consent) marketing.

3) How We Use Information

  • Provide, secure, and troubleshoot the Services (including AI features and versioning/rollback).
  • Operate integrations you authorize.
  • Improve features, quality, and performance (aggregate or de-identified where possible).
  • Billing, account management, and customer support.
  • Send service notices; send marketing only where permitted and with opt-out.
  • Detect/prevent fraud, abuse, and security incidents; comply with law.

4) Legal Bases (EU/UK)

  • Contract: to deliver the Services.
  • Legitimate interests: to improve and secure the platform, and to market to business contacts.
  • Consent: for cookies/marketing where required.
  • Legal obligation: record-keeping, sanctions screening, tax.

5) Sharing

  • Service providers/sub-processors: hosting, storage, analytics, support, email, payments, AI inference. Bound by contracts and security obligations.
  • Integration partners you choose: according to your settings and the third party’s terms.
  • Corporate events: merger, acquisition, financing, or sale of assets.
  • Legal/safety: to comply with law or protect rights, safety, and integrity.

We do not sell personal information and we do not share it for cross-context behavioral advertising without your consent.

6) International Transfers

We are USA-based. Where required, we use appropriate safeguards such as EU/UK Standard Contractual Clauses and additional measures.

7) Security

  • Encryption in transit and at rest for core data stores.
  • Access controls, least-privilege, audit logging, vulnerability management, and incident response.
  • No method is 100% secure; you are responsible for strong passwords and access hygiene.

8) Retention

We retain personal information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. You may request deletion; see “Your Rights.” Backups and logs are purged on rolling schedules.

9) Your Rights

  • EU/UK/EEA: access, rectify, erase, restrict, object, portability, and consent withdrawal.
  • US (e.g., CA, CO, CT, VA, UT): know/access, correct, delete, portability, opt-out of targeted advertising/profiling/sale (we don’t sell), appeal adverse decisions.

Submit a request at [email protected]. We will verify and respond within applicable timelines. You will not receive discriminatory treatment for exercising rights.

10) Children

The Services are not directed to children under 13 (or under 16 in the EU). We do not knowingly collect children’s data.

11) Cookies & Tracking

We use strictly necessary cookies and, with consent where required, analytics and marketing cookies. Manage preferences via our cookie banner or your browser settings.

12) AI Features

  • Inputs and outputs may be processed to deliver AI functionality and to improve quality and safety (using aggregation and de-identification where feasible).
  • You control what data you send to AI features. Do not input highly sensitive data unless necessary and properly safeguarded.

13) Data Processing Roles & DPA

For customer end-user data, Makyo acts as a processor/service provider under a Data Processing Addendum (DPA) with Standard Contractual Clauses. Contact us to execute our DPA: [email protected].

14) Changes

We may update this Policy. We will post the new version and update the “Effective Date.” Material changes will be notified via the Service or email.

15) Contact

Makyo Co
Attn: Privacy

Privacy Policy

Effective Date: 9 August 2025

Makyo Co (“Makyo,” “we,” “our,” or “us”) provides a no-code platform to build apps and websites with an AI layer and third-party integrations (“Services”). This Privacy Policy explains how we collect, use, disclose, and protect personal information.

1) Scope

This Policy applies to personal information we process about visitors, account holders, end users of apps built with Makyo, and prospects. If you are an end user of a customer’s app, Makyo processes your data as a processor/service provider; the Makyo customer is your data controller/business.

2) Information We Collect

  • Account & billing: name, email, password, company, plan, payment tokens (via our payment processor).
  • Workspace/project data: schemas, content, media, app configs, logs, version history, rollback metadata.
  • Integrations: data retrieved from services you connect (e.g., Google Drive, OneDrive, Gmail, Stripe) per your permissions.
  • Support & communications: messages, tickets, feedback, call/chat recordings where applicable.
  • Usage & device: IP, device/OS/browser, pages/actions, diagnostics, crash reports, performance metrics.
  • Cookies/IDs: authentication, security, preferences, analytics, and (if you consent) marketing.

3) How We Use Information

  • Provide, secure, and troubleshoot the Services (including AI features and versioning/rollback).
  • Operate integrations you authorize.
  • Improve features, quality, and performance (aggregate or de-identified where possible).
  • Billing, account management, and customer support.
  • Send service notices; send marketing only where permitted and with opt-out.
  • Detect/prevent fraud, abuse, and security incidents; comply with law.

4) Legal Bases (EU/UK)

  • Contract: to deliver the Services.
  • Legitimate interests: to improve and secure the platform, and to market to business contacts.
  • Consent: for cookies/marketing where required.
  • Legal obligation: record-keeping, sanctions screening, tax.

5) Sharing

  • Service providers/sub-processors: hosting, storage, analytics, support, email, payments, AI inference. Bound by contracts and security obligations.
  • Integration partners you choose: according to your settings and the third party’s terms.
  • Corporate events: merger, acquisition, financing, or sale of assets.
  • Legal/safety: to comply with law or protect rights, safety, and integrity.

We do not sell personal information and we do not share it for cross-context behavioral advertising without your consent.

6) International Transfers

We are USA-based. Where required, we use appropriate safeguards such as EU/UK Standard Contractual Clauses and additional measures.

7) Security

  • Encryption in transit and at rest for core data stores.
  • Access controls, least-privilege, audit logging, vulnerability management, and incident response.
  • No method is 100% secure; you are responsible for strong passwords and access hygiene.

8) Retention

We retain personal information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. You may request deletion; see “Your Rights.” Backups and logs are purged on rolling schedules.

9) Your Rights

  • EU/UK/EEA: access, rectify, erase, restrict, object, portability, and consent withdrawal.
  • US (e.g., CA, CO, CT, VA, UT): know/access, correct, delete, portability, opt-out of targeted advertising/profiling/sale (we don’t sell), appeal adverse decisions.

Submit a request at [email protected]. We will verify and respond within applicable timelines. You will not receive discriminatory treatment for exercising rights.

10) Children

The Services are not directed to children under 13 (or under 16 in the EU). We do not knowingly collect children’s data.

11) Cookies & Tracking

We use strictly necessary cookies and, with consent where required, analytics and marketing cookies. Manage preferences via our cookie banner or your browser settings.

12) AI Features

  • Inputs and outputs may be processed to deliver AI functionality and to improve quality and safety (using aggregation and de-identification where feasible).
  • You control what data you send to AI features. Do not input highly sensitive data unless necessary and properly safeguarded.

13) Data Processing Roles & DPA

For customer end-user data, Makyo acts as a processor/service provider under a Data Processing Addendum (DPA) with Standard Contractual Clauses. Contact us to execute our DPA: [email protected].

14) Changes

We may update this Policy. We will post the new version and update the “Effective Date.” Material changes will be notified via the Service or email.

15) Contact

Makyo Co
Attn: Privacy
9450 SW Gemini Dr PMB 88896 Beaverton, OR, 97008 US
[email protected]