Privacy Policy

Last Updated: December 20th, 2025
Legal Entity: Seraphex Inc (registered in Macomb County, Michigan, United States)
Contact:[email protected]

1. Scope and Application

This Privacy Policy describes how Seraphex Inc (“Seraphex,” “we,” “us,” or “our”) collects, uses, discloses, and protects information when you access or use our websites (including seraphex.net), subdomains (for example, kdesk.seraphex.net), applications, APIs, and other services (collectively, the “Services”).

This Privacy Policy applies to Seraphex Inc and its subsidiaries (entities under more than fifty percent (50%) ownership or control by Seraphex Inc). This Privacy Policy does not apply to information collected offline or by third parties outside of the Services, except where expressly stated.

2. Relationship to Terms of Service

This Privacy Policy is incorporated by reference into our Terms of Service. Any disputes related to privacy or data protection are governed by the dispute resolution provisions (including mandatory binding arbitration) set forth in the Terms of Service.

3. Roles Under Data Protection Laws

Depending on how you use the Services:

• Customer (Business) Users: If you use the Services on behalf of an organization (for example, a support platform where you manage end-user requests), your organization is typically the data controller of Customer Data, and Seraphex acts as a data processor to provide the Services.
• Website/Direct Users: For certain data we collect to operate our websites and accounts (for example, account registration and security logs), Seraphex may act as a data controller.

4. Information We Collect

4.1 Information You Provide

• Account and profile information: name, email address, phone number, company name, address, and related identifiers.
• Support and communications: message contents, attachments, and information you provide when contacting support.
• Customer Data: content and data submitted to the Services by you or on your behalf (for example, tickets, messages, files, and related metadata).

Security note: No Seraphex representative will request your passwords or sensitive authentication credentials.

4.2 Information Collected Automatically

• Log and device data: IP address, browser type, device identifiers, operating system, timestamps, referral URLs, pages viewed, and interaction data.
• Usage data: feature usage, performance data, and diagnostics to maintain and improve the Services.

4.3 Cookies and Similar Technologies

We may use cookies, local storage, or similar technologies to operate the Services, maintain sessions, remember preferences, and support security. Where required by law, we will request consent for non-essential cookies.

4.4 Payment Information

Payments and subscription billing are processed by third-party payment processors (such as Stripe, Inc. and/or Square, Inc.). Seraphex does not store or process full payment card numbers on its own servers. Your payment processor’s privacy practices apply to payment information they collect.

5. How We Use Information

We use information to:

• Provide, operate, maintain, and support the Services.
• Create and administer accounts, authenticate users, and manage access.
• Process transactions and manage subscriptions (through payment processors).
• Monitor, prevent, detect, and investigate fraud, abuse, security incidents, and illegal activity.
• Improve, personalize, and develop new features and functionality.
• Communicate with you regarding service, security, administrative messages, and support.
• Comply with applicable law and enforce our Terms of Service and other agreements.

6. Legal Bases for Processing

Where required under applicable law (including the GDPR/UK GDPR), we process personal data based on one or more of the following legal bases:

• Contract: to provide the Services and fulfill our obligations to you or your organization.
• Legitimate interests: to secure, maintain, and improve the Services, prevent abuse, and operate our business.
• Consent: where required (for example, certain cookies or marketing communications).
• Legal obligation: to comply with laws, lawful requests, and regulatory requirements.

7. How We Share Information

We do not sell personal information. We may share information in the following circumstances:

• Service providers and subprocessors: vendors that help us operate the Services (for example, hosting, email delivery, analytics, security, and support tools), under contractual confidentiality and security obligations.
• Payment processors: to process transactions and manage subscriptions.
• Compliance and legal: to comply with applicable law, court orders, subpoenas, or other lawful requests.
• Protection and enforcement: to protect the rights, safety, and security of Seraphex, our users, or the public, and to enforce our agreements.
• Business transfers: in connection with a merger, acquisition, financing, reorganization, or sale of all or part of our business (subject to appropriate protections).

8. International Data Transfers

The Services may be accessed from locations around the world. Where personal data is transferred internationally, we take steps designed to ensure appropriate safeguards are in place as required by applicable law.

9. Data Retention

We retain personal data for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods depend on the nature of the data and the purpose for which it is processed. Certain records may be retained for up to seven (7) years where required or permitted by law.

10. Security

We implement administrative, technical, and organizational measures designed to protect personal data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

11. Data Breach Notice

If we become aware of a security incident involving personal data, we will take reasonable steps to investigate and mitigate the incident and provide notices as required by applicable law and contractual commitments.

12. Your Rights and Choices

12.1 GDPR/UK GDPR Rights

Depending on your location and applicable law, you may have rights including access, rectification, erasure, restriction, objection, and data portability. You may also have the right to lodge a complaint with a supervisory authority.

To exercise these rights, contact us at [email protected]. We may need to verify your identity before responding.

12.2 CCPA/CPRA (California) Rights

California residents may have rights to request access to, deletion of, and information about our collection and disclosure of personal information, and to opt out of certain uses where applicable. Seraphex does not sell personal information.

To submit a request, contact us at [email protected]. We may require verification prior to fulfilling requests.

12.3 Cookie Controls

You may be able to control cookies through your browser settings. Disabling certain cookies may affect the functionality of the Services.

13. Children’s Privacy

The Services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided personal information, contact us and we will take appropriate steps to address the request.

14. Third-Party Links and Embedded Content

The Services may include links to third-party websites or embedded content. Third parties may collect data about you under their own privacy policies. Seraphex is not responsible for third-party privacy practices.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the Services or by other appropriate means consistent with our Terms of Service. The “Last Updated” date above reflects the most recent revision.

16. Contact Us

If you have questions about this Privacy Policy or our privacy practices, contact us at [email protected].