top of page

Privacy Policy

Last updated on: May 12, 2025

  1. Introduction
    This Privacy Policy outlines how millionways AI (“millionways,” “we,” “us,” or “our”) collects, uses, and protects personal data obtained through our website, mobile applications (available on the App Store and Google Play), chatbot services, API services, and other digital interactions.

    millionways' Data Protection Officer is Martin Cordsmeier, who can be reached at privacy@millionways.ai
     

  2. Company Information

    millionways, Inc.
    169 Madison Ave, STE 38202
    New York, NY 10016
    For privacy-related inquiries: privacy@millionways.ai
     

  3. ​Date We Collect
     

    • User-Provided Information

      • User-Generated Content: Text, voice recordings, email, and other user-generated inputs collected via our mobile

      • apps, chatbot, and API integrations.

      • Payment Information: Processed securely via Stripe and PayPal.

      • Contact Information: Name, email address provided through contact forms
         

    • Automatically Collected Data

      • Technical Information: IP address, device type, operating system, browser type, usage data via Firebase analytics
         

  4. Purpose of Data Collection

    • Providing personalized psychological insights through our proprietary AI.

    • Facilitating customer support and inquiries.

    • Managing and processing payments securely.

    • We do not use user-generated data to train our AI models or for any unrelated purposes.
       

  5. Third-Party Service Providers

    • Hosting and Infrastructure Providers

      • Digital Ocean: Server hosting infrastructure (Data centers located in the USA).

      • Firebase (Google): Backend services, authentication, analytics, and storage (Data centers primarily located in the USA).

      • Google Cloud Platform (GCP): GPU processing infrastructure (Servers located in the USA).

      • MongoDB Atlas: Cloud database service provider (Hosted in US-based data centers).
         

    • Other Processors

      • OpenAI and Gemini (Google): AI service providers (US-based processing).

      • Rev.ai: Audio transcription provider (US-based).

      • Gandi.net: Domain management services (EU-based, France).

      • Vimeo: Video hosting without cookies (US-based).

      • Stripe & PayPal: Payment processors (Both US-based).
         

  6. ​Data Storage and Security
     

    • Website, App, and Chatbot Data

      • User-generated content from our website, mobile applications, and chatbot services are securely stored using Firebase Firestore and Firebase Storage, encrypted at rest.

    • API Data

      • Data processed via our API services is securely stored in MongoDB Atlas, encrypted at rest. Processing and analysis of this data occur on servers hosted by Digital Ocean and Google Cloud Platform (GCP), secured and encrypted both at rest and in transit.

      • We employ industry-standard measures to prevent unauthorized access, including encryption, regular backups, and secure access controls.

    • Subprocessors and Transparency

      • millionways may engage subprocessors to provide essential functionalities and services. We conduct due diligence on all subprocessors to ensure compliance with relevant privacy standards and secure data processing practices. A current list of subprocessors will be provided upon request.
         

  7. ​Data Retention

    • Data is retained only for as long as necessary to fulfill service obligations or until deletion is requested by the user.
       

  8. Access personal data
     

    • Request rectification or deletion of personal data

    • Withdraw consent at any time

    • Requests can be submitted via email: privacy@millionways.ai
       

  9. Legal Basis for Processing
     

    • User consent

    • Performance of contract obligations

    • Compliance with legal obligations
       

  10. Compliance
     

    • ​We adhere to GDPR regulations and maintain high standards of privacy protection.
       

  11.  Cookies Policy

    • ​We utilize essential cookies for operational purposes. Vimeo videos are hosted without cookie usage.
       

  12. ​Data Sharing and Disclosure

    Service Providers: We engage trusted third-party vendors to perform functions and provide services to us, such as hosting, data storage, analytics, and customer service. These third parties are authorized to use your personal data only as necessary to provide these services to us.

    Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your personal data may be transferred as part of that transaction. We will notify you of any such deal and outline your choices in that event.

    Legal Requirements: We may disclose your personal data if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

    Protection of Rights: We may disclose your personal data when we believe it is necessary to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, or as evidence in litigation in which we are involved.
     

  13. Data Subject Rights
     

    • Access: You can request access to the personal data we hold about you.

    • Correction: You can request that we correct or update your personal data if it is inaccurate or incomplete.

    • Deletion: You can request that we delete your personal data, subject to certain exceptions.

    • Objection: You can object to the processing of your personal data in certain circumstances.

    • Restriction: You can request that we restrict the processing of your personal data in certain situations.

    • Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format.

    • To exercise any of these rights, please contact us at privacy@millionways.ai. We will respond to your request in accordance with applicable data protection laws.
       

  14. ​International Data Transfers

    We may transfer your personal data to countries other than the one in which you reside. These countries may have data protection laws that are different from the laws of your country. When we transfer your personal data to other countries, we will protect that data as described in this Privacy Policy and comply with applicable legal requirements providing adequate protection for the transfer of personal data to countries outside the EEA or UK.
     

  15. Data Security

    Encryption: All data is encrypted at rest and in transit using industry-standard encryption protocols.
    Access Controls: Access to personal data is limited to authorized personnel who require access to perform their job functions.

    Regular Audits: We conduct regular audits and assessments of our systems and practices to ensure ongoing compliance with our security policies.
     

  16.  Children's Privacy

    Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that a child under 16 has provided us with personal data, we will take steps to delete such information.
     

  17.  Changes to This Privacy Policy

    We may update this Privacy Policy periodically due to legal, technical, or business developments. We will notify users via email or prominent notice on our website of any significant changes. We encourage users to periodically review this page for the latest information on our privacy practices.
     

  18. Contact Us

    If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

    millionways, Inc.
    169 Madison Ave, STE 38202
    New York, NY 10016
    Email: privacy@millionways.ai

​

​

bottom of page