Legal

Privacy Policy

Last updated: June 8, 2026  ·  Effective date: June 8, 2026

This Privacy Policy explains how EngageIt (“EngageIt,” “we,” “us,” or “our”), operated by [Legal Entity Name], collects, uses, discloses, and protects personal information in connection with our websites (including engageit.ai), our application at app.engageit.ai, and our related products and services (collectively, the “Services”). EngageIt is a customer-data and engagement platform powered by Thinkfleet AI.

Two roles, two relationships. EngageIt processes personal data in two distinct capacities:
  • As a controller — for personal information about our own business customers, prospects, and website visitors (for example, your account and billing details). This is the data described in most of this Policy.
  • As a processor (service provider) — for the customer data that our business customers connect, upload, or sync into the Services about their end customers. For that data, our business customer is the controller and our handling is governed by our Terms of Service and applicable Data Processing Addendum. See Section 9.

Contents

  1. Information we collect
  2. How we use information
  3. Legal bases for processing
  4. How we share information
  5. Cookies and tracking technologies
  6. Data retention
  7. Security
  8. Your privacy rights
  9. Data we process on behalf of our customers
  10. International data transfers
  11. SMS, RCS, and email messaging
  12. Children’s privacy
  13. Changes to this Policy
  14. Contact us

1. Information we collect

We collect the following categories of personal information:

Information you provide

  • Account & profile data — name, business name, email address, phone number, password, role, and preferences when you create or manage an account.
  • Billing data — billing contact, plan, and transaction records. Card and payment details are collected and processed by our payment processor; we do not store full card numbers.
  • Support & communications — messages, requests, and other information you send when you contact us or fill out a form.

Information collected automatically

  • Usage & device data — IP address, browser and device type, pages and features used, referring URLs, timestamps, and similar log data.
  • Cookies & similar technologies — see Section 5.

Information from third parties

  • Connected services — when you connect an integration (e.g., a store, POS, or messaging channel), we receive data from that service as authorized by you.
  • Partners & providers — analytics, fraud-prevention, and marketing providers may supply us with limited information to operate and improve the Services.

2. How we use information

We use personal information to:

  • Provide, operate, maintain, and secure the Services;
  • Create and manage accounts, authenticate users, and process billing;
  • Provide customer support and respond to your requests;
  • Personalize and improve the Services, and develop new features;
  • Send service, security, and transactional communications;
  • Send marketing communications where permitted (you can opt out at any time);
  • Monitor, detect, and prevent fraud, abuse, and security incidents;
  • Comply with legal obligations and enforce our agreements.

We do not sell personal information, and we do not use the customer data our business customers entrust to us to train general-purpose AI models for unrelated purposes.

Where the GDPR or UK GDPR applies, we rely on the following legal bases:

  • Contract — to provide the Services you or your organization request;
  • Legitimate interests — to secure, improve, and market our Services in a manner balanced against your rights;
  • Consent — for certain marketing and cookies, which you may withdraw at any time;
  • Legal obligation — to comply with applicable law.

4. How we share information

We share personal information with:

  • Service providers / subprocessors — hosting, infrastructure, analytics, payment, email/SMS/RCS delivery, and support vendors who act on our instructions under contract;
  • Connected integrations — services you choose to connect, at your direction;
  • Professional advisors — auditors, lawyers, and accountants;
  • Corporate transactions — in connection with a merger, acquisition, financing, or sale of assets;
  • Legal & safety — to comply with law, respond to lawful requests, or protect rights, property, and safety.

5. Cookies and tracking technologies

We and our providers use cookies and similar technologies to keep you signed in, remember preferences, measure traffic, and improve the Services. You can control cookies through your browser settings and, where applicable, through our cookie banner. Some features may not function properly without certain cookies.

6. Data retention

We retain personal information for as long as needed to provide the Services, comply with our legal obligations, resolve disputes, and enforce our agreements. Retention periods vary based on the type of data and the purpose for which it was collected. When data is no longer needed, we delete or de-identify it.

7. Security

We maintain administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit, access controls, and monitoring. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8. Your privacy rights

Depending on where you live, you may have the right to:

  • Access, correct, or delete your personal information;
  • Port your data to another service;
  • Object to or restrict certain processing;
  • Withdraw consent where processing is based on consent;
  • Opt out of marketing communications and certain targeted advertising;
  • Lodge a complaint with a supervisory authority.

To exercise your rights, contact us at privacy@engageit.ai. We will respond as required by applicable law. We will not discriminate against you for exercising your rights. If your personal information is held by EngageIt on behalf of one of our business customers, please direct your request to that business; we will assist them as their processor.

California residents: Under the CCPA/CPRA you have rights to know, delete, correct, and opt out of the “sale” or “sharing” of personal information. EngageIt does not sell personal information. You may submit requests using the contact details above.

9. Data we process on behalf of our customers

When our business customers use EngageIt to manage their own end-customer data — including orders, visits, contacts, messages, and rewards activity — they are the controller of that data and EngageIt acts as their processor (service provider). We process such data only to provide the Services in accordance with our Terms of Service, our customer’s instructions, and any applicable Data Processing Addendum. If you are an end customer of a business that uses EngageIt and wish to exercise privacy rights, please contact that business directly.

10. International data transfers

We may process and store information in countries other than where you reside. Where required, we use appropriate safeguards — such as Standard Contractual Clauses — for transfers of personal information across borders.

11. SMS, RCS, and email messaging

The Services enable our business customers to send SMS, RCS, and email messages to their own contacts. Consent for those messages is collected and managed by the sending business. EngageIt honors opt-out requests (e.g., replying STOP to text messages or using the unsubscribe link in emails) and provides tools for our customers to do the same. Message and data rates may apply to messages you receive.

12. Children’s privacy

The Services are not directed to children under 16, and we do not knowingly collect personal information from children. If you believe a child has provided us personal information, contact us and we will take appropriate steps to delete it.

13. Changes to this Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date above and, where appropriate, provide additional notice. Your continued use of the Services after changes take effect constitutes acceptance of the updated Policy.

14. Contact us

If you have questions about this Privacy Policy or our data practices, contact us at:

EngageIt — operated by [Legal Entity Name]
Privacy: privacy@engageit.ai
General: hello@engageit.ai
Mailing address: [Mailing Address]

Note: This Privacy Policy is a template prepared for the EngageIt marketing site. Replace the bracketed placeholders ([Legal Entity Name], [Mailing Address]) and have it reviewed by qualified legal counsel before publishing, so it accurately reflects your entity, jurisdiction, and actual data practices.