1. Who we are
Fricktionless Corp., a Delaware corporation (“Fricktionless,” “we,” or “us”), operates the mov\u00f3 platform and related services. This Privacy Policy describes how we collect, use, protect, and share personal information in connection with the Services.
2. Information we collect
Information you provide. When you create an account, request a Revenue Intelligence Brief, or subscribe to the Services, you provide information such as your name, email address, organization affiliation, role, and billing details. When you use the Services, you may provide documents, financial data, operational data, and other content for analysis.
Information collected automatically. When you use the Services, we automatically collect information such as your IP address, browser type and version, pages visited, time and date of visits, and session activity. We use cookies and similar technologies to authenticate sessions and remember preferences.
Information from public sources. To generate Revenue Intelligence Briefs and related output, we pull information from publicly available sources such as IRS Form 990 filings, government databases, regulatory publications, and organizational websites. This information is cited with source and date in the output delivered to you.
3. How we use information
- To provide, maintain, and improve the Services.
- To generate analytical output and decision-support artifacts from your data.
- To communicate with you about the Services, including billing and support.
- To comply with legal obligations and enforce our Terms of Service.
- To detect and prevent fraud, abuse, and security incidents.
We do not sell your personal information. We do not use your Customer Data to train models that serve other customers.
4. Protected Health Information (HIPAA)
The standard Services do not include the processing of Protected Health Information as defined under HIPAA. If an engagement expands to require our handling of PHI on your behalf, we will execute a Business Associate Agreement prior to any PHI being shared. Our security practices include safeguards aligned with HIPAA’s Security Rule (45 C.F.R. Part 164, Subpart C) and are summarized in our Business Associate Agreement template, available on request.
5. How we share information
Service providers. We share information with third-party service providers who perform services on our behalf (cloud hosting, payment processing, email delivery, analytics) under written agreements that restrict their use of information to providing those services.
Legal obligations. We may disclose information if required by law, court order, or other legal process; to cooperate with law enforcement; or to protect our rights, property, or safety or that of others.
Business transfers. If Fricktionless is involved in a merger, acquisition, or sale of assets, information may be transferred as part of that transaction. We will notify affected customers before any transfer becomes subject to a different privacy policy.
6. Data security
We implement administrative, physical, and technical safeguards designed to protect the confidentiality, integrity, and availability of your information. These include:
- Encryption of data in transit using TLS 1.2 or stronger.
- Encryption of data at rest using AES-256 or equivalent.
- Role-based access controls with least-privilege enforcement.
- Multi-factor authentication for administrative access.
- Audit logging of access and modification of sensitive data.
- Periodic security testing and vulnerability management.
- Workforce security training at hire and annually.
- Written incident-response procedures.
No system is fully secure. In the event of a security incident that compromises your information, we will notify you consistent with applicable law and, where an executed Business Associate Agreement is in place, in accordance with its breach-notification terms.
7. Data retention and deletion
We retain your information for as long as your account is active or as needed to provide the Services. Upon termination, we will return Customer Data in a mutually agreed format within thirty (30) days and delete remaining copies except those retained in ordinary-course backups (which expire per standard retention policy) or as required by applicable law. You may request deletion of your account data at any time by emailing privacy@fricktionless.com.
8. Your rights
Depending on your jurisdiction, you may have rights to access, correct, delete, or export your personal information; to object to or restrict certain processing; and to withdraw consent where processing is based on consent. To exercise these rights, contact us at privacy@fricktionless.com. We will respond consistent with applicable law.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA). If you are located in the European Economic Area, United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR) and related laws.
9. Cookies
We use essential cookies to authenticate sessions and deliver the Services. We use analytics cookies to understand how the Services are used. You can control cookies through your browser settings. Blocking essential cookies may prevent parts of the Services from functioning.
10. Children
The Services are not directed to individuals under the age of sixteen (16), and we do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 16, we will delete it promptly.
11. International transfers
Fricktionless is based in the United States and processes information in the United States. If you access the Services from outside the United States, your information may be transferred to, stored, and processed in the United States. We take reasonable measures to ensure cross-border transfers comply with applicable law.
12. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be communicated to active customers by email at least thirty (30) days before taking effect. The “Effective date” at the top of this policy indicates when it was last revised.
13. Contact
Privacy questions or requests should be directed to privacy@fricktionless.com.
Fricktionless Corp.