Privacy Policy

This Privacy Policy explains how the Jomioz team (“Jomioz,” “we,” “us,” or “our”) collects, uses, and shares information when you visit our website (such as jomioz.com), use our marketing pages, join a waitlist, contact us, or use the Jomioz product (web, mobile, or related services) (together, the “Service”).

For product users, the account owner (typically the business) decides what customer and job data is stored in the Service. That business is usually the controller of its customers’ and employees’ data; we process such data on its instructions, as further described in our product terms and this Policy.

Account and profile: name, work email, company name, role, and similar details you or your business provide when you sign up, book a demo, or contact us.

Service usage: how you use the app (e.g. features, logs, device and browser type, rough location derived from IP, support tickets, and crash or diagnostics data) to run, secure, and improve the Service.

Payment: billing and payment data are handled by our payment partners; we do not store full card numbers on our servers in a way that allows us to charge again without the processor’s tools, except as needed for your subscription and as described by that processor’s terms.

Communications: messages you send us (e.g. contact or sales forms) and, where you opt in, product or marketing email.

Waitlist and forms: if you use our waitlist (for example, via Tally) or other hosted forms, the provider of that form processes data under their and our instructions as described in this Policy and the form you submit.

We use information to: provide, secure, and improve the Service; authenticate users; process subscriptions and support requests; send service and, where allowed, product updates; detect abuse and protect rights; meet legal obligations; and generate internal analytics and aggregated, non-identifying statistics.

If you are in the EEA, UK, or a similar region, our main legal bases are: performance of a contract (for account setup, product access, billing, and support); legitimate interests (for security, fraud prevention, product improvement, service reliability, and business operations); compliance with law (for tax, accounting, sanctions, and lawful disclosure obligations); and consent where we specifically ask for it (for example, contact-form permissions or any non-essential cookies or similar technologies we may introduce in the future).

Our website and application may use cookies, local storage, and similar technologies. These generally fall into three categories: strictly necessary technologies (for core site and account functionality, security, routing, and session handling), analytics or performance technologies (for example, privacy-oriented measurement tools such as Vercel Analytics or Vercel Speed Insights), and marketing technologies (which we do not currently use on the marketing site for cross-site ad targeting).

You can control cookies in your browser settings, although blocking strictly necessary technologies may limit site functionality. If we introduce non-essential cookies or similar tracking technologies in a context where consent is legally required, we will seek that consent before enabling them and will describe the relevant choices in the site experience and this Policy.

We use service providers (subprocessors) to help us run the Service. Current examples include hosting and deployment providers such as Vercel; transactional email providers such as Resend; hosted form providers such as Tally for waitlist capture; and, where payment functionality is used, payment providers such as Stripe. These providers process data only to provide services to us, under contractual and security restrictions appropriate to their role.

We do not sell personal data. We also do not currently share personal data from the marketing site for cross-context behavioural advertising. We may disclose data when required by law, to protect the Service or people, or in connection with a merger, financing, reorganization, or asset sale, with notice where required by law.

We and our partners may process data in the European Economic Area, the United States, the United Kingdom, and other countries where we or they operate. Where the law requires, we use approved transfer mechanisms such as the EU or UK standard contractual clauses, together with supplementary technical and organizational measures appropriate to the nature of the data and the service involved.

Where appropriate, we also assess vendor risk, the legal framework applicable to the transfer, and the safeguards available for the provider and use case. You can contact us at info@jomioz.com if you need more detail about the transfer mechanism relevant to your account.

We keep information only as long as needed for the purposes above, to resolve disputes, and to meet legal, accounting, or security requirements. By way of example: account and subscription records are generally kept while the account remains active and for a reasonable period afterward; contact-form and waitlist submissions are kept until the enquiry is resolved or the waitlist is no longer being operated; support correspondence is typically kept for continuity and audit purposes; and technical logs are usually kept for a shorter period tied to security, diagnostics, and abuse prevention.

Exact retention periods can vary by dataset, customer relationship, legal obligation, and system design. When data is no longer needed, we delete or anonymize it, subject to backup copies and archival records that age out in the ordinary course.

Where Jomioz acts as a processor for a business customer’s personal data, that customer may require data processing terms. If you need a Data Processing Agreement or similar privacy documentation for your procurement or compliance process, contact us at info@jomioz.com and we can discuss appropriate contractual documentation for the services you use.

Depending on where you live, you may have the right to access, correct, delete, or export your information; object to or restrict certain processing; withdraw consent; or lodge a complaint with a data protection authority. You can contact us at info@jomioz.com. We will respond in line with applicable law. You may have additional rights (for example, under US state law); we will honor those as required.

We use technical and organizational measures designed to protect information against loss, misuse, and unauthorized access. No online service is 100% secure; please use strong passwords and keep your access credentials private.

The Service is for businesses and is not intended for children under 16 (or the age required in your country). We do not knowingly collect personal information from children. If you believe we have, contact us and we will delete it.

We may update this Policy from time to time. The “Last updated” date at the top will change, and for material changes we will provide additional notice (for example, by email or in-app) where the law requires. We encourage you to review this page periodically.

Questions about privacy: info@jomioz.com. You may also write to the postal address we publish on our site or in correspondence with you.