Journiq
Volume Legalia · Privacy

Privacy Policy

This Privacy Policy explains how Journiq Inc. (“Journiq,” “we,” “us”) collects, uses, discloses, and safeguards information when you use our customer engagement platform, websites, SDKs, and APIs (collectively, the “Services”).

1. Overview

Journiq helps businesses (our “Customers”) communicate with their end users across push, email, SMS, in-app, and deep links. We act both as a service provider to those Customers and as a controller for limited data we collect directly through our marketing site and account systems.

2. Our Role

When a Customer uses the Services to engage their end users, the Customer is the data controller and Journiq is the data processor. We process end-user data only on documented instructions from that Customer, in accordance with the applicable Data Processing Agreement.

When you visit getjourniq.com, register an account, or contact our sales or support teams, Journiq is the controller of the personal data you provide.

3. Data We Collect

From our Customers (account holders)

  • Account: name, work email, organization name, job title.
  • Billing: billing address, tax IDs, payment-method metadata (full card data is held by our PCI-certified payment processor).
  • Usage: dashboard activity, feature interactions, log events, IP address, user agent.
  • Support: messages, attachments, and metadata you submit when you contact us.

From end users (on behalf of our Customers)

  • Identifiers such as user IDs, device IDs, push tokens, anonymized device fingerprints.
  • Event and journey data: events, screens, properties, timestamps that the Customer chooses to send.
  • Profile attributes the Customer assigns (e.g., name, email, phone, custom traits).
  • Engagement metrics: deliveries, opens, clicks, conversions, attribution data.
  • Approximate location derived from IP, and device/app metadata supplied by the SDKs.
Journiq does not require, and discourages, sending special-category data (e.g., health, biometric, or government-issued identifiers) through the Services unless explicitly contracted.

4. How We Use Data

  • Provide, secure, and operate the Services.
  • Authenticate users, prevent abuse, and detect fraud.
  • Compute analytics and dashboards for our Customers.
  • Deliver messages on behalf of our Customers across channels.
  • Communicate with Customer admins about service updates, security, and billing.
  • Improve the Services, with personal data minimized or aggregated.
  • Comply with legal obligations and enforce our agreements.

5. Sharing & Subprocessors

We share information with vetted vendors who help us run the Services — for example, cloud hosting, message delivery providers (FCM, APNs, SMTP, SMS gateways), payment processing, error tracking, and analytics. Each subprocessor is bound by contract to confidentiality and security commitments at least as protective as ours.

We may also disclose information if required by law, to enforce our terms, or to protect the rights, property, or safety of Journiq, our Customers, or the public.

6. International Transfers

Journiq is headquartered in the United States and processes data globally. Where personal data is transferred from the EEA, UK, or Switzerland, we rely on Standard Contractual Clauses or other valid transfer mechanisms.

7. Retention

Account data is retained for the life of the account plus a limited period for backups, audit, and dispute resolution. End-user data processed on behalf of a Customer is retained according to that Customer’s configured retention windows; on contract termination, data is deleted within 90 days unless a longer period is required by law.

8. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, port, or object to the processing of your personal data. End users should direct requests to the Customer that controls their data. For data Journiq controls, contact privacy@getjourniq.com.

9. Security

We maintain administrative, technical, and physical safeguards designed to protect personal data — including encryption in transit and at rest, least-privilege access controls, audit logging, and regular security testing. See our Security overview for details.

10. Children

The Services are not directed to children under 16, and we do not knowingly collect personal data from them. Customers must not use the Services to process data of children below the minimum age required by applicable law.

11. Changes

We may update this Privacy Policy from time to time. Material changes will be highlighted in-product or via email to account administrators. The “Effective date” above always reflects the current version.

12. Contact

Questions or requests can be sent to privacy@getjourniq.com or by mail to Journiq Inc., Attn: Privacy, 2261 Market Street #4567, San Francisco, CA 94114, USA.