Kurli logo
Login

Privacy Policy

Effective Date: Jun 1, 2025

Kurli Inc. ("Kurli") is committed to protecting the privacy and personal information of its clients, partners, and users (collectively, "Users"). This Privacy Policy describes how Kurli collects, uses, stores, discloses, and safeguards information through the Kurli platform and related services (the "Services").

By using the Services, Users agree to the terms outlined in this Privacy Policy.

If a User does not agree, the Services must not be used.

1. INFORMATION COLLECTED

Kurli collects the following types of information:

1.1 Business and Account Information

Information provided by Users during account registration or onboarding, including business name, license details, contact information, store locations, and other identifiers necessary for regulatory compliance and operational management.

1.2 Customer Data

Data submitted by the User or collected through use of the Services, such as sales records, customer contact details, inventory logs, and transaction histories.

1.3 Usage Data

Information automatically collected from User interactions with the Services, including access logs, page views, system activity, feature usage, browser type, device ID, and IP address.

1.4 AI-Generated and Processed Data

Information extracted, curated, or synthesized through Kurli’s AI technologies as described in the Terms of Use.

2. USE OF INFORMATION

Kurli uses the collected information for the following purposes:

  • To provide, maintain, and enhance the Services;
  • To facilitate user onboarding and account management;
  • To process payments and manage billing;
  • To ensure compliance with regulatory obligations;
  • To analyze usage patterns and optimize system performance;
  • To support AI-based features, such as content extraction and curation;
  • To deliver customer support and respond to inquiries;
  • To enforce Terms of Use and protect the integrity of the platform.

3. SHARING OF INFORMATION

Kurli does not sell or rent User data. Information may be shared only as follows:

3.1 Service Providers and Subcontractors

With trusted third-party vendors (e.g., Square for payment processing, Supabase for infrastructure) who are bound by confidentiality and data protection obligations.

3.2 Legal Compliance

Where required by applicable laws, regulations, legal processes, or enforceable governmental requests.

3.3 Business Transfers

In the context of a merger, acquisition, financing, or sale of company assets, provided the acquiring party agrees to honor this Privacy Policy.

4. DATA SECURITY

Kurli implements commercially reasonable security measures, including:

  • AES-256 encryption of data in transit and at rest;
  • Secure, encrypted daily backups stored in Canada;
  • Access controls and audit logs;
  • Periodic security assessments and vulnerability testing.

Despite these efforts, no system is entirely immune to risk. Users are responsible for securing their access credentials and promptly reporting any suspected unauthorized activity.

5. DATA RETENTION

User data is retained for as long as necessary to provide the Services and fulfill legal, operational, or contractual obligations. If an account is terminated, data may be retained temporarily for dispute resolution, compliance, and support purposes, as described in the Terms of Use. Kurli does not make such data public or use it for any unrelated purposes. When no longer required, data may be anonymized or securely deleted.

6. AI AND AUTOMATED PROCESSING

Kurli uses AI to support features such as data extraction, content generation, and system optimization. These processes are applied to both user-submitted and publicly available data, as outlined in the Terms of Use. AI outputs are intended solely for internal system use and customer support. Kurli does not use AI to profile individuals or make automated decisions with legal or similarly significant effects.

7. INTERNATIONAL DATA TRANSFERS

Kurli stores all primary User data within Canada. Where data must be processed or accessed from other jurisdictions, Kurli ensures compliance with applicable cross-border data transfer regulations and contractual protections.

8. USER RIGHTS

Depending on jurisdiction, Users may have rights regarding their personal information, including:

  • Access to data collected;
  • Correction or deletion of data;
  • Objection to or restriction of data processing;
  • Data portability.

To exercise these rights, Users may contact support@kurli.co. Requests will be responded to in accordance with applicable privacy laws.

9. COOKIES AND TRACKING TECHNOLOGIES

Kurli may use cookies and similar technologies to understand user behavior, improve performance, and provide a better user experience. Users can configure browser settings to block cookies, though this may impact certain functionality.

10. POLICY CHANGES

Kurli reserves the right to update this Privacy Policy. Changes shall be posted on the Kurli website and may be communicated via email. Continued use of the Services following changes constitutes acceptance of the revised Policy.

11. CONTACT INFORMATION

For questions or concerns regarding this Privacy Policy, please contact:

Privacy Officer: Kurli Inc.
Email: support@kurli.co