Your Privacy Matters: This Privacy Policy explains how UltCRM collects, uses, discloses, and protects your information when you use our services. By using our Services, you agree to the collection and use of information in accordance with this policy.
UltCRM ("Company," "we," "us," or "our") is committed to protecting your privacy and personal information. This Privacy Policy describes our practices regarding the collection, use, storage, sharing, and protection of information we collect through our customer relationship management (CRM) platform and related services (collectively, the "Services").
This Privacy Policy applies to:
By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with this policy, please do not use our Services.
We collect information that you voluntarily provide to us, including:
When you use our Services, we automatically collect certain information, including:
We may receive information about you from third parties, including:
Our clients use our Services to collect and manage information about their customers and contacts ("Client Data"). We process Client Data on behalf of our clients as a data processor. Our clients are responsible for the lawfulness of their data collection practices and for providing appropriate privacy notices to their end users.
We monitor login patterns, IP addresses, and account activity specifically for the purpose of identifying unauthorized competitive access and ensuring compliance with our Terms of Service.
This monitoring includes, but is not limited to:
This monitoring is conducted to protect our proprietary Trade Secrets and intellectual property as described in our Terms of Service. By using our Services, you consent to this monitoring and acknowledge that:
We collect information through the following methods:
We use the information we collect to:
With your consent, we may use your information to:
You may opt out of marketing communications at any time by clicking the "unsubscribe" link in our emails or contacting us.
For users in the European Economic Area, we process personal data under the following legal bases:
| Purpose | Legal Basis |
|---|---|
| Providing the Services | Performance of Contract |
| Processing payments | Performance of Contract |
| Sending service communications | Legitimate Interests |
| Marketing communications | Consent |
| Improving the Services | Legitimate Interests |
| Fraud prevention | Legitimate Interests |
| Legal compliance | Legal Obligation |
We share information with third-party service providers who perform services on our behalf, including:
We may share information with business partners for joint marketing efforts or to offer co-branded services, with your consent where required.
We may share information with advertising platforms (Google, Meta, TikTok, Snapchat, YouTube) to facilitate advertising services you use through our platform. This sharing is governed by your choices and the terms of those platforms.
We may disclose information if required by law, legal process, or government request, or if we believe disclosure is necessary to:
In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred as a business asset. We will notify you of any such change.
We may share information with third parties when you have given us consent to do so.
We retain your information for as long as necessary to:
Specific retention periods:
After the applicable retention period, we will securely delete or anonymize your information.
We implement appropriate technical and organizational measures to protect your information, including:
We offer Time-based One-Time Password (TOTP) authentication as an additional security layer. When enabled, you will need both your password and a code from an authenticator app to access your account. We also provide single-use backup codes for account recovery.
When using our Progressive Web App (PWA), you may use your device's built-in biometric authentication (such as Face ID, Touch ID, or fingerprint) to access the application. We do not collect, store, or process any biometric data. All biometric authentication is handled entirely by your device's operating system. We only receive a confirmation that authentication was successful; we never receive or have access to your actual biometric information.
We maintain comprehensive audit logs of security-relevant activities, including login attempts, data access, and configuration changes. These logs are used for security monitoring, compliance purposes, and incident investigation. Audit logs are retained in accordance with our data retention policies and applicable legal requirements.
No method of transmission over the Internet or electronic storage is completely secure. While we strive to protect your information, we cannot guarantee absolute security. You are responsible for maintaining the security of your account credentials and enabling MFA for enhanced protection.
In the event of a data breach that affects your personal information, we will notify you and relevant authorities as required by applicable law.
Depending on your location, you may have the following rights regarding your personal information:
To exercise these rights, please contact us at privacy@ultcrm.com. We will respond to your request within the timeframe required by applicable law.
For personal data we collect directly from users, we act as the data controller. For Client Data processed on behalf of our clients, we act as a data processor.
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR), including:
For GDPR-related inquiries, please contact our Data Protection Officer at privacy@ultcrm.com.
We transfer data to the United States and other countries outside the EEA. Such transfers are protected by Standard Contractual Clauses, adequacy decisions, or other approved mechanisms.
If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):
In the past 12 months, we have collected the following categories of personal information:
We do not sell personal information in the traditional sense. However, we may share information with advertising partners in ways that could be considered a "sale" under CCPA. To opt out, please contact us or use the "Do Not Sell My Personal Information" link on our website.
California Civil Code Section 1798.83 permits California residents to request information about disclosure of personal information to third parties for direct marketing. Contact us for more information.
We operate globally and may transfer your information to countries other than your own. When we transfer information internationally, we ensure appropriate safeguards are in place, including:
By using our Services, you consent to the transfer of your information to countries that may have different data protection laws than your country of residence.
We use the following types of cookies:
You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our Services. For more information, please see our Cookie Policy.
Our Services include pixel tracking features for advertising optimization. When you use these features, data may be shared with advertising platforms in accordance with your configuration and applicable laws.
Our Services integrate with third-party services, including:
These third parties have their own privacy policies. We encourage you to review their policies before using their services through our platform.
We partner with advertising networks that may collect information about your online activities to provide targeted advertising. You can opt out of interest-based advertising through:
We use analytics services to understand how users interact with our Services. These services may use cookies and similar technologies to collect usage data.
When you use our advertising features, we may implement conversion tracking pixels from various advertising platforms. This data is used to measure advertising effectiveness and optimize campaigns.
Our Services are not directed to individuals under the age of 16 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete that information.
If you believe we have collected information from a child, please contact us immediately at privacy@ultcrm.com.
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes:
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
If you have questions, concerns, or complaints about this Privacy Policy or our data practices, please contact us:
UltCRM
Email: privacy@ultcrm.com
Website: https://ultcrm.com
For data protection inquiries (GDPR): privacy@ultcrm.com
For California privacy requests (CCPA): privacy@ultcrm.com
We will respond to your inquiry within the timeframe required by applicable law, typically within 30 days.