Privacy Policy

Effective Date: October 21, 2025

Gruve Tech Inc. (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains our personal information handling practices for personal information we collect from visitors to our website www.gruve.ai, and through our services (collectively referred to as “Site” or “Sites”).

This policy (together with our Terms of Use, Cookie Policy, and any other documents referred to in it) sets out the basis on which any personal data we collect from you, or that you provide to us, through our Sites will be processed by us.

We reserve the right to change this policy at any given time, of which you will be promptly updated. If you want to make sure that you are up to date with the latest changes, we advise you to frequently visit this page.

Information You Provide to Us

  • Contact Information: When you contact us via our Site, email, or phone, we may collect your name, address, email address, phone number, company name, and job title.
  • Service Inquiries: Information you provide when inquiring about our services.
  • Transaction Information: Information related to transactions carried out through our Site or otherwise, including your name, address, and payment details.
  • Surveys and Promotions: Information you provide in response to surveys or during participation in promotions or events.

Information We Collect Automatically

  • Technical Information: Includes IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform.
  • Usage Information: Includes information about your visit, such as URL, clickstream to, through and from our Site (including date and time), services you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.
  • Cookies: Our Site uses cookies and similar technologies to distinguish you from other users of our Site. For detailed information on the cookies we use and the purposes for which we use them, see our Cookie Policy.

Why We Collect Your Data

We are collecting your data for several reasons:

  • To better understand your needs.
  • To improve our services and products.
  • To send you promotional emails containing the information we think you will find interesting.
  • To contact you to fill out surveys and participate in other types of market research.

How We Use Your Information

We use information held about you in the following ways:

  • To Provide Services: To carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products, and services that you request from us.
  • Communications: To provide you with information about other goods and services we offer that are similar to those that you have already purchased or inquired about.
  • Site Improvements: To ensure that content from our Site is presented in the most effective manner for you and for your computer.
  • Security: To keep our Site safe and secure.
  • Marketing: To provide you, or permit selected third parties to provide you, with information about goods or services we feel may interest you.

Disclosure of Your Information

We may share your personal data with:

  • Service Providers: We may engage trusted third-party service providers to assist in delivering our services. These providers undergo a thorough vetting process and are bound by strict confidentiality agreements. They are only authorized to use personal information for the specific purposes required to support our operations.
  • Business Transfers: In the event that we sell or buy any business or assets, or if we are acquired by a third party.
  • Legal Obligations: We may disclose personal information when required by law, regulation, or legal process, or to protect our rights, safety, or property, as well as the rights, safety, or property of our clients, users, or others. We are committed to cooperating with law enforcement agencies and authorities to ensure compliance with applicable regulations.

International Data Transfers

Given our global operations, your personal data may be transferred and processed in countries outside of your country of residence. When we transfer your personal data internationally, we will ensure that appropriate safeguards are in place to protect it.

Safeguarding and Securing the Data

We are committed to securing your data and keeping it confidential. We have implemented robust security measures to protect personal information from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, multi-factor authentication, access controls, regular security audits, and vulnerability assessments. Our commitment to data security is an integral part of our company culture.

Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law. We regularly review our data retention practices to ensure compliance with legal obligations and industry best practices.

Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request access to your personal data.
  • Correction: Request correction of inaccurate or incomplete personal data.
  • Deletion: Request deletion of your personal data.
  • Restriction: Request restriction of processing your personal data.
  • Portability: Request the transfer of your personal data to another entity.
  • Objection: Object to the processing of your personal data.

Restricting the Collection of your Personal Data

At some point, you might wish to restrict the use and collection of your personal data. You can achieve this by doing the following:

When you are filling any forms on our website, make sure to check if there is a box which you can leave unchecked, if you don’t want to disclose your personal information.

If you have already agreed to share your information with us, feel free to contact us via email and we will be more than happy to change this for you.

We will not lease, sell or distribute your personal information to any third parties, unless we have your permission. We might do so if the law forces us. Your personal information will be used when we need to send you promotional materials if you agree to this privacy policy.

Supplemental Privacy Notice for California Residents

This Supplemental Privacy Notice supplements the information in our Privacy Policy above, and except as provided herein, applies solely to California residents. It applies to personal information we collect on or through the Services and through other means (such as information collected offline, in person, and over the telephone). It does not apply to personal information we collect from our employees and job applicants in their capacity as employees and job applicants. It also does not apply to personal information we process as a service provider.

Summary of Information We Collect

If you are a California resident, California law requires us to provide you with some additional information regarding how we collect, use, and disclose your “personal information” and “sensitive personal information” (as defined in the California Consumer Privacy Act (“CCPA”)).

Throughout our Privacy Policy, we describe the personal information and sensitive personal information we collect, the sources of that information, and how we disclose it. Under the CCPA, we also provide you with the “categories” of personal information we collect and disclose for “business purposes” (as those terms are defined by applicable law). Those categories are identifiers (such as name, address, email address, phone number, other account information, and cookies); commercial information (such as transaction data); financial data (such as credit card and other financial account information); internet or other network or device activity (such as IP address or service usage); geolocation information (general location); inference data about you; sensory information (such as audio recordings if you call customer service); professional or employment related data; education data; insurance (including health insurance) information; medical information; physical characteristics or description; legally protected classifications (such as gender); other information that identifies or can be reasonably associated with you. The categories of sensitive personal information are account log-in, financial account information, and password or other credentials allowing access to your account.

We collect the categories of personal information identified above from the following sources: (1) directly from you; (2) through your use of our Website and Platform; (3) affiliates; and (4) third parties and other Gruve customers.

We or our service providers may collect and disclose the above categories of information for the purposes described in our Privacy Policy. This includes the following business or commercial purposes (as those terms are defined in applicable law):

    • Our operational purposes;
    • Auditing consumer interactions on our Services;
    • Detecting, protecting against, and prosecuting security incidents and fraudulent or illegal activity;
    • Bug detection and error reporting;
    • Customizing information that we or our service providers display on the Online Services;
    • Providing our Services;
    • Improving our Services and developing new services (e.g., by conducting research to develop new service offerings);
    • Other uses that advance our commercial or economic interests, such as third-party advertising and communicating with you about relevant offers from third party partners;
    • Other uses about which we notify you;
    • We may also use the above categories of personal information for compliance with applicable laws and regulations, and we may combine the information we collect (“aggregate”) or remove pieces of information (“de-identify”) to limit or prevent identification of any user or device.

We describe our information disclosure practices in our Privacy Policy. We may disclose certain categories of personal information with third parties (as defined by the CCPA) for the business purposes described above. For example, we may disclose identifiers and other information that identifies or can reasonably be associated with you with counterparties to your agreements. We may disclose identifiers with our marketing partners, and we may also disclose any of the categories described above with our subsidiaries and affiliates. If you connect your account with social media services or interact with social media plugins or links on the Online Service, we may disclose identifiers, commercial information, internet or other network or device activity, or general location with those social media services.

Consumer Rights

If you are a California resident, you may have certain rights. California law may permit you to request that we:

  • Provide you the categories of personal information we have collected or disclosed about you; the categories of sources of such information; the business or commercial purpose for “collecting,” “selling,” or “sharing” your personal information; the categories of third parties to whom we disclose or “sell,” or with whom we “share,” personal information; and the categories of personal information we “sell.”
  • Provide access to and/or a copy of certain information we hold about you.
  • Delete certain information we have about you.
  • Correct inaccurate personal information that we maintain about you.
  • You may have the right to receive information about the financial incentives that we offer to you (if any). You also have the right to not be discriminated against (as provided for in applicable law) for exercising certain of your rights. Certain information may be exempt from such requests under applicable law. We need certain types of information so that we can provide the Online Services to you. If you ask us to delete it, you may no longer be able to access or use the Online Services.

In instances where we process personal information on behalf of our customer, rights requests should be directed to the relevant customer. Any request sent directly to us that pertains to information collected on behalf of a customer will be forwarded on to that customer.

If you would like to exercise any of these rights, you can submit a request via https://www.gruve.ai/contact-us. You will be required to verify your identity before we fulfill your request. To do so, you will need to provide information to match with our existing records to verify your identity, depending on the nature of the request and the sensitivity of the information sought. You can also designate an authorized agent to make a request on your behalf. To do so, you must provide us with written authorization or a power of attorney, signed by you, for the agent to act on your behalf. You will still need to verify your identity directly with us.

“Sale” of Personal Information

California residents may opt out of the “sale” of their personal information. The CCPA broadly defines “sale” in a way that may include allowing third parties to receive certain information such as cookie identifiers, IP addresses and/or browsing behavior to add to a profile about your device, browser or you. Such profiles may enable delivery of interest-based advertising by such third parties within their platform or on other sites.

Depending on how you use the Service, we may disclose the following categories of information for such interest-based advertising, which may be considered a “sale” as defined by the CCPA: identifiers (such as IP address, device identifiers, and cookies) and internet and device activity. To opt out of such “sales,” please submit a request to privacy@gruve.ai.

“Sharing” of Personal Information

California residents may opt out of the “sharing” of their personal information. The CCPA defines “sharing” as the targeting of advertising to a consumer based on that consumer’s personal information obtained from the consumer’s activity across websites. We “share” information for these purposes to provide more relevant and tailored advertising to you regarding our Services. As part of this advertising, we may “share” identifiers (such as IP address, device identifiers, and cookies) and internet and device activity with advertising platforms and advertising networks. To opt out of such “sharing,” please submit a request via https://www.gruve.ai/contact-us.

Global Privacy Control

Please note that we also respond to and abide by opt-out preference signals sent through the Global Privacy Control. Any opt out preferences you have exercised through these methods will only apply to the specific device/browser on which you made them. For more information on how to use the Global Privacy Control, see www.globalprivacycontrol.org.

Children Under 16

We do not knowingly “sell” or “share” the personal information of children under 16.

Sensitive Personal Information

The CCPA also allows you to limit the use or disclosure of your “sensitive personal information” (as defined in the CCPA) if your sensitive personal information is used for certain purposes. Please note that we do not use or disclose sensitive personal information other than for purposes for which you cannot opt out under the CCPA.

Retention of Your Personal Information

Please see the “Data Retention” section above.

California Shine the Light

We do not disclose personal information to third parties for their direct marketing purposes.

Children’s Privacy

The Online Services are not directed to children under the age of 13. We do not knowingly collect personal information (as that term is defined in the Children’s Online Privacy Protection Act (COPPA)) from children under 13. If we discover that an individual under 13 has provided us with personal information, we will delete the personal information to the extent required by COPPA.

We do not knowingly process data of EU residents under the age of 16 without parental consent. If we become aware that we have collected data from an EU resident under the age of 16 without parental consent, we will take reasonable steps to delete it as soon as possible.

Updates to the Privacy Policy

We may update, change, or replace any part of these Terms at any time. The most current version of the Terms will be posted on the Service. It is your responsibility to check the Service periodically for changes.

If we make any material changes to the Terms that affect your rights or obligations, we will notify you of the changes in a reasonable manner. This may include notifying you through the Service or by sending you an email.

Your continued use of the Service following the effective date of any changes to these Terms constitutes your acceptance of those changes. If you do not agree to the new Terms, you may not use the Service.

Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

Gruve Tech Inc.

399 Bradford St, Redwood City, 94063, California, USA

Email: privacy@gruve.ai

Effective Date: October 21, 2025