Privacy Policy
Issued: May 28, 2020
Mayo was founded with a simple purpose: to help people help each other. Here is a summary of our Privacy Policy – how we collect and use personal information – for both our mobile app and website. A more detailed explanation is below.
We work to fulfill our mission primarily through our mobile app, which is based on the twin principles of proximity and mutuality. Our app facilitates real-time connection between people who are located near one another and who likewise want to give or receive help, by providing a voluntary and discrete communications channel for users to tell other nearby Mayo users if they need or can provide help. When you install Mayo, we assign you a randomly generated unique user ID and a token from our backend. The token is encrypted locally on your device and is used to communicate with our backend and identify you. During the course of using Mayo, if you ever provide any further information about yourself such as social media accounts, email, phone number, then we may attach that information to your unique user ID as well as part of your identification, but your personal information is never shared without permission. The app then identifies your current geolocation, associating it with your user ID, so you can exchange messages with other Mayo users in a limited geographic area (roughly a two-block radius). When you use the app, other nearby users who are simultaneously using the app will be able to see your location in the form of a dot on a map in the app interface and the content of any post you write, but no other information is shared with other users. Our records of your app usage retain only your last five locations; the rest of your location history is deleted on a rolling basis. When you use the app, you may also accumulate Mayo points that will be associated with your Mayo user ID and that you may be able to use in the future. If you provide feedback to us or contact us through our website or email, we will collect your name, email address, and any comments. We DO NOT sell your personal information to anyone.
That’s our Privacy Policy in a nutshell. We encourage you to read more about it in detail below, including your ability to make inquiries about any of your information that we have collected. If you have any questions, please do not hesitate to contact us.
1. Policy Scope
This Privacy Policy (“Privacy Policy” or “Policy”) applies to ABIEM LLC and its Mayo platform (together “Mayo,” “we,” “us,” or “Company”). It explains how we collect and use Personal Information from all individuals (“user(s),” “you,” or “End User”) who use the Mayo platform. The Mayo platform consists of our website, www.heymayo.com, and our mobile applications for iPhone OS and Android OD (our “app” or “Application,” and together with our website, the “Services”). We understand and use the term “Personal Information” to mean information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular individual or household. The terms of our Privacy Policy are incorporated into our Terms of Service. By use of our Services and/or by agreeing to the Terms of Service, you are consenting, agreeing, and directing us to collect and use your Personal Information in accordance with this Policy.
This Policy applies only to our Services. Although we might link to third-party websites (for example, Facebook, Instagram, or Twitter), software, or services, this Policy applies only to our Services. Please refer to the privacy policies on any third-party websites, software, or services to learn how they use your personal information. We encourage you to read this Policy carefully to understand our policies and practices regarding your Personal Information and how we will treat it. We understand your use of our Services to mean that you accept and consent to the use of your Personal Information as described in this Policy and that you likewise agree to our Terms of Service.
2. Categories of Personal Information We Collect
Broadly speaking, we collect two types of Personal Information: (a) User Information and (b) Usage Information. Below is an explanation of the categories of Personal Information we collect, including information collected in the last 12 months.
“User Information” refers to information collected about users of the Services.
For app users, when you download the app we collect your unique device ID, which is a distinctive number associated with your smartphone that is created and assigned by your device’s manufacturer. When we collect your device ID, we simultaneously generate a token and associate it with your device ID. This token links to a unique user ID that functions only within the app to identify your device and enables the app to function on your smartphone. Every time you use the app, we collect your geographic location data provided through your device and associate that with your unique user ID. At any given time, we retain only the last five locations identified through your use of the app, while locations from earlier sessions are deleted on a rolling basis. Any posts you make through the app (for example, posts requesting or offering help) are collected and associated with your unique user ID. Mayo points that you accumulate through use of the app are associated with your user ID.
If you contact us – whether directly from our website, through the app, which links to a webform on our website, or by email – we will collect your email address, any content you send to us, and your name, if you provide it.
“Usage Information” refers to information that we automatically collect when you use or interact with the Services. As noted above, whenever you use the app, we automatically identify and collect your current geographic location information provided by your smartphone. If you configure your smartphone settings to notify us of your location even when you do not have the app open, your location will likewise be transmitted to us. Whenever you use the app or our website, we will collect your IP address, and we may collect information about the type of browser, device, or operating system you are using, the URL of the website visited before landing on our site, and how, when, and for how long you interact with our website, and other similar information. In particular, we collect information about the manner in which our website is used, the devices on which they are used, and our website’s performance. Depending on your device or browser privacy settings, Usage Information or can include location data, such as geographic information regarding the location of the accessing device. If we combine Usage Information with User Information, we will treat the combined data as User Information.
3. How We Collect Personal Information
For app users, we collect your unique device ID when you download the app. As noted above, we encrypt this information upon collecting it and assign a unique user ID. We collect the other categories of User Information – your geolocation and app posts – every time you use the app.
If you contact us, through our webform or through email, we collect User Information (i.e., your email address, comments, and your name, if you provide it) when we receive your message.
For users of our website, we collect Usage Information when you access and interact with our site. To do this, we use cookies and similar technologies, such as web beacons, to help us collect this information. Cookies are small computer files that we transfer to your computer’s hard drive that allow us to know how often you use our website and what activities you conduct on our site. Internet browser software generally can be set to reject all cookies, and most browsers offer instructions on how to reset the browser to reject cookies. If you reject our cookies, certain functions and conveniences we automatically provide for you on our website may not work, but you do not have to accept our cookies. Similarly, web beacons are tiny graphic image files embedded in a web page or email that send information from your browser back to our server. We use the information cookies and web beacons collect to statistically monitor how many people are using our Services or opening our emails.
Your selection of the “Do Not Track” option provided by your browser may not have any effect on our collection of cookie information. To completely “opt out” of the collection of any information through cookies or other tracking technology, you must manage the settings on your browser to delete and disable cookies and other tracking/recording tools. However, getting a “Do Not Track” signal to work as you might want may be difficult. For example, not all tracking technologies can be controlled by browsers, and unique aspects of your browser might be recognizable even if you disable a tracking technology. In addition, not all settings will necessarily last or be effective, and even if a setting is effective for one purpose, data still may be collected for another. Even if one website observes a “Do Not Track” signal, that website usually will not be able to control other websites.
4. How We Use Personal Information
We use your Personal Information for a number of purposes that we believe to be consistent with your expectations when you interact with us and our Services, including:
● To provide Services and support. We use your Personal Information to provide and manage the Services, communicate with you about our Services, and fulfill any contractual obligations we otherwise have with you. In addition, we use your Personal Information to support your use of the Services and to ensure the quality and security of the Services.
o We require your device ID to establish a user account and assign a unique user ID so that you may use the app, including receipt of any updates, notices, or alerts.
o Your geolocation is fundamental to the functionality of the app, and it is used to allow you to connect with other users in your area.
o The purpose of the app is to connect users who seek to provide or request help, and posts through the app should be limited to such uses. Accordingly, and as provided in our Terms of Use, we may analyze and otherwise use the content of posts to further the purposes of the app and the Mayo platform, including identification of misuse of the app and restrictions on user activity.
o If you contact us, we will use your email address and other information you provide to us to communicate with you. We may retain your contact and information and copies of our communications for our records.
o We also may use your information to customize your interaction with our Services and carry out any other purpose for which you provided us with your Personal Information (subject to applicable data protection laws).
● Prevent improper or illegal activity. We use Personal Information to protect, investigate, and deter against fraudulent, unauthorized, or illegal activity on or relating to our Services.
● To meet legal requirements. We may be required to use or disclose your Personal Information when necessary to comply with legally mandated reporting, subpoenas, court orders, or other legal process requirements.
● To market and improve our products and services and to create new products and services. We may use your Personal Information to:
o conduct marketing activities to inform you about our products, services, and events;
o conduct surveys about our Services and your use of our Services; or
o administer, contests or sweepstakes, to send promotional emails, process entries, notify participants of the winners, comply with applicable laws and regulations for the contests, sweepstakes, and rewards, and to deliver rewards.
● Administrative Notices. We reserve the right to send you specific administrative notices about the Services or to contact you if required by law. You may not opt-out of these kinds of communications.
● Emails and Newsletters: You may have the option of receiving emails, SMS texts, voice messages, and/or newsletters directly from us. You may elect to opt-out of these communications by clicking an unsubscribe link, responding unsubscribe, or placing a check mark beside a statement stating you do not want to receive these communications or to participate in these activities.
● Analytics. Further, we may use information for analytics purposes and to operate, maintain, and improve the Services. We may also use information to create new products and services.
● Other purposes. We may use your information for any other legal, business or marketing purposes that are compatible with this Policy.
5. How We Share Your Information with Other Parties
We DO NOT sell your Personal Information to anyone.
Your Personal Information may be shared with or accessible by service providers, but any service providers’ rights to use your Personal Information is or will be restricted only to providing services to us.
● Aggregate or Deidentified Information. For the app, we collect only your device ID in order to create an account and assign a unique user ID to you. Your user ID cannot be readily associated with your device ID, which is automatically encrypted when you download the app. Your geolocation data, content in your posts, and your Mayo points are associated only with your unique user ID, not with your device ID. Your location will be displayed in the app to other users within your area only when you open and use the app, but your name or other identifying information will not be provided to other users unless you share it with them. Please note: if you regularly make posts in the app from or close to your residence, your place of work, or locations you frequent, there is an increased possibility that a usage pattern might emerge and other users might be able to identify you in particular based on your location.
● Transfer or Assignment in Connection with Business Transfers or Bankruptcy. In the event of a business transition, such as a merger, acquisition, reorganization, bankruptcy or other sale of all or a portion of our assets, any information owned or controlled by us may be one of the assets transferred to third parties. We shall provide notice of such a business transition via prominent notice on our website. We reserve the right, as part of this type of transaction, to transfer or assign your information and other information we have collected from customers and users of the Services to third parties. Other than to the extent ordered by a bankruptcy or other court, or as otherwise agreed to by you, the use and disclosure of all transferred information will be subject to this Policy. However, any information you submit or that is collected after this type of transfer may be subject to a new privacy policy adopted by the successor entity in compliance with applicable laws and regulations.
● Response to Subpoenas or Court Orders; Protection of Our Rights; Safety. As required or permitted by law, regulation, legal process or other legal requirement, or when we believe in our sole discretion that disclosure is necessary or appropriate, to respond to an emergency or to protect our rights, protect your safety or the safety of others, investigate fraud, comply with a judicial proceeding or subpoenas, court order, law-enforcement or government request, including without limitation to meet national security or law enforcement requirements, or other legal process and to enforce our agreements, policies and terms of use.
● Publicly Posted Content. If you post comments, images, and other content to a location that is public-facing, including the app, our website, storage locations, or social media, your posted information will be publicly viewable.
● With Your Consent. We may share some or all of your information with any other third party with your affirmative consent. For instance, we display personal testimonials of satisfied customers on our Websites in addition to other endorsements. With your consent we may post your testimonial along with your name. If you wish to update or delete your testimonial, you can contact us at the address shown at the top of this policy.
6. Right to Access Your Information
Under our policy, you have a right to access the information we have collected during the last 12 months. Specifically, you have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request (see Exercising User Rights, below), we will disclose to you:
● The categories of Personal Information we collected about you.
● The categories of sources for the Personal Information we collected about you.
● Our business or commercial purpose for collecting or selling that Personal Information.
● The categories of other businesses or persons with whom we share that personal information.
● The specific pieces of Personal Information we collected about you.
● If we disclosed your Personal Information for a business purpose, the Personal Information categories that each category of recipient obtained.
7. Right to Request Deletion
Under our Policy, you have the right to request that we delete any of your Personal Information that we collected from you, subject to certain exceptions. Once we receive and confirm your verifiable consumer request (see Exercising User Rights, below), we will delete (and direct our service providers to delete) your Personal Information from our records, unless an exception applies.
We may deny your deletion request if retaining the information is necessary for to:
● Complete the transaction for which we collected the Personal Information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
● Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
● Debug products to identify and repair errors that impair existing intended functionality.
● Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
● Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.).
● Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent.
● Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
● Comply with a legal obligation.
● Make other internal and lawful uses of that information that are compatible with the context in which you provided it.
8. Correcting and Updating Personal Information
You can always contact us in order to request that we change your Personal Information if you believe the Personal Information we have for you is incorrect. We will review your request but may be restricted in our ability to change your Personal Information.
9. Exercising User Rights
To exercise the rights described above, please submit a verifiable consumer request to us by one of the following methods:
● Emailing us at support@heymayo.com
● Submitting a request through our interactive webform with this button below:
Only you, or, if you are a California resident, a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child. You may only make a verifiable consumer request for access or data portability twice within a 12-month period.
To verify the identity of an individual making a request, a two-step process will need to be completed. A verifiable consumer request must:
● Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
● Separately provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative.
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you.
Making a verifiable consumer request does not require you to create an account with us. We will use Personal Information provided in a verifiable consumer request only to verify the requestor’s identity or authority to make the request.
10. Response Timing and Format
We will endeavor to provide an initial response to a verifiable user request within 10 days of receipt and will attempt to fulfill a verifiable user request within 45 days of its receipt. If we require more time, we will inform you of the reason and extension period in writing.
We will deliver our written response by mail or electronically, at your option.
Any disclosures we provide will cover only the 12-month period preceding our receipt of a verifiable user request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
We do not charge a fee to process or respond to your verifiable user request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
11. Non-Discrimination
We will not discriminate against anyone for exercising any of their rights under this Policy or any applicable information privacy or data protection law. Unless otherwise permitted, we will not:
• Deny you goods or services.
• Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
• Provide you a different level or quality of goods or services.
• Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
However, if any part of our Services involves a financial transaction with you, we may offer you certain financial incentives permitted by applicable laws that can result in different prices, rates, or quality levels. Any financial incentive permitted under applicable law that we offer will reasonably relate to your personal information’s value and contain written terms that describe the program’s material aspects. Participation in a financial incentive program requires your prior opt in consent, which you may revoke at any time. However, we do not currently provide any financial incentives.
12. Personal Information of Children Under 13
Our Services are not directed to children, and we do not knowingly collect any Personal Information from children under 13 years of age through our Services. If you think we have collected Personal Information from a child under 13 years of age for whom you are the parent or guardian, please contact us at the notice address provided below.
13. Security
We maintain administrative, physical, and technical safeguards to reasonably and appropriately protect the confidentiality, availability, and integrity of your Personal Information. For example, if you download our app, the file containing your Personal Information will be maintained in secure locations at our offices or on our servers (or those maintained by our service providers) with access limited to authorized employees, representatives and agents. Our employees receive training on our security practices and obligations. While we encrypt sensitive data, such as Personal Information, using SSL or VPN when it is transmitted over the Internet and when it is stored on our servers and backup systems, we cannot completely ensure the privacy of certain communications such as email to and from us because they are not encrypted.
Given the nature of the internet and the fact that network security measures are not infallible, we cannot guarantee the security of your Personal Information. In the event we become aware of a data security breach, we will provide you with notice as required by applicable federal, provincial and state laws.
14. Notification of Changes
If we change this Policy, we will post the updated Policy and its effective date on our website, and such updates will be accessible through the app.
If the Privacy Policy changes materially so that we are going to use your Personal Information in a manner different from that stated at the time of collection, we will notify you by either sending you an email to an address provided to us, through the app, or in a notice on our website’s main page. We reserve the right to make the changes to the Privacy Policy applicable to all previously collected Personal Information.
15. Contact Information – Questions, Accessing, Correcting and Updating your Personal Information, Direct Marketing
Please contact us using the contact information listed below if you:
● Have a query or concern about this Privacy Policy or our Personal Information handling processes;
● Wish to make a complaint in relation to a breach of your privacy by Mayo;
● Would like to access your Personal Information held by us;
● Would like to opt out of direct marketing; or
● Would like to correct your Personal Information held by us,
We will promptly investigate and respond.
ABIEM, LLC d/b/a Mayo
Attn: Privacy Officer
1411 4th Ave (10th floor)
Seattle WA 98101
United States