Privacy Policy

Introduction

Mulkern AI Systems ("we," "us," "our," or "Company") is committed to protecting your privacy and ensuring transparency in how we collect, use, and safeguard your personal information. This Privacy Policy explains our data practices in compliance with applicable privacy laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other relevant data protection regulations.

This policy applies to all personal information we collect through our websites, AI-powered services, applications, and any related services (collectively, the "Services").

Scope and Application

This Privacy Policy applies to:

• All visitors and users of our websites and services
• Business clients and their authorized users
• Individuals worldwide, including residents of the European Union, United Kingdom, California, and other jurisdictions with comprehensive privacy laws
• Users of our AI Voice Agents, AI Chatbots, machine learning models, data analysis tools, automation software, and custom AI solutions

Information We Collect

3.1 Personal Information You Provide

We collect personal information that you voluntarily provide when you:

• Create an account or register for our services
• Contact us for support or inquiries
• Subscribe to our newsletters or communications
• Make a purchase or enter into a service agreement
• Interact with our AI-powered chatbots or voice agents

Categories of personal information we may collect include:

• Identifiers: Name, email address, phone number, mailing address, account username
• Professional Information: Job title, company name, industry, business contact details
• Payment Information: Credit card details, billing address (processed securely through third-party payment processors)
• Communications: Content of messages, inquiries, and interactions with our AI systems

3.2 Information Collected Automatically

When you access our Services, we may automatically collect:

• Device Information: IP address, browser type, operating system, device identifiers
• Usage Data: Pages viewed, features used, time spent, click patterns, interaction data
• Location Data: General geographic location derived from IP address

3.3 Information from Third Parties

We may receive information about you from:

• Business partners and resellers
• Social media platforms (if you connect your accounts)
• Publicly available sources

How We Use Your Information

We use your personal information for the following purposes:

4.1 Service Provision and Performance

• Providing, maintaining, and improving our AI-powered services
• Processing transactions and managing your account
• Delivering personalized AI responses and services
• Providing customer support and responding to inquiries

4.2 Business Operations

• Analyzing usage patterns to improve our services
• Conducting research and development of new AI features
• Performing internal analytics and business intelligence

4.3 Communications

• Sending service-related notifications and updates
• Providing marketing communications (with your consent where required)
• Responding to your requests and communications

4.4 Legal and Security

• Complying with legal obligations and regulatory requirements
• Protecting against fraud, abuse, and security threats
• Enforcing our terms of service and other agreements
• Resolving disputes and protecting our legal rights

4.5 AI-Specific Uses

Legal Basis for Processing (GDPR)

For individuals in the European Economic Area (EEA), United Kingdom, and other GDPR-applicable jurisdictions, we process your personal data based on the following legal grounds:

• Contractual Necessity: To perform our contract with you and provide the services you requested
• Consent: Where you have given explicit consent for specific processing activities (e.g., marketing communications, non-essential cookies)
• Legitimate Interests: For our legitimate business interests, such as improving our services, fraud prevention, and network security, provided these interests do not override your rights
• Legal Obligations: To comply with legal and regulatory requirements

How We Share Your Information

We do not sell or rent your personal information to third parties. We may share your information in the following limited circumstances:

6.1 Service Providers

We may share information with trusted third-party service providers who assist us in operating our business, including:

• Cloud hosting providers (AWS, Azure, Google Cloud)
• Payment processors (for secure payment processing)
• Email service providers (Mailchimp, SendGrid)
• AI model API providers (OpenAI, Anthropic)
• Customer relationship management (CRM) systems

These service providers are contractually obligated to protect your information and use it only for the specific purposes we authorize.

6.2 Business Partners

With your consent, we may share information with business partners for collaborative projects, joint marketing efforts, or integrated services. We will always inform you before sharing your data with business partners and obtain your consent where required by law.

6.3 Legal Requirements

We may disclose your information when required by law or when we believe disclosure is necessary to:

• Comply with legal process, court orders, or government requests
• Protect our rights, property, or safety, or that of our users or the public
• Detect, prevent, or address fraud, security, or technical issues
• Enforce our terms of service and other agreements

6.4 Business Transfers

In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your information may be transferred to the acquiring entity. We will notify you of any such change and provide choices regarding your information where applicable.

6.5 Aggregated or De-identified Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you for research, analytics, or marketing purposes.

International Data Transfers

Your personal information is processed and stored in the United States. If you are located outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction.

For transfers from the EEA, UK, or Switzerland, we implement appropriate safeguards, including:

• Standard Contractual Clauses approved by the European Commission
• Data Processing Agreements with service providers
• Adequacy decisions where applicable

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Specific retention periods:

• Account Information: Retained while your account is active, plus 90 days after account closure to allow for reactivation
• Transaction Records: Retained for 7 years to comply with tax, financial reporting, and legal obligations
• Marketing Communications: Retained until you opt-out or withdraw consent
• Usage Data: Typically retained for 24 months for service improvement purposes
• AI Interaction Data: Session data retained for 30 days for service improvement, then automatically deleted

Upon request, we will delete your personal information within 30 days, except where retention is required by law or for legitimate business purposes such as fraud prevention, dispute resolution, or enforcing our agreements.

Data Security

We implement reasonable administrative, technical, and physical security measures designed to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include:

• Encryption of data in transit using TLS/SSL protocols
• Encryption of sensitive data at rest
• Secure payment processing through PCI-DSS compliant payment processors
• Access controls and authentication measures
• Regular security assessments and vulnerability testing
• Employee training on data protection and security practices

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we continuously work to enhance our security measures.

Cookies and Tracking Technologies

10.1 What Are Cookies

Cookies are small text files placed on your device when you visit our website. We use cookies and similar technologies (such as local storage and session identifiers) to operate our Services.

10.2 Our Cookie Usage

• Security and authentication (keeping you logged into your account)
• Session management and user preferences
• Load balancing and service delivery
• Payment processing and fraud prevention

We do not currently use: analytics cookies, advertising cookies, or third-party tracking technologies. If we decide to implement analytics or marketing cookies in the future, we will update this policy and implement a cookie consent banner to obtain your consent before placing non-essential cookies on your device.

10.3 Cookie Consent (GDPR Compliance)

For visitors from the European Union, United Kingdom, and other jurisdictions requiring cookie consent, please be aware that:

• Essential cookies do not require consent as they are necessary for the website to function
• If we implement non-essential cookies in the future, we will display a cookie consent banner before placing such cookies
• You will have the option to accept or reject non-essential cookies with equal prominence given to both options

10.4 Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to refuse cookies or delete existing cookies. However, please note that disabling essential cookies may prevent you from using certain features of our Services, such as logging into your account.

For instructions on managing cookies in your specific browser, please consult your browser's help documentation.

10.5 Global Privacy Control (GPC)

We recognize and honor Global Privacy Control (GPC) signals as a valid request to opt-out of the sale or sharing of personal information. If you have GPC enabled in your browser and we implement data sharing practices in the future, we will respect your GPC signal automatically.

10.6 Do Not Track

While some browsers have "Do Not Track" features, there is no industry consensus on how to respond to these signals. We support Global Privacy Control (GPC) as a more standardized and legally recognized privacy signal.

Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information. We honor these rights for all users, regardless of location.

11.1 Rights for All Users

• Access: Request access to the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete personal information
• Deletion: Request deletion of your personal information, subject to certain legal exceptions
• Data Portability: Request a copy of your data in a structured, machine-readable format
• Opt-Out: Opt-out of marketing communications at any time

11.2 Additional Rights for GDPR (EEA/UK Users)

• Restriction of Processing: Request restriction of processing in certain circumstances
• Objection: Object to processing based on legitimate interests or for direct marketing
• Withdraw Consent: Withdraw consent at any time where processing is based on consent
• Lodge a Complaint: File a complaint with your local data protection authority

11.3 Additional Rights for California Residents (CCPA/CPRA)

• Know: Know what personal information we collect, use, disclose, and sell
• Opt-Out of Sale/Sharing: Opt-out of the sale or sharing of personal information
• Limit Use of Sensitive Information: Limit the use of sensitive personal information
• Non-Discrimination: Not be discriminated against for exercising your privacy rights

11.4 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

• Email: michael@mulkern.net
• Phone: 1-346-410-0177
• Mail: 7814 Stoneyway Dr., Houston, TX 77040

We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing your request to protect your privacy and security.

You may designate an authorized agent to make requests on your behalf. The authorized agent must provide proof of authorization, and we may require you to verify your identity directly with us.

Children's Privacy

Our Services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13 without parental consent, we will take steps to delete that information promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at michael@mulkern.net so we can delete the information.

AI-Specific Privacy Disclosures

13.1 AI-Powered Interactions

When you interact with our AI Voice Agents, AI Chatbots, or other AI-powered services, you should be aware that:

• Your inputs and the AI's responses may be logged for quality assurance and service improvement
• AI-generated responses are automated and may not always be accurate
• You are interacting with an AI system, not a human, unless explicitly stated otherwise

13.2 Third-Party AI Models

We may use third-party AI model providers (such as OpenAI or Anthropic) to power our services. When we do:

• We use enterprise agreements that include data protection provisions
• We contractually prohibit these providers from using your data to train their models
• We limit the data shared with these providers to what is necessary for service delivery

13.3 Automated Decision-Making

Currently, we do not use AI for automated decision-making that produces legal effects or similarly significantly affects you (such as credit decisions, employment decisions, or healthcare determinations). If this changes, we will update this policy and provide appropriate notices and opt-out mechanisms as required by law.

13.4 Data Deletion and AI Models

Since we do not use your personal data to train our AI models, when you request deletion of your data, it will be removed from our databases. Your data does not persist in trained model weights.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify you via email (if you have provided an email address)
• Post a notice on our website

We encourage you to review this Privacy Policy periodically. Your continued use of our Services after changes are posted constitutes your acceptance of the updated policy.

Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

15.1 For EU/UK Data Subjects

If you are located in the European Economic Area or United Kingdom and have concerns about our data practices, you have the right to lodge a complaint with your local supervisory authority. However, we encourage you to contact us first so we can address your concerns directly.

Jurisdiction-Specific Provisions

16.1 California Residents

California Shine the Light Law: California residents may request information about our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us at the address above.

California Privacy Rights Notice: See Section 11.3 for detailed information about your rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).

16.2 Nevada Residents

Nevada residents have the right to opt-out of the sale of certain personal information. We do not currently sell personal information as defined under Nevada law. If our practices change, we will update this policy and provide opt-out mechanisms.

16.3 Other U.S. States

Residents of Virginia, Colorado, Connecticut, Utah, and other states with comprehensive privacy laws have rights similar to those outlined in Section 11. We honor these rights and will comply with all applicable state privacy laws.

This Privacy Policy is effective as of February 6, 2026

Last modified: February 6, 2026