Privacy Policy

EvikNova LLC, a company incorporated in the State of Texas, United States, with its principal place of business in Texas, and operating globally under Evik Holdings LLC (“EvikNova,” “we,” “our,” or “us”), is committed to protecting personal data and supporting compliance with applicable global data protection laws.

This Privacy Policy applies to all EvikNova services across 43 countries of operation and across all industries served by the platform.

1) Scope of Application

This Privacy Policy applies to:

• All EvikNova products, services, applications, and platforms
• All users globally (individuals and organizations)
• All industries supported by EvikNova, including healthcare, finance, education, retail, logistics, security, and professional services

2) Data Controller and Processor Roles

• When EvikNova is provided through an organization, that organization acts as the Data Controller, and EvikNova acts as a Data Processor
• When users interact directly with EvikNova, EvikNova acts as the Data Controller

3) Personal Data We Collect

3.1 Account Data

Name, email address, phone number, login credentials, account preferences

3.2 Usage & Technical Data

IP address, device information, browser type, logs, timestamps, system activity

3.3 Communications & Interaction Data

Voice inputs, call recordings (where enabled), chat messages, transcripts, AI interaction logs

3.4 Customer Data

Information submitted by organizations, including CRM records, booking data, files, and workflow content

3.5 Payment Data

Billing details and transaction data processed via PCI-compliant providers

3.6 Sensitive and Regulated Data (where applicable)

Depending on industry use:

• Health data (PHI)
• Financial or identity data
• Education/minor data
• Location data
• Security/incident data

4) How We Use Personal Data (with Legal Basis)

5) How We Share Personal Data

We may share data:

• With your organization (if applicable)
• With subprocessors and service providers under strict agreements
• With regulators or authorities where required by law
• During mergers, acquisitions, or corporate restructuring

No Sale of Personal Data

EvikNova does not sell or share personal data as defined under applicable laws such as the California Consumer Privacy Act (CCPA/CPRA).

6) Cookies and Tracking Technologies

EvikNova uses cookies and similar technologies for:

• Authentication and security
• Preferences and session management
• Analytics and performance

Where required, cookies are subject to user consent. A separate Cookie Policy provides detailed information.

7) Data Security

We implement appropriate safeguards, including:

• Role-based access control (RBAC)
• Multi-factor authentication (MFA)
• Encryption (in transit and at rest where applicable)
• Logging and monitoring
• Incident response procedures

8) Cross-Border Data Transfers

EvikNova operates globally, and data may be processed across jurisdictions. We apply safeguards including:

• Standard Contractual Clauses (SCCs) where applicable
• Jurisdiction-specific protections
• Data localization where required (e.g., India, China)

9) Data Retention

We retain personal data only as necessary for:

• Service delivery
• Legal and regulatory compliance
• Security and audit purposes

Retention periods vary depending on industry and jurisdiction.

10) Your Rights

Depending on your jurisdiction, you may have rights to:

• Access your data
• Correct inaccurate data
• Delete your data
• Restrict or object to processing
• Data portability
• Withdraw consent

Request Handling

Requests are processed within applicable legal timelines (e.g., 30 days under GDPR). Identity verification may be required before fulfilling requests.

If your data is controlled by an organization, requests may need to be submitted through that organization.

11) Automated Decision-Making and AI

• EvikNova provides AI-driven services
• EvikNova does not make legally significant decisions solely through automated processing without appropriate safeguards
• Where applicable, users may request human review of decisions
• AI systems are designed with privacy, security, and fairness considerations

12) Children’s Data

EvikNova does not knowingly collect personal data from children without required consent under applicable laws (e.g., COPPA, GDPR).

13) Data Breach Notification

EvikNova follows applicable breach notification laws, including:

• GDPR: within 72 hours
• HIPAA: within 60 days
• Other jurisdictions: as required by law

14) Supervisory Authority Rights

Where applicable (e.g., GDPR), users have the right to lodge a complaint with their local data protection authority.

15) Subprocessors

EvikNova uses trusted subprocessors to operate its services. A current list of subprocessors is available upon request or via a dedicated transparency page.

16) Global Privacy Contacts & Representatives

Global Privacy Contact

Email: privacy@eviknova.com
All privacy inquiries will be routed to the appropriate regional representative or Data Protection Officer.

European Union (GDPR Article 27)

EvikNova has appointed an EU Representative.
Contact via: privacy@eviknova.com

United Kingdom

EvikNova has appointed a UK GDPR representative.
Contact: privacy@eviknova.com

Switzerland

EvikNova has appointed a Swiss Representative in accordance with Swiss data protection law.
Contact: privacy@eviknova.com

India

EvikNova appoints a Data Protection Officer as required under the DPDP Act.
Contact: privacy@eviknova.com

United States

Headquarters: Texas, United States
CCPA/CPRA and HIPAA-related inquiries: privacy@eviknova.com

Other Jurisdictions

EvikNova maintains appropriate privacy contacts and compliance mechanisms for all countries of operation. All requests may be directed to: privacy@eviknova.com

17) Changes to This Policy

We may update this Privacy Policy periodically. Updates will be reflected by the “Effective Date” above.

18) Contact

For all privacy-related inquiries:
Email: privacy@eviknova.com