Privacy Policy

Data Controller: LTD Providem (ProvideM.ai)

Address: N6 Levan Aleksize str, Tbilisi, Georgia

Email: support@providem.ai

If you have privacy questions or requests (access, deletion, etc.), contact us at support@providem.ai.

We collect personal data in three main ways: (a) data you provide, (b) data generated through usage, and (c) limited data from third parties.

A) Data you provide

• Account data: name, email, password (hashed), profile details, company name (if applicable), country, language, role (Buyer/Provider).
• Provider profile data: skills, portfolio links, work history, pricing, availability, profile photo (optional).
• Buyer project data: project briefs, requirements, attachments, prompts, and messages sent to Providers.
• Support data: emails to our support team and any info you choose to share.

B) Data collected automatically

• Device & usage data: IP address, device type, browser, pages viewed, timestamps, referral URLs, approximate location (from IP).
• Log and security data: login events, fraud signals, suspected abuse, and audit logs.

C) Payments & transaction data

• Transaction records: order amount, currency, fees, refunds, dispute records, payout status, invoices, and billing details (including billing address and VAT ID if provided).
• Payment method details: handled primarily by our payment processors; we typically receive limited payment metadata (e.g., payment method type, last 4 digits where applicable) rather than full card numbers.

D) KYC / Identity verification data (Providers)

If a Provider must complete identity verification before payout, we (and our verification provider) may process identity verification data such as:

• identity document details,
• selfies/liveness checks,
• verification results and timestamps,
• basic metadata required to complete verification.

E) Cookies & similar technologies

We use cookies and similar technologies to enable core features. See Section 9.

We use personal data to:

• create and manage accounts (registration, login, verification where needed);
• operate the intermediary platform (profiles, matching, messaging, project workflows);
• process payments, payouts, invoices, refunds, and disputes;
• provide support and respond to requests;
• maintain security and prevent fraud (account security, abuse detection, platform integrity);
• operate, troubleshoot, and improve the Platform;
• send service communications (important notices, security alerts, policy updates);
• run marketing activities in the future (only where permitted by law and/or with consent where required).

If GDPR/UK GDPR applies to you, we process personal data under these legal bases:

• Contract: to provide the Platform, enable Transactions, and deliver requested services.
• Legitimate interests: to secure the Platform, prevent fraud, improve services, and run our business (balanced against your rights).
• Consent: where required (e.g., certain cookies and marketing in some regions).
• Legal obligation: to comply with applicable laws (e.g., tax, accounting, and compliance obligations that may apply to payouts/verification).

Important: All messages and communications sent through ProvideM.ai are subject to automated content monitoring and moderation.

5.1 What We Monitor

We automatically scan and analyze the following content:

• All messages sent between users (Buyers and Providers)
• Project descriptions, service listings, and user profiles
• Proposals, agreements, and transaction-related communications
• User-generated content posted on the Platform

5.2 How Automated Moderation Works

Our content moderation system:

• Operates in real-time before messages are delivered
• Uses pattern-matching algorithms to detect prohibited content
• Supports multiple languages including English, Georgian (ქართული), and Russian (Русский)
• Detects obfuscation attempts such as spaced characters, mixed scripts, transliteration, and leetspeak variations
• Automatically blocks messages containing prohibited patterns
• Flags suspicious content for manual admin review
• Stores moderation logs for security and dispute resolution purposes

5.3 What Content Is Blocked

Our automated system detects and blocks messages containing:

• Attempts to move conversations off-platform (phone numbers, email, social media handles, messaging apps)
• External payment solicitation (bank details, cryptocurrency addresses, payment links)
• Harassment, hate speech, threats, or abusive language
• Illegal content (drugs, weapons, stolen goods)
• Fraud indicators (scams, pyramid schemes, phishing)
• Requests for sensitive personal data (passport numbers, credit card details)
• Adult or explicit content
• Spam and manipulation tactics
• Platform impersonation attempts

5.4 Manual Review by Administrators

In certain cases, Platform administrators may manually review:

• Content flagged by the automated system for potential violations
• User reports of inappropriate behavior or content
• Messages involved in dispute resolution or investigations
• Appeals from users who believe their messages were incorrectly blocked

Manual reviews are conducted by authorized staff members who are bound by confidentiality obligations.

5.5 Purpose of Monitoring

We monitor communications to:

• Enforce our Terms of Service and Intermediary platform Terms
• Protect users from fraud, scams, and harassment
• Prevent payment circumvention and fee evasion
• Maintain platform security and integrity
• Comply with legal obligations and law enforcement requests
• Resolve disputes and investigate reported violations
• Prevent illegal activity and protect public safety

5.6 Data Retention for Moderation

Moderation-related data is retained as follows:

• Blocked messages: Stored in moderation logs for up to 12 months for security analysis and pattern improvement
• Flagged content: Retained for investigation and evidence in disputes or violations
• Moderation decisions: Logged for audit purposes and appeals
• User reports: Maintained for as long as necessary to resolve the issue and prevent future violations

5.7 Legal Basis for Monitoring

Under GDPR/UK GDPR, we process message data for monitoring purposes based on:

• Legitimate interests: Protecting users, preventing fraud, enforcing our terms, and maintaining platform security
• Contract: Providing a safe intermediary platform and fulfilling our obligations under the Terms of Service
• Legal obligation: Complying with laws regarding illegal content, safety, and law enforcement cooperation

5.8 Your Privacy Expectations

By using ProvideM.ai, you acknowledge and agree that:

• Messages are NOT private and are subject to automated scanning
• Prohibited content will be blocked automatically without notice
• Administrators may review flagged content as needed
• You should not share sensitive personal information via Platform messages
• Violations may result in account suspension or termination

5.9 Appeals & False Positives

If you believe a message was incorrectly blocked, contact us at support@providem.ai with details. We will review legitimate cases and may override automated decisions when appropriate.

We use reputable cloud infrastructure and storage providers to host and process Platform data (including database and file storage). Your data may be stored and processed in the region where our cloud infrastructure is deployed and may be accessed from other countries where we and our service providers operate. Where required, we use appropriate safeguards for international transfers (see Section 7).

We share personal data with third parties only as needed to operate the Platform, comply with law, and protect users.

A) Service providers ("processors") may include:

• Cloud hosting & database provider (to host the Platform and store data and files)
• Payment processors (to process payments, issue refunds, and enable payouts)
• Email delivery provider (to send verification emails, receipts, and service notifications)
• Identity verification provider (to complete KYC checks before certain payouts, where applicable)
• Security and fraud prevention providers (to help detect abuse and protect the Platform), if used

We may change service providers over time and will update this Privacy Policy when changes are material.

B) Other users (Buyer ↔ Provider)

Because this is an intermediary platform, information you share may be visible to other users:

• Providers may see Buyer briefs, messages, and project materials shared with them.
• Buyers may see Provider profiles and communications.

C) Legal and safety reasons

We may disclose information if we believe it's necessary to:

• comply with law, regulation, or lawful requests;
• enforce our Terms of Service;
• prevent fraud or security threats;
• protect rights, property, and safety of users and the public.

If personal data is transferred outside the EEA/UK (or other regions with transfer restrictions), we use recognized safeguards where required (such as Standard Contractual Clauses and other measures) to protect data.

We keep personal data only as long as necessary for the purposes described in this Policy, including providing the Platform, meeting legal obligations, resolving disputes, and enforcing agreements.

Recommended retention approach:

• Account data: retained while your account is active. If you delete your account, we delete or anonymize account data where feasible, except where we must keep it for legal, security, or dispute reasons.
• Messages & project communications: retained while the account is active, and typically up to 24 months after account closure (unless you request deletion earlier and it's legally possible).
• Files/attachments shared in projects: intended to be temporary and kept only as long as needed to deliver the service (for example, until downloaded/received or until the project ends). We may also retain limited backups for security and reliability for a short period.
• Transaction, invoice, and payout records: retained for up to 6 years to meet accounting/tax and compliance needs (or longer if required by law).
• Security logs & fraud prevention logs: typically retained up to 12 months, unless we need longer to investigate abuse or comply with legal requirements.
• Identity verification (KYC) records (verification status/results): retained as needed for compliance and fraud prevention, typically up to 5 years after the last payout activity (or as required by law or provider constraints).

A) Essential cookies (always on)

Required for core functionality (login sessions, security, language settings).

B) Analytics cookies

We do not use analytics cookies at this time.

C) Marketing cookies (planned)

We may introduce marketing/advertising tools in the future. Where required by law (e.g., EU/UK), we will implement a cookie consent mechanism before enabling non-essential cookies.

Your choices: You can control cookies through your browser settings. Where required, we will provide consent choices for non-essential cookies.

Depending on your location, you may have rights such as:

• access your data;
• correct inaccurate data;
• delete your data;
• restrict or object to processing;
• portability (receive data in a usable format);
• withdraw consent (where processing is based on consent).

To exercise rights, email support@providem.ai. We may ask you to verify identity before fulfilling a request.

We use administrative, technical, and organizational safeguards designed to protect personal data (e.g., access controls, encryption in transit, monitoring). No system is 100% secure; you also play a role by using a strong password and keeping credentials confidential.

To protect users and reduce risk, you agree not to upload or request unnecessary sensitive personal data through the Platform. In particular, do not share:

• special category/sensitive data (e.g., health, biometrics, political opinions, religious beliefs);
• government ID numbers or identity documents (except through the dedicated identity verification/KYC flow for Providers);
• payment card details via messages;
• any data you do not have the legal right to share.

The Platform is not intended for children. We do not knowingly collect personal data from individuals under 16 (or the age defined by local law). If you believe a child has provided us personal data, contact us and we will take appropriate steps.

We may update this Privacy Policy from time to time. We will post the updated version and change the "Last updated" date. If changes are material, we may provide additional notice on the Platform or by email.

If you are located in the EEA/UK, you may lodge a complaint with your local data protection authority. If you are in Georgia, you may contact Georgia's Personal Data Protection Service.

Email: support@providem.ai

Company: LTD Providem, 405815239

Address: N6 Levan Aleksize str, Tbilisi, Georgia