🔐Data Protection

Key documents

Terms & Conditions: https://www.mava.app/legal/terms-conditions

Privacy Policy: https://www.mava.app/legal/privacy-policy

Data Protection Addendum: https://www.mava.app/legal/dpa

Data protection overview

We are building Mava around core principles of privacy and security.

1. What data does Mava store?

In line with GDPR principles, any personal data collected by Mava is for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes. We will only collect and store information that is required to help you manage your team and provide effective customer support to your community.

Building Mava around web3 principles and allowing users to connect via their wallet means users can stay totally anonymous if they wish.

We will never sell or share your data with third-party providers without your explicit consent.

Read more about GDPR.

2. Where and how is data stored?

With Mava, all your data is stored using Amazon Web Services (AWS), the world's leading cloud computing service provider. AWS is a recognized provider of secure network architecture to protect your information, identities, applications, and devices.

The data is stored in the AWS EU Region that is designed and built to meet rigorous compliance standards, including ISO 27001, ISO 9001, ISO 27017, ISO 27018, SOC 1, SOC 2, SOC3, PCI DSS Level 1, and many more.

Read More about AWS security

3. Does my data get transferred?

Every time you access Mava services on the website you transfer some data across to the browser. We encrypt each transfer at 256-bit and send it through TLS 1.2 (HTTP over TLS), adhering to the FIPS 140-2 certification standard. Each session is limited to 7 days of idle time.

4. Who can see and access personal data?

We understand the sensitivity of your team's personal data and that of your users. That's why all messages between the Mava app and your users are encrypted at rest within our database.

Mava employees do not have access to your company's details or messages inside the app and our infrastructure permissions allow only a few individuals (CEO, CTO etc.) to directly access our production databases for the purpose of troubleshooting, and all requests are logged. No one else can access our production databases.

Within the application, we have created two role profiles, Moderator and Admin so you can control what certain team members can see based on their roles.

5. Is my activity monitored on Mava?

For the purposes of user experience improvements and general usage statistics, we keep a record of high-level actions such as "number of tickets created" or "number of team members".

Please don't hesitate to contact the team if you have any questions related to data privacy or security.

PreviousUsing Mava on MobileNextGoing Live Checklist

Last updated