Legal

Privacy Statement

Effective June 11, 2026

1. Who we are

This Privacy Statement describes how Meritium, Inc., a Delaware corporation doing business as Abrink (“Abrink,” “we,” “us”), collects, uses, and shares information when you use our website at abrink.ai and the software and applications we provide (collectively, the “Services”). Abrink is based in New York, NY, United States.

2. Information we collect

Information you provide. When you contact us, book an introduction, or create an account, we collect information such as your name, email address, company, and the contents of your message. When you use applications we build or host, we process the content you submit through them.

Information collected automatically. We collect standard technical information such as IP address, browser type, device information, pages visited, and timestamps, using server logs and similar technologies, to operate and secure the Services.

3. Data accessed through connected services

Some of our applications connect, with your authorization, to third-party platforms such as Microsoft 365 (via Microsoft Entra ID and the Microsoft Graph API) and Google Workspace (via Google APIs). When you sign in with or connect such an account, we access only the data covered by the permissions you (or your organization’s administrator) grant — for example, your basic profile (name and email address) for sign-in, or mailbox, calendar, or file data where an application’s function requires it. The permissions requested are shown on the platform’s consent screen before you grant access.

We use data obtained from connected services solely to provide and improve the specific features you have enabled. We do not use this data for advertising, we do not sell it, and we do not allow humans to read it except (a) with your consent, (b) as necessary for security or to comply with law, or (c) to support or debug the Services at your request. Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including its Limited Use requirements, and our use of Microsoft data complies with Microsoft’s API terms.

You can revoke our access at any time through your Microsoft or Google account settings (or via your organization’s administrator), after which we will no longer be able to access the connected data.

4. How we use information

We use the information we collect to provide, operate, and improve the Services; respond to inquiries; provide support; secure the Services and prevent abuse; comply with legal obligations; and communicate with you about the Services. We do not sell personal information, and we do not use the contents of your connected accounts to train generalized AI or machine-learning models.

5. How we share information

We share information only with: (a) service providers that help us operate the Services (such as cloud hosting, databases, AI model providers, and email delivery), bound by confidentiality and data-protection obligations and only to the extent needed to perform their services; (b) your organization, where you use the Services through a client engagement administered by your employer; (c) authorities or other parties where required by law or to protect rights, safety, or the integrity of the Services; and (d) a successor entity in connection with a merger, acquisition, or sale of assets, subject to this Privacy Statement.

6. Data retention and deletion

We retain personal information only as long as needed for the purposes described above, to comply with legal obligations, or as required under a client engagement agreement. Data accessed from connected services is processed transiently where possible and stored only as needed to provide the enabled features. You may request deletion of your personal information by emailing us at the address below; we will honor verified requests except where retention is required by law or by an active client agreement.

7. Security

We use administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit, access controls, and isolation of client data and credentials. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8. International transfers

We are based in the United States and process information there. If you access the Services from outside the U.S., you understand that your information will be transferred to and processed in the United States, which may have different data-protection laws than your jurisdiction.

9. Your rights

Depending on where you live, you may have rights to access, correct, delete, or receive a copy of your personal information, and to object to or restrict certain processing. To exercise these rights, contact us at the address below. We will not discriminate against you for exercising your rights.

10. Children

The Services are intended for business use and are not directed to children under 16. We do not knowingly collect personal information from children.

11. Changes to this statement

We may update this Privacy Statement from time to time. If we make material changes, we will update the effective date above and, where appropriate, provide additional notice.

12. Contact

Meritium, Inc. (d/b/a Abrink) — New York, NY. Privacy questions or requests: hello@abrink.ai.