Privacy Policy

RM Ad & Tech Inc Privacy Notice 

Effective Date: July 14, 2025 

Thank you for reviewing RM Ad & Tech Inc’s Privacy Notice. RM Ad & Tech Inc, Inc. and its affiliates (collectively, “RM Ad & Tech Inc” or “Pathik.ai”), headquartered at 10357 Hillsborough St, Huntersville, NC 28078, USA, are committed to fair, transparent, and lawful practices to protect your Personal Information. As a B2B advertising platform operating globally, we enable our business Customers to manage their digital marketing activities. We collect and process Personal Information only from our Customers and their authorized users, not from the end-users targeted by our Customers’ marketing efforts. Our corporate values—doing the right thing, being customer-obsessed, and passionately caring—guide our handling of your Personal Information. 

This Privacy Notice (“Notice”) explains how we collect, use, share, and secure your Personal Information when you interact with our Websites, Products, or team. Our Websites and Products are designed exclusively for business Customers and their authorized representatives, not for individual consumers for personal, family, or household purposes. We encourage you to review this Notice periodically, as we may update it to reflect changes in our practices or legal requirements. We review this policy annually or as needed to ensure compliance and relevance. If you have questions, contact us at developeradmin@pathik.ai

California Notice at Collection: California residents, see the “Supplemental Privacy Notice for California Residents” section for details on your privacy rights. 

Definitions

To ensure clarity, we use the following terms throughout this Notice: 

  • Customer: Any organization or business that is a client of RM Ad & Tech Inc, has purchased our Products, or has authorized its users to engage with our platform. 
  • Personal Information: Information that can identify you, such as your name, email address, or company role. 
  • Products: RM Ad & Tech Inc’s platforms, modules, solutions, or services (including demos and trials) forming a unified digital advertising platform for business marketing activities. 
  • We, Us, Our, or RM Ad & Tech Inc: RM Ad & Tech Inc, Inc. and our affiliated companies, headquartered at 10357 Hillsborough St, Huntersville, NC 28078, USA. 
  • Websites: pathik.ai and any linked web pages hosted by us. 
  • You or Your: The individual reading this Notice, representing a business or organization, whose Personal Information is processed. 

Scope of this Notice and RM Ad & Tech Inc’s Role

This Notice applies to Personal Information we collect when you engage with our Websites, Products, or team, including during sales, account setup, or support interactions. RM Ad & Tech Inc acts as the data controller for B2B Personal Information collected from our Customers and their authorized users, determining how it is processed. 

This Notice does not apply to: 

  • Customer-Controlled Data: Personal Information processed on behalf of our Customers (e.g., data uploaded to or processed through our Products). Our Customers are the controllers of such data, and their privacy policies apply. See “RM Ad & Tech Inc as a Service Provider and Processor” below. 
  • End-User Data: Data of end-users targeted by our Customers’ marketing efforts. We do not directly collect or process this data, as it is managed by our Customers or their integrated third-party services under their terms and policies. 
  • Third-Party Websites: Websites linked from our Websites, governed by their own privacy policies. We are not responsible for their practices. 

Personal Information Collected by RM Ad & Tech Inc

        We collect B2B Personal Information from our Customers and their authorized users, depending on your interaction with our Websites, Products, or team. We do not collect sensitive personal information (e.g., biometric data, precise geolocation, or protected classifications like race or religion) unless explicitly stated. Data comes from three sources: 

        1. Personal Information You Provide 

        When you interact with our Websites, Products, or team, you may provide: 

        • Contact and Profile Information: Name, email address, phone number, language preferences, or profile image when subscribing to newsletters, requesting demos, registering for webinars, or setting up an account. 
        • Relationship Management Information: Billing details (e.g., direct debit, billing contacts, payment schedules). 
        • Employment Information: Company name, role, industry, business address, or contact details. 
        • Commercial Records: Details of Products considered or purchased, sales process information. 
        • General Geographic Location Data: Country-level data to tailor communications and services (not precise geolocation). 
        • Communication Preferences: Marketing content preferences, consent records, or correspondence. 
        • Communication Data: Records of calls or communications for training, monitoring, or improvement. 

        2. Personal Information We Collect Automatically 

        When you use our Websites or Products, we may collect: 

        • Usage Information: Pages visited, features accessed, date/time of visits, and actions taken. 
        • Device Information: Hardware, software, operating system, unique device identifiers, or IP addresses. 
        • Information via Cookies and Similar Technologies: See “Cookies and Similar Technologies” below. 

        We do not engage in profiling or automated decision-making that significantly impacts you without human intervention. 

        3. Personal Information from Third Parties 

        We may receive B2B Personal Information from: 

        • Third-Party Services: Metrics or account data from services integrated by Customers (e.g., marketing or analytics tools). 
        • Customer-Uploaded Data: Business data uploaded to our Products for marketing purposes. 
        • Authorized Resellers/Partners: Contact or commercial information from our partners or service providers. 
        • Public Sources: Information from public forums, digital media, or government records, subject to their terms. 
        • Mergers/Acquisitions: Commercial information from entities involved in corporate transactions. 

        How RM Ad & Tech Inc Uses Personal Information

              We process your Personal Information to deliver a seamless B2B advertising experience, adhering to data minimization principles (collecting only what is necessary). Purposes include: 

              • Providing Services: Operating and delivering Products and Websites, managing accounts, and fulfilling requests for marketing management or support. 
              • Integrating Third-Party Services: Enabling connections to Customer-selected third-party services to facilitate marketing activities. 
              • Processing Customer-Uploaded Data: Analyzing business data uploaded by Customers to support their marketing objectives, as instructed. 
              • Communication: Responding to inquiries, sending marketing content (with consent), or providing service updates (e.g., platform maintenance). 
              • Customer Relationship Management: Servicing accounts, managing contracts, and facilitating billing. 
              • Security and Integrity: Monitoring and enhancing the safety of our Websites and Products, addressing fraud, bugs, or legal compliance. 
              • Business Purposes: Analyzing usage trends, improving Products/Websites, marketing, conducting internal research, maintaining business records, and maintaining records of data processing activities to comply with applicable laws, such as GDPR Article 30, ensuring transparency and accountability. 
              • Legal Compliance: Meeting regulatory obligations, enforcing Terms of Use, or supporting corporate transactions (e.g., mergers). 

              We use AI and machine learning to optimize platform functionality and analyze usage trends, with human oversight for significant decisions. We do not rely solely on automated decision-making that significantly impacts users without human involvement. We combine your Personal Information with third-party data only when permitted, to enhance your experience. Data is retained only as long as necessary (e.g., contact data for 3 years post-relationship, business data for 5 years for analytics, unless required longer by law). 

              How RM Ad & Tech Inc Shares Personal Information

                    We do not sell or distribute your Personal Information to third parties for their own purposes without your consent, except as described below: 

                    • Affiliates: To support Product delivery, account servicing, or business operations. 
                    • Authorized Vendors/Sub-Processors: Third-party service providers (e.g., cloud hosting, analytics, email vendors) under data protection agreements. A list of sub-processors is available at pathik.ai/subprocessors. 
                    • Third-Party Services: Data shared with services integrated by Customers, as directed, for marketing purposes, subject to their terms and policies. 
                    • Legal Purposes: Disclosure to comply with legal demands (e.g., subpoenas, law enforcement requests), tax authorities, or to protect RM Ad & Tech Inc’s rights, safety, or users. 
                    • Business Transfers: Sharing during sales, mergers, or acquisitions. 
                    • With Consent: Sharing as authorized by you or our Customers. 

                    We ensure third-party recipients adhere to equivalent data protection standards via written agreements (e.g., Data Processing Agreements) or standard contractual clauses for onward transfers. Customers are responsible for ensuring their use of integrated third-party services complies with those services’ terms. 

                    How RM Ad & Tech Inc Secures Personal Information

                    We prioritize your Personal Information’s security using industry-standard measures, including: 

                    • AES-256 encryption for data in transit and at rest. 
                    • Multi-factor authentication for account access. 
                    • Firewalls, malware protection, and regular software updates. 
                    • Annual security audits and vendor risk assessments. 

                    Our staff are trained on data protection and bound by confidentiality obligations. Access to Personal Information is restricted per our access control policies. In the event of a data breach affecting your Personal Information, we will notify you and relevant authorities promptly, as required by applicable laws, such as GDPR Article 33 or U.S. state regulations. We retain data only as long as necessary (e.g., contact data for 3 years post-relationship, business data for 5 years for analytics) and conduct periodic reviews to ensure compliance. You may request deletion via the “Your Rights and Choices” section below. 

                    Your Rights and Choices

                    You have rights over your Personal Information under applicable laws, including: 

                    • Access: Request a copy of your Personal Information, including in a portable format. 
                    • Correction: Correct inaccurate data. 
                    • Deletion: Request deletion of data no longer needed. 
                    • Restriction/Object: Restrict or object to certain processing (e.g., based on legitimate interests). 
                    • Data Portability: Receive your data in a structured, machine-readable format (GDPR-specific). 
                    • Opt-Out: Opt out of marketing emails via the “unsubscribe” link or cookie tracking via “Cookie Preferences” on our Websites. 

                    To exercise these rights: 

                    We respond within 30 days (GDPR) or 45 days (CCPA), with an appeal process for denied requests (contact developeradmin@pathik.ai). You may also lodge complaints with supervisory authorities (e.g., FTC in the US, EU/UK DPAs, Brazil’s ANPD). 

                    Providing Personal Information is optional for some features but required for account creation or certain services. Declining may limit access to Products or features. 

                    International Transfers of Personal Information

                    As a US-based company with global operations, we may process or store Personal Information in the United States, EU, Brazil, or other jurisdictions. We comply with: 

                    • EU-U.S. Data Privacy Framework (DPF), UK Extension to EU-U.S. DPF, and Swiss-U.S. DPF, adhering to their Principles for data from the EU, UK, and Switzerland. 
                    • LGPD for Brazil, ensuring lawful transfers. 
                    • Other Jurisdictions: Standard Contractual Clauses or equivalent mechanisms, supported by transfer impact assessments to evaluate risks and ensure equivalent protection. 

                    For details, contact developeradmin@pathik.ai. The FTC oversees our DPF compliance, and we cooperate with EU/UK DPAs and the Swiss FDPIC for unresolved complaints. 

                    Minors

                    Our Products and Websites are not directed at individuals under 13 (per COPPA) or 16 (per GDPR). We do not knowingly collect data from minors without parental consent. If we discover such data, we will delete it or notify the relevant Customer. 

                    Cookies and Similar Technologies

                    We use cookies and similar technologies (e.g., web beacons, pixels) to enhance your experience: 

                    • Strictly Necessary Cookies: Enable Website functionality (e.g., language settings, login). 
                    • Functional Cookies: Improve browsing (e.g., live chat, dashboard preferences). 
                    • Marketing/Analytics Cookies: Analyze user behavior for personalized content or platform improvements. 
                    • Advertising Cookies: Personalize ads on our Websites or third-party platforms. 

                    We do not currently provide proprietary tracking tools like pixels or SDKs. Customers are responsible for managing and obtaining consents for third-party tracking tools (e.g., pixels) used with our Products, in compliance with applicable laws and platform terms. If we introduce such tools in the future, we will update this Notice to disclose their use and ensure compliance. 

                    Cookies are stored for up to 2 years unless you opt out. Manage preferences via: 

                    • “Cookie Preferences” at pathik.ai. 
                    • Browser settings (we respond to Do Not Track signals where required). 
                    • Third-party partner tools. 

                    Third-party cookies (e.g., from analytics providers) support our services but are governed by their policies. Customers are responsible for ensuring cookie usage complies with integrated service terms. 

                    Compliance with Third-Party Advertising Platforms 

                    Our Products integrate with third-party advertising and analytics platforms to support Customers’ digital marketing activities. We comply with the privacy and data protection requirements of these platforms, including but not limited to Meta Ads, Google Ads/Google Analytics 4 (GA4), TikTok Ads, and similar services. Below, we outline our compliance with these platforms’ policies to ensure transparency and legal adherence. 

                    Meta Ads 

                    When Customers integrate Meta Ads (including Facebook and Instagram Ads) with our Products, we: 

                    • Do Not Directly Process End-User Data: We process only Customer-provided B2B data (e.g., account details, campaign metrics) or data shared via Meta’s APIs, as instructed by Customers. End-user data (e.g., audience data) is managed by Customers and Meta under Meta’s Privacy Policy (https://www.facebook.com/privacy/policy). 
                    • Comply with Meta’s Platform Terms: We adhere to Meta for Developers Platform Terms, ensuring a publicly accessible Privacy Policy URL (pathik.ai/privacy) is provided for apps or integrations requiring advanced access. 
                    • Support Consent Management: Customers are responsible for obtaining necessary consents for data processed via Meta Ads (e.g., for Instant Forms or Meta Pixel). We facilitate Customer compliance by processing data per their instructions and providing secure APIs. 
                    • Secure Data Handling: Data shared with Meta is encrypted (AES-256) and access-controlled, with sub-processors listed at pathik.ai/subprocessors. 

                    Google Ads and Google Analytics 4 (GA4) 

                    When Customers integrate Google Ads or GA4 with our Products, we: 

                    • Disclose Use of Google Services: We use Google Ads and GA4 for campaign management and analytics, collecting data such as campaign performance metrics or anonymized usage data, as directed by Customers. We do not collect personally identifiable information (PII) for advertising purposes without Customer consent. 
                    • Comply with Google’s Terms: We adhere to Google Analytics Terms of Service and Google Ads Data Protection Terms, ensuring our Privacy Policy discloses the use of cookies, identifiers (e.g., Android Advertising Identifier), and how data is collected/processed. 
                    • Support Opt-Out Mechanisms: Customers can opt out of Google Analytics Advertising Features via Google Ads Settings or NAI’s consumer opt-out (https://optout.networkadvertising.org). Our “Cookie Preferences” at pathik.ai allows users to manage tracking preferences. 
                    • Prevent PII Transmission: We do not pass PII to Google that could be recognized as such, except where permitted by Google Analytics features with Customer consent. 
                    • Data Safety Form Compliance: For Google Play integrations, we complete required Data Safety Forms to disclose data collection and sharing practices, ensuring transparency. 

                    TikTok Ads 

                    When Customers integrate TikTok Ads with our Products, we: 

                    • Do Not Directly Process End-User Data: We process only Customer-provided B2B data or campaign metrics via TikTok’s APIs, as instructed. End-user data (e.g., via TikTok Pixel) is managed by Customers and TikTok under TikTok’s Privacy Policy (https://www.tiktok.com/legal/page/eea/privacy-policy/en). 
                    • Comply with TikTok’s Policies: We adhere to TikTok’s Advertising Policies and joint controller agreements, ensuring data collection and transfer align with GDPR and other applicable laws. 
                    • Support Customer Compliance: Customers are responsible for obtaining consents for TikTok Pixel or ad-related data processing. We provide secure APIs and data protection measures to facilitate compliance. 
                    • Data Retention: TikTok-related data (e.g., campaign metrics) is retained for up to 5 years for analytics or as required by law, then anonymized or deleted. 

                    Similar Platforms 

                    For other third-party advertising or analytics platforms integrated with our Products (e.g., LinkedIn Ads, Pinterest Ads), we: 

                    • Adhere to Platform Policies: We comply with each platform’s privacy and developer terms, ensuring data processing aligns with their requirements and applicable laws (e.g., GDPR, CCPA, LGPD). 
                    • Limit Data Processing: We process only Customer-authorized data (e.g., campaign metrics, account details) and do not directly access end-user data, which is governed by the respective platform’s privacy policy. 
                    • Ensure Transparency: Our Privacy Policy URL (pathik.ai/privacy) is publicly accessible and updated to reflect integration-specific data practices, as required by platforms. 
                    • Secure Data Transfers: Data shared with platforms is encrypted and governed by Data Processing Agreements or Standard Contractual Clauses, with sub-processors listed at pathik.ai/subprocessors. 

                    Customers using our Products with third-party platforms are responsible for: 

                    • Ensuring their data practices comply with each platform’s terms and applicable laws. 
                    • Obtaining necessary consents for end-user data processing (e.g., via pixels, cookies). 
                    • Providing transparent notices to their end-users about data collection and use. 

                    We do not control data processing by third-party platforms or Customers. For questions about their practices, contact them directly or review their privacy policies. 

                    RM Ad & Tech Inc as a Service Provider and Processor 

                    Our Products enable Customers to manage their digital marketing activities by integrating third-party services and processing business data they upload. As a processor, we: 

                    • Process Customer-uploaded data or data from integrated services under their instructions, per our Master Services Agreement and Data Processing Addendum (DPA). 
                    • Use vetted sub-processors (e.g., cloud hosting, analytics providers) for data storage, processing, or analytics, listed at pathik.ai/subprocessors. 
                    • Direct data subject requests for Customer-controlled data to the relevant Customer. 
                    • Do not directly collect or process end-user data (e.g., marketing audience data), which is managed by Customers or their integrated services under their policies. 
                    • Enforce our Terms of Use to ensure Customers comply with applicable data protection laws when processing end-user data via our Products. We conduct periodic audits of Customer integrations with third-party services to verify compliance and may suspend or terminate accounts for misuse. 

                    Customers are responsible for: 

                    • Ensuring compliance with data protection laws for data they upload or process via our Products. 
                    • Validating integrations with third-party services and complying with their terms. 
                    • Providing transparent notices to their end-users about data processing. 

                    Contact Customers directly for questions about their data practices or to exercise rights over Customer-controlled data. 

                        Supplemental Privacy Notice for Users in the EEA and UK

                        This section supplements the main Notice for users in the European Economic Area (EEA) and UK, per GDPR. 

                        Legal Basis and Purpose for Processing

                        We process Personal Information based on: 

                        • Contractual Necessity: To provide Products or respond to pre-contractual requests. 
                        • Legitimate Interests: To operate our business, improve services, or prevent fraud, balanced against your rights. 
                        • Consent: For marketing or non-essential cookies, revocable at any time. 
                        • Legal Obligations: To comply with regulations. 
                        Rights 

                        In addition to rights in “Your Rights and Choices,” you have the right to data portability. Exercise rights via developeradmin@pathik.ai or https://pathik.ai/contact-us/. Contact your local DPA (e.g., UK ICO) for complaints. 

                        EU Representative 

                        RM Ad & Tech Inc, ATTN: EU Privacy, 10357 Hillsborough St, Huntersville, NC 28078, USA (developeradmin@pathik.ai). 

                        Supplemental Privacy Notice for California Residents 

                        This section applies to California residents under the CCPA/CPRA. 

                        Your Rights 
                        • Information/Access: Request categories, sources, purposes, and third parties for your Personal Information. 
                        • For questions or to exercise your rights, contact: Email: developeradmin@pathik.ai Form: https://pathik.ai/contact-us/ Mail: RM Ad & Tech Inc, ATTN: Privacy, 10357 Hillsborough St, Huntersville, NC 28078, USA Our Data Protection Officer is reachable at the same contact points. We aim to respond within 5 business days. Correction/Deletion: Correct or delete inaccurate/unneeded data. 
                        • Opt-Out: Opt out of “selling” or “sharing” for targeted advertising (e.g., via cookies). 
                        • Non-Discrimination: Exercise rights without discrimination. 

                        We do not sell Personal Information for monetary gain but may “share” it with advertising or analytics partners for targeted ads. Opt out at https://pathik.ai/contact-us/ or developeradmin@pathik.ai. We do not use Sensitive Personal Information for purposes requiring limitation under CCPA. 

                        Data Categories 
                        Category CCPA Category Shared with Third Parties 
                        Contact Information Identifiers, California Customer Records Advertising/analytics partners 
                        Relationship Management Commercial Information, Financial Information None 
                        Employment Information Professional/Employment Information None 
                        Commercial Records Commercial Information Advertising/analytics partners 
                        General Geographic Location Identifiers, Location Information Advertising/analytics partners 
                        Communication Preferences/Data Identifiers, Internet/Network Information Advertising/analytics partners 
                        Device/Online Activity Data Identifiers, Internet/Network Information Advertising/analytics partners 
                        Inferences Inferences Advertising/analytics partners 
                        Shine the Light 

                        Under California’s Shine the Light law, request details of third-party sharing at developeradmin@pathik.ai

                        Supplemental Privacy Notice for Brazil Residents 

                        This section applies to Brazil residents under LGPD. 

                        Purpose and Duration 

                        We process data for purposes listed in “How RM Ad & Tech Inc Uses Personal Information,” relying on contractual necessity, legitimate interests, consent, or legal obligations. Data is retained as necessary (e.g., contact data for 3 years post-relationship, business data for 5 years) and anonymized using industry-standard techniques when required. 

                        Rights 

                        Per Article 18 of LGPD, you have rights to confirmation, correction, anonymization, blocking, deletion, portability, and consent withdrawal. Exercise via developeradmin@pathik.ai or https://pathik.ai/contact-us/. Contact Brazil’s ANPD for complaints. 

                        Updates to this Privacy Notice 

                        We may update this Notice to reflect legal or operational changes. Significant updates will be notified via email or website posting (pathik.ai). Previous versions are archived and available upon request at developeradmin@pathik.ai

                        Governing Law 

                        This Privacy Notice and any disputes arising from it are governed by the laws of the State of North Carolina, USA, without regard to its conflict of law principles, except where mandatory local laws (e.g., GDPR, LGPD) apply to specific data protection rights. 

                        Contact Us 

                        For questions or to exercise your rights, contact: 

                        • Mail: RM Ad & Tech Inc, ATTN: Privacy, 10357 Hillsborough St, Huntersville, NC 28078, USA 

                        Our Data Protection Officer is reachable at the same contact points. We aim to respond within 5 business days.