Skip to main content
modiva.ai

Legal

Privacy Policy

Last updated: June 24, 2026

This Privacy Policy explains how Modiva.ai (“Modiva,” “we,” “us”) collects, uses, and protects information when you use our platform to connect third-party accounts and operate them through a unified API and Model Context Protocol (MCP) server.

1. Information we collect

  • Account data — your name, email, organization, and authentication details when you sign up.
  • Connected-account data — access tokens and the content and insights we retrieve from platforms you connect (for example TikTok, YouTube), strictly within the scopes you authorize.
  • Usage data — API and MCP requests, timestamps, and diagnostic logs used to operate and secure the service.
  • Billing data — processed by our payment provider; we do not store full card numbers.

2. How we use information

  • Provide, maintain, and improve the service.
  • Execute the actions you request on your connected accounts.
  • Authenticate you, enforce plan limits, and process billing.
  • Detect, prevent, and respond to fraud, abuse, and security issues.
  • Comply with legal obligations.

3. Third-party platform data

When you connect a platform, we access its data only through the platform’s official APIs and only within the permissions you grant. We use this data solely to provide the features you request and do not sell it or use it for advertising. Our handling of data from each platform also complies with that platform’s developer policies, including the TikTok Developer Terms and Google API Services User Data Policy where applicable. You can revoke access at any time by disconnecting the account in Modiva or from the platform’s own settings.

4. How we protect data

Modiva is multi-tenant with row-level isolation so each organization’s data is segregated. Provider credentials are stored using envelope encryption (AES-256-GCM with a managed key service). Data is encrypted in transit, and access is restricted to authorized systems and personnel.

5. Sharing and disclosure

We do not sell your personal data. We share data only:

  • With service providers (such as hosting, database, and payment processors) acting on our behalf under contract.
  • With the third-party platforms you connect, to carry out your requests.
  • When required by law or to protect the rights, safety, and integrity of the service.

6. Data retention

We retain your data for as long as your account is active or as needed to provide the service. When you disconnect an account or delete your Modiva account, we delete or anonymize the associated data after a reasonable retention period, except where we must keep it to meet legal or accounting requirements.

7. Your rights

Depending on your location, you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. You can exercise these rights from your account settings or by contacting us. You may also revoke a connected platform’s access at any time.

8. International transfers

Your data may be processed in countries other than your own. Where we transfer data internationally, we use appropriate safeguards as required by applicable law.

9. Children

Modiva is not intended for individuals under 18, and we do not knowingly collect personal data from children.

10. Changes to this policy

We may update this Privacy Policy from time to time. We will post the revised version with an updated date and, for material changes, provide reasonable notice.

11. Contact

For privacy questions or requests, contact privacy@modiva.ai.

See also our Terms of Service.