Janix Privacy Policy

v2026-06-24 · Effective Date: June 24, 2026

This Privacy Policy explains how Janix, Inc., a Delaware corporation registered as a foreign corporation in Texas (“Janix,” “we,” “us,” or “our”) collects, uses, discloses, and protects personal information in connection with the Janix platform and related services (the “Services”) and our website at janix.ai. It also describes the rights and choices available to individuals.

1. Our Role: Controller and Processor

Janix offers a platform that event organizers (“Organizers”) use to manage events and sell tickets and passes to their attendees and other end users (“Attendees”). Our role under data-protection law depends on the context:

• As a controller: when we process personal information about our own account holders and website visitors—for example, to provide, secure, and bill the Services—we determine the purposes and means of processing and act as a controller.
• As a processor: when we process personal information that an Organizer uploads or collects through the Services about its Attendees, contacts, or other individuals, we generally act as a processor (or service provider) on that Organizer’s behalf, and the Organizer is the controller.

This Policy describes our practices as a controller. Where we process personal information on an Organizer’s behalf, that Organizer’s own privacy notice and our agreement with the Organizer govern, and we will refer requests we receive to the relevant Organizer.

When you are both an account holder and an attendee. Many people interact with Janix in two capacities at the same time, and different rules apply to each. Your Janix account itself—your magic-link login, the email address you sign in with, your profile, and your account settings—is data for which Janix is the controller, governed by this Policy. By contrast, the information an Organizer collects or generates about you in connection with its particular Event—such as your registration for that Event, attendee details, any enrichment the Organizer runs, and any advertising data the Organizer chooses to share using its own accounts—is data for which the Organizer is the controller and Janix is its processor; that information is governed by the Organizer’s own privacy notice and our agreement with the Organizer. The same person can therefore be a Janix-controlled contact for their global account and an Organizer-controlled attendee for a specific Event.

2. Information We Collect

Information you provide:

• Account and contact information: your name, email address, and mailing address.
• Content you upload: profile information, data from past and current Events, contacts, photos, and other materials you choose to provide.
• Communications: information you provide when you contact support by email or chat.
• Age range (optional): you may choose to provide an age range—one of 18-24, 25-34, 35-44, 45-54, 55-64, or 65+. This is an age range, not your date of birth.

Information collected automatically:

• Usage and device data: log data, device and browser information, IP address, and similar information collected through cookies and similar technologies.

Information from third parties:

• Payment information: payments are processed by Stripe; we do not store full payment-card numbers. Stripe provides us limited transaction information.
• Information from Organizers: if you are an Attendee or contact, an Organizer may provide your information to us through the Services.
• Enrichment data: we use Apollo.io (business details such as company, job title, and industry) and Exa.ai (publicly available background information from the web) to enrich contact records in the Services. We use only publicly available information for enrichment. Where enrichment is performed on an Organizer’s contacts or Attendees, the Organizer directs it and acts as the controller. You can opt out of enrichment in your settings within the platform.

We do not request or require your date of birth (the optional age range above is a range only), and we do not knowingly collect personal information from children under 13.

3. How We Use Information

Where we act as a controller, we use personal information to:

• provide, operate, maintain, secure, and improve the Services;
• create and manage accounts and authenticate users via magic link;
• process subscriptions and fees (through Stripe);
• provide customer support;
• communicate with you about the Services (we communicate with users primarily by email);
• operate our AI Features—we use large language models to understand Event audiences, to compose and send email marketing campaigns on behalf of Organizers (delivered through our email provider, Resend), and to support the autonomous pre-production and advancement of Events; and
• comply with law and enforce our agreements.

We do not use your content for purposes other than providing the Services you request, except as described in this Policy.

4. AI and Automated Processing

The Services use artificial intelligence and large language models to analyze audience data and generate email marketing and event-production content. This processing is performed to provide the Services. AI output is generated automatically and may be inaccurate; how it is reviewed and used is described in our Terms of Service. We do not use AI Features to make decisions that produce legal or similarly significant effects about individuals without appropriate safeguards.

LLM sub-processors. To power these features, organizer and attendee data is processed by the following large language model providers acting as our sub-processors: Anthropic, PBC (Claude models, accessed through the Anthropic API), which we use for most AI features; and Google LLC (the Gemini model via Google Cloud’s Vertex AI), which we use for content generation. Under Anthropic’s commercial terms, your data is not used to train Anthropic’s models and is retained only for a limited period (currently up to seven days) except where longer retention is required to comply with law or address misuse. Under Google’s Vertex AI data-governance terms, your data is not used to train Google’s models; Vertex AI may briefly cache inputs and outputs (up to 24 hours) to improve performance and may log prompts for abuse monitoring (retained in-region for up to 90 days and not used for training).

5. Legal Bases for Processing (EEA/UK)

Where the EU or UK General Data Protection Regulation applies and we act as a controller, we rely on the following legal bases: performance of a contract (to provide the Services you request); our legitimate interests (to secure, operate, and improve the Services); consent (where required, such as for certain marketing); and compliance with legal obligations. Where we rely on consent, you may withdraw it at any time without affecting prior processing.

6. How We Share Information

We share personal information with:

• Sub-processors and service providers that process information on our behalf under appropriate obligations, including: Stripe (payment processing), Resend (transactional and marketing email delivery), Amazon Web Services (hosting and infrastructure), and Apollo.io and Exa.ai (contact enrichment from publicly available data);
• Our AI model providers — Anthropic (Claude, via the Anthropic API) and Google (Gemini, via Google Cloud’s Vertex AI, for content generation), as described in Section 4, to power AI Features;
• Meta and Google, only where an Organizer connects its own advertising accounts (using the Organizer’s own credentials) and directs that sharing—this is done under the Organizer’s control, not Janix’s;
• Organizers, where you interact with their Events;
• authorities or other parties where required by law or to protect the rights, property, or safety of Janix, our users, or others; and
• an acquirer or successor in connection with a merger, acquisition, financing, or sale of assets.

The Services let you export certain information to third-party services you choose; that sharing is governed by those services’ terms.

No sale or cross-context sharing (Janix as controller). For the personal information for which Janix is the controller—the account-holder and website-visitor data described in Section 1—we do not sell your personal information and do not “share” it for cross-context behavioral advertising, as those terms are defined under U.S. state privacy laws. Where an Organizer acts as the controller (for example, when it connects its own advertising accounts to reach its Event audience), that Organizer decides whether and how attendee data is used for advertising; that processing is governed by the Organizer’s own privacy notice and our data processing terms with the Organizer, not this Policy.

7. International Data Transfers

We store customer data in the United States. If you are located in the European Union, the United Kingdom, or elsewhere outside the United States, your information will be transferred to and processed in the United States, which may not provide the same level of data protection as your home country. Where required, we rely on appropriate safeguards, such as the European Commission’s Standard Contractual Clauses, to protect transferred information.

8. Data Retention

We retain personal information for as long as needed to provide the Services and for legitimate business or legal purposes. We delete customer content upon request. You may delete your content and account, and request deletion, through the Services or by emailing support@janix.ai.

9. Your Rights and Choices

Depending on where you live, you may have rights to access, correct, delete, port, restrict, or object to the processing of your personal information, and to withdraw consent.

• EEA/UK (GDPR): rights of access, rectification, erasure, restriction, portability, and objection, and the right to lodge a complaint with your local supervisory authority.
• U.S. states (including California): rights to know, access, delete, and correct personal information, and to opt out of any “sale” or “sharing.” For the personal information Janix controls, we do not sell or share it as those terms are defined (see Section 6); where an Organizer is the controller, the Organizer’s choices govern. We will not discriminate against you for exercising your rights.

To exercise your rights, email support@janix.ai. We will verify your request as required by law. If we process your information on an Organizer’s behalf, we will refer your request to that Organizer.

10. Texas Residents and Data-Breach Notification

Your TDPSA rights. If you are a Texas resident, the Texas Data Privacy and Security Act (TDPSA) gives you the right to confirm whether we process your personal data and to access it; to correct inaccuracies; to delete personal data; to obtain a portable copy; and to opt out of the sale of personal data, targeted advertising, and certain profiling. You also have the right to appeal a refusal to act on your request. To exercise these rights or to appeal, email support@janix.ai.

Data-breach notification. If we experience a breach of system security involving your sensitive personal information, we will notify affected individuals without unreasonable delay and not later than 60 days after determining the breach occurred, as required by Texas Business & Commerce Code § 521.053. If a breach affects 250 or more Texas residents, we will also notify the Texas Attorney General as that statute requires.

11. Cookies and Similar Technologies

We use cookies and similar technologies to operate and improve the Services, remember your preferences, and understand usage. You can control cookies through your browser settings; disabling some cookies may affect functionality. Where required, we obtain consent for non-essential cookies.

12. Security

We use reasonable administrative, technical, and organizational measures designed to protect personal information. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

13. Children’s Privacy

The Services are not directed to children under 13, and we do not knowingly collect personal information from anyone under 13. Users between 13 and 17 may create an account and purchase a ticket or pass; if you are under 18, a parent or legal guardian must agree to our Terms of Service on your behalf. If you believe a child under 13 has provided us personal information, contact support@janix.ai and we will delete it.

14. Third-Party Links and Services

The Services may link to or integrate third-party services (such as Stripe). Those services’ privacy practices are governed by their own policies, and we are not responsible for them.

15. Changes to This Policy

We may update this Policy from time to time. We will post the updated Policy and revise the “Last Updated” date above, and where required by law we will notify you or obtain your consent.

16. Contact Us

If you have questions about this Policy or our privacy practices, contact us at:

Janix, Inc.
#976, 1401 Lavaca St
Austin, TX 78701, United States
support@janix.ai