Awvent Privacy and data security

AwventXR Inc.
Privacy Policy
Last Updated: Jan , 2006  |  Effective Date: Jan-01, 2026
 
AwventXR Inc. ("AwventXR," "we," "us," or "our") provides an online platform that allows our customers to communicate, engage, and collaborate from anywhere in the world using augmented and virtual reality ("AR/VR") (the "Platform"). This Privacy Policy is designed to help you understand our practices regarding the collection, use, and disclosure of your personal information, and to assist you in exercising your privacy rights.
This policy applies to all versions of our product, including our mobile applications on the Apple App Store and Google Play Store, and incorporates all required disclosures for biometric, face, and sensitive data collection as required by Apple and Google.
 
1. Scope
This Privacy Policy applies to information we process in connection with:

• Our websites (the "Sites")

• Our mobile applications on iOS and Android (the "Apps")

• The AR/VR Platform

• All related online and offline offerings (collectively, the "Services")

 
2. Information We Collect

2.1 Information You Provide Directly

Account Information
When you register for an account, you provide personal information including your name, email address, gender, phone number, profile photo or image (to create an avatar), and AR/VR device type. Enterprise users may additionally provide their business name, address, and role.

Face Data & Personal Images (Apple / Google Biometric Disclosure)

Important: We collect and process face data and biometric information as described below. This collection is subject to your explicit consent and is governed by Apple’s guidelines on sensitive data and Google Play’s biometric data policy.
 

• What we collect:

• A photo or selfie you choose to upload

• Derived facial landmark and mesh data used to model your face in 3D for avatar creation

• Why we collect it:

• To generate a lifelike avatar that matches your appearance

• To render your likeness in real-time during AR demos so others see your expressions and movements

• What we do NOT do with this data:

• Never used for face recognition or identity matching

• Never sold or licensed to third parties, marketers, or data brokers

• Never used for advertising or marketing analytics

 
TrueDepth Facial Tracking (Apple TrueDepth API Disclosure)
Apple Requirement: Our iOS app uses Apple’s TrueDepth camera API. As required by Apple, we disclose that TrueDepth data is used solely to animate your AR avatar in real-time. This data is processed entirely on your device and is never stored or transmitted.
 

• What we collect: Real-time measurements of facial expressions (e.g., smiling, blinking) and head orientation captured by Apple’s TrueDepth camera during active AR sessions.

• Why we collect it: To animate your avatar with natural expressions and head movements for a realistic, engaging experience.

• On-device only: TrueDepth data is processed entirely on your device, is never stored, and is never transmitted to AwventXR servers or any third party. It is discarded immediately when you close or switch away from the AR session.

 
Apple ARKit & Biometric APIs
We use certain biometric and audio data provided by the microphone, front and rear facing cameras, TrueDepth, and ARKit to capture and transmit your voice, camera video feed, 3D physical position, and facial expression. This data is transmitted through our Services and verified third-party services to other participants on your current call. All data is encrypted in transit, is never stored on AwventXR servers, and is not used for marketing or advertising purposes.

Mobile Number

• What: Your phone number provided during registration or profile updates.

• Why: To send you a one-time verification code and ensure each person has only one account, protecting the community from fraud.

• Protections: Not used for SMS marketing; not shared with advertisers.

 
Company Name

• What: The name of your employer, organization, or team.

• Why: To associate you with your organization so you see the correct content, reports, and permissions for your subscription.

• Protections: Not used for marketing or cross-company analytics; only shared with service providers necessary to deliver enterprise features.

 
Your Communications with Us

We collect personal information such as your email address, name, employer, AR/VR device type, and purchasing plans when you request information about our Services, register for newsletters, or contact customer support.

Virtual Rooms & Content
When you use our Services, you can create virtual rooms and visit rooms created by others. You may upload images, documents, slides, and other content into Rooms. We collect and store data describing Rooms and the Content uploaded to them.

Conferencing & Communication

The Services allow you to conference with other users within Rooms using your AR/VR device sensors. Audio and video of you will be captured and provided to other users along with your avatar. We also collect usage information such as conference duration, number of files uploaded, and participant identities.

Payment Information
We may receive payment information to process payments for Services, but sensitive payment data (e.g., credit card numbers) is handled by a third-party payment provider. We do not store sensitive payment information on our servers.

Other Voluntary Information
We may collect information through surveys, event registrations, sweepstakes, job applications, and business development activities.

2.2 Information Collected Automatically

Usage & Device Data
We automatically collect certain information when you use the Services, including your IP address, MAC address, cookie identifiers, browser and device details, inferred location from IP, pages visited, link clicks, frequency and duration of activities.

AR/VR Device Telemetry
We automatically collect camera, microphone, and telemetry information from your AR/VR device. Telemetry may include device type and configuration, performance data, information about connected devices, and information about your physical environment. With your consent, we may collect precise GPS location data, which you can disable in your device settings.

Cookies, Web Beacons & Tracking Technologies
We and our third-party partners use cookies, pixel tags, local storage, and similar technologies to automatically collect information. Cookies are small text files placed on your device; most browsers allow you to block or delete them, though this may affect Service functionality. Pixel tags (web beacons) are embedded code that records user engagement and email open rates.

Analytics
We use service providers including Google Analytics and Mixpanel to collect anonymized or aggregate information about user behavior.

You can opt out of Google Analytics at

 

http://tools.google.com/dlpage/gaoptout and view Mixpanel’s policy at https://mixpanel.com/legal/privacy-policy/.

2.3 Information from Third-Party Sources
We may receive personal information from third-party login services (such as Google) when you connect them to your account. This may include your email, full name, profile photo, and unique identifiers. We may also receive files you specifically import from Google Drive, Google Docs, or Dropbox.
 
3. How We Use Your Information

3.1 Providing and Improving Services

• Fulfilling our contract with you

• Managing your account and information

• Processing payment and financial information

• Responding to questions, comments, and support requests

• Providing access to features and functionalities

• Allowing you to register for events

 
3.2 Administrative & Security Purposes

• Fraud prevention and platform security

• Identity authentication and verification

• Quality control, safety assurance, and audits

• Communicating with you about your account, activities, and policy changes

• Enforcing our agreements and complying with legal obligations

 
3.3 Marketing (Where Permitted by Law)
We may use personal information to tailor and provide you with relevant content and advertisements as permitted by applicable law. You can opt out of marketing communications at any time by contacting us.

3.4 De-identified & Aggregated Information
We may create de-identified and aggregated data (e.g., demographic trends, usage statistics) from personal information. This data cannot reasonably be linked back to you and may be used for research, analytics, and service improvement.

3.5 Summary: Face & Biometric Data Use

 

 
 

 

 

 

 

 

 

 

 

4. Disclosing Your Information to Third Parties

4.1 Service Providers
We may share personal information with third-party service providers who assist in: (i) providing the Services; (ii) information and product delivery; (iii) marketing and advertising; (iv) payment processing; (v) customer service; and (vi) IT and related services. All service providers are bound by confidentiality agreements and data processing agreements as required by law.

4.2 Business & Advertising Partners
We may share information with business partners to deliver requested products or services, and with advertising partners to deliver targeted advertisements when you visit third-party services within their networks ("interest-based advertising"). Where required by applicable law, we will seek your express consent for such activities. We do not sell your personal information.

4.3 Information Shared with Other Users
When you use teleconferencing services, certain information (e.g., your name, avatar, audio, or video) may be visible to other participants. You control which users you share content with and how long it is accessible. AwventXR has limited control over how individual users may use the content you share.

4.4 APIs, SDKs & Third-Party Integrations
We may use third-party APIs and SDKs that allow those third parties to collect your personal information, subject to applicable law, to provide relevant content. For more information, please contact us.

4.5 Legal & Safety Disclosures
We may disclose your information to external parties if required or appropriate to: (i) comply with law enforcement or legal processes; (ii) protect your, our, or others’ rights, property, or safety; (iii) enforce our policies or contracts; (iv) collect amounts owed to us; or (v) assist with investigation of suspected illegal activity.

4.6 Business Transfers
In the event of a merger, acquisition, financing, reorganization, or sale of assets, your personal information may be transferred as part of such a transaction. Existing privacy commitments will remain in place.
 
5. Platform-Specific Disclosures (Apple App Store & Google Play)

5.1 Apple App Store — TrueDepth & Biometric Data

Apple App Store Compliance Notice

We use Apple’s TrueDepth camera API solely to animate your avatar in real-time. Per Apple’s guidelines:

•  TrueDepth data is not shared with third parties.
•  TrueDepth data is not used for advertising, marketing, or user profiling.
•  TrueDepth data is processed entirely on-device and is never stored or transmitted.
•  Collection requires your explicit consent each time.
 
5.2 Apple App Tracking Transparency (ATT)
On iOS 14.5 and later, we request your permission through Apple’s App Tracking Transparency (ATT) framework before tracking your activity across apps and websites owned by other companies for advertising purposes. You can change this permission at any time in your device Settings > Privacy > Tracking.

5.3 Google Play — Sensitive Data Safety

Google Play Data Safety Disclosure

Pursuant to Google Play’s Data Safety policy, we disclose the following categories of data collected:
•  Photos and videos: Profile photos used for avatar creation (optional, user-initiated)
•  Biometric data: Facial landmark data derived from uploaded photos for avatar animation
•  Audio: Voice captured during conferencing sessions
•  Phone number: For account verification only
•  Device or other identifiers: For platform performance and security
All biometric data collection requires your explicit consent. You may withdraw consent at any time.
 
6. International Data Transfers
Personal information processed by us may be transferred, processed, and stored anywhere in the world, including the United States and other countries whose data protection laws may differ from those where you live. We endeavor to safeguard your information consistent with applicable laws. If you are a resident of the European Economic Area (EEA) or the United Kingdom, we will rely on appropriate safeguards such as Standard Contractual Clauses when transferring your data internationally.
 
7. Storage, Retention & Security

7.1 On-Device Processing
TrueDepth facial tracking data never leaves your device. It is held only in temporary memory for the duration of your AR session and is deleted immediately when you close or switch away from the feature.

7.2 Server-Side Storage

• Saved avatars: If you choose to save your custom avatar, its source image and derived 3D data are encrypted in transit (TLS) and at rest on our servers.

• Retention: Saved avatars and images are retained only as long as your account is active, plus up to 30 days after you request deletion.

• Mobile numbers and company names are stored securely under strict access controls and are purged if you close your account.

 
7.3 Security Measures
We implement reasonable administrative, logical, physical, and managerial safeguards, including:

• Encryption at rest and in transit (TLS)

• Role-based access controls — only authorized personnel can access personal data

• Regular security audits and vulnerability testing

No security measures can be guaranteed 100% secure. If we learn of a security breach, we will notify you as required by law.
 
8. Your Choices

8.1 Email Communications
You may unsubscribe from marketing emails at any time using the unsubscribe link at the bottom of our emails. You will continue to receive transactional and account-related communications.
 

8.2 Mobile Devices & Push Notifications
You may opt out of push notifications by changing the settings on your mobile device. With your consent, we may collect precise location data; you may opt out in your device settings.

8.3 Cookies & Interest-Based Advertising

You may block or delete cookies through your browser or device settings. To opt out of interest-based advertising, visit:

• http://www.networkadvertising.org/managing/opt_out.asp

• http://www.youronlinechoices.eu/

• http://www.aboutads.info/choices/

• iOS: https://support.apple.com/en-us/HT202074

• Android: https://support.google.com/googleplay/android-developer/answer/6048248

Note: You must opt out separately in each browser and on each device.

8.4 "Do Not Track" (DNT)
We do not currently respond to DNT signals from web browsers.
 
9. Your Privacy Rights

9.1 General Rights
Depending on your location and applicable law (including GDPR, CCPA, and other regional regulations), you may have the following rights:
 
Your Right
 

 

 

 

 

 

 

 

 

 

 

 

 
 

 

 

 

 

 

9.2 EU / EEA / UK Residents (GDPR)
You have additional rights including the right to lodge a complaint with a supervisory authority if you believe our processing violates applicable law. You may also request a summary of the categories of data collected and their sources.

9.3 California Residents (CCPA / CPRA)
California residents may request a summary of personal information collected, sold, or disclosed for business purposes in the past 12 months. We will honor all applicable CCPA/CPRA rights and respond within 45 days of a verifiable request.
 
10. Children's Privacy
Note: Our AR image upload and facial-tracking features are not designed for or directed at children under 13 (COPPA) or under 16 in GDPR-applicable regions. We require all users to be at least 13 years of age (or the minimum age required in your jurisdiction).
 
We do not knowingly collect personal information from children without verifiable parental consent. If you learn that your child has provided us with personal information without your consent, or if we learn we have inadvertently collected such data, we will promptly delete it. Please contact us at service@awventxr.com if you have concerns.
 
11. Third-Party Websites & Applications
The Services may contain links to third-party websites and applications. These are not controlled by us. We encourage you to read the privacy policies of each website you visit. We are not responsible for the privacy practices or content of third-party sites.
 
12. Changes to This Privacy Policy
We may revise this Privacy Policy from time to time. Material changes will be communicated as required by applicable law, and we will post an updated "Last Updated" date at the top of this document. Continued use of the Services after a new Privacy Policy takes effect constitutes your acceptance of the revised policy.
 
13. Legal Basis for Processing (GDPR)

• Consent: You explicitly agree before uploading any image or enabling facial-tracking features.

• Legitimate Interest: Verifying your mobile number to protect user accounts and platform integrity.

• Contract Performance: Associating you with your company to deliver promised SaaS services.

• Legal Obligation: Processing required to comply with applicable laws and regulations.

 
Contact Us
If you have any questions, requests, or concerns about this Privacy Policy or how we handle your data, please contact our Privacy Team:
 
AwventXR Inc.
150, 1050 Heathierleigh Avenue, Mississauga, Ontario, Canada
Email: service@awventxr.com
Privacy requests: Use subject line “Privacy Request” or “Data Deletion Request”
 
Thank you for trusting AwventXR with your personal data. We take that trust seriously.