This Privacy Policy describes our practices regarding the collection, use, and disclosure of personal information when you use our website and services.

Welcome to Konvex. These Terms and Conditions (“Terms”) govern your access to and use of the Konvex Unified API and related services (collectively, the “Services”). By registering for or using any part of the Services, you (“Customer” or “you”) agree to be bound by these Terms. If you do not agree, please do not use our Services.

1. Acceptance of the Terms

1.1 By accessing or using the Services, you confirm that you have read, understood, and agree to these Terms.

1.2 We may update these Terms at any time by posting a revised version on our website. Continued use of the Services after changes are posted constitutes acceptance of those changes.

2. Description of the Services

2.1 Konvex provides a Unified API that enables customers to integrate multiple ERP’s, E-Commerce Platforms, Tax Institutions, and third-party applications through a single secure access point.

2.2 Key features include:

• Token-based authentication and authorization

• Automatic field mapping and data synchronization

• Transaction logging and reconciliation

• Monitoring, diagnostics, and error notifications

• Access to testing environments (“Sandbox”) limited to 60 days for the Starter plan and unlimited access for Pro plans or higher

2.3 Konvex does not store financial records or sensitive end-user data; it only stores authentication tokens and metadata necessary to facilitate integrations.

2.4 Custom Integrations: A “Custom ERP” is defined as any system not included in Konvex’s standard catalog. Development requires technical validation, between 3 and 5 active production customers, and an estimated delivery timeline of 4 to 6 weeks.

3. Account Registration and Security

3.1 Account Creation: Certain features require registration with accurate and up-to-date information.

3.2 Credentials: You are solely responsible for safeguarding your username, password, and API tokens. You agree to notify us immediately of any unauthorized use of your account.

4. Customer Obligations

4.1 Data Compliance: You warrant that any data or credentials you provide comply with all applicable laws and regulations.

4.2 Proper Use: You must not use the Services for illegal, unauthorized, or harmful activities, including overloading our servers, reverse engineering our API, or creating derivative works.

4.3 ERP Credentials: You agree to provide valid credentials and necessary permissions for each ERP or third-party system integrated.

4.4 Responsibilities Regarding Customer Data

4.4.1 Customer Obligation: The Customer is solely responsible for obtaining consent from its own users or clients for the use, storage, monitoring, processing, debugging, and deletion of their data, in accordance with the Customer’s internal policies and applicable laws.

4.4.2 Konvex’s Role: Konvex acts solely as a technical integration provider. It does not access, store, process, or use Customer end-user data except as described in Section 4.4.3.

4.4.3 Data We Retain: Konvex only logs API requests and system logs for operational and security purposes.

5. Subscription Plans and Billing

5.1 Plans: We offer monthly and annual plans that renew automatically.

5.2 Renewal and Cancellation: Plans automatically renew unless the Customer provides notice of non-renewal at least 7 days before the billing date. Annual contracts are subject to early termination penalties as described in Section 20.3.

5.3 Payment Processing: All fees are processed through Stripe and are non-refundable.

5.4 Authorization: By subscribing, you authorize Konvex to charge your selected payment method for all applicable fees and taxes.

5.5 Price Changes: We may adjust pricing with at least 30 days’ notice prior to the next billing cycle.

5.6 Overage Charges: You authorize automatic billing for additional fees incurred by exceeding plan limits, including Additional Customers and MCP overage.

6. Support and Service Levels

6.1 Support Hours: Each plan includes a specified number of monthly support hours via email or Slack.

6.2 SLA: Konvex guarantees an uptime of 99.5% for the Pro plan, 99.9% for the Scale plan, and 99.95% for the Enterprise plan. Plans below the Pro tier do not include any uptime guarantee.

6.3 Sandbox Access: Sandbox access is subject to plan limitations (60 days for Starter; unlimited for higher plans).

6.4 Additional Services: Additional support or professional services may be purchased separately.

6.5 Account Management: Scale and Enterprise plans include a Technical Account Manager (TAM); Enterprise includes direct CTO-level support.

7. Data Analytics and Privacy

7.1 Aggregated Information: We may collect and analyze anonymized connection and usage data to improve our AI-powered mapping algorithms.

7.2 Personal Data: Personal information provided through contact forms (e.g., name, email, company) may be used for marketing and communication but will not be sold or rented without consent.

7.3 Privacy Policy: Our Privacy Policy, available at https://www.getkonvex.com/legal/privacy-policy governs personal data handling and is incorporated by reference.

8. Security and Compliance

8.1 Standards: We implement industry-standard security measures, including encryption in transit and at rest, strict access controls, audit logs, and periodic security reviews.

8.2 Regulatory Compliance: We comply with certain ISO 27001 standards and applicable financial regulations, including Colombia’s Circular No. 004 of 2024.

8.3 Data Location: Data is stored using cloud infrastructure services provided by Amazon RDS and Azure Database for PostgreSQL, with servers located in the United States.

8.4 Internal Procedures: In accordance with our Information Processing Policy (KV-001PTI), we apply secure backup, access control, and data destruction procedures.

9. Data We Collect

9.1 Direct Data: Name, email, company, job title.

9.2 Technical Data: IP address, browser, device, usage patterns.

9.3 Customer & Transaction Data: Related to ERP integrations.

9.4 Google Data via OAuth:

• Email and profile name (email, profile) to authenticate the user on the platform.

• Profile picture (openid) to display the user’s identity within the dashboard.

• Google Calendar events (https://www.googleapis.com/auth/calendar.events.readonly) to synchronize calendars with ERP systems.

• Google Drive files (https://www.googleapis.com/auth/drive.readonly) or reading and synchronizing documents with accounting systems.

• 
  

10. Use of Data

10.1 We use the collected information for:

• Authentication and secure access.

• Provision of integration services.

• Data synchronization and API operation.

• Support and customer service.

• Legal and contractual compliance.

• Improvement of our services.

10.2 Regarding Google data:

• The email address and basic profile are used solely to identify and authenticate the user in Konvex.

• The profile picture is displayed exclusively within the user dashboard.

• Calendar events are used exclusively to integrate and synchronize them with the ERP systems configured by the customer.

• Drive files are used in read-only mode solely to import and consult documents within integrations.

• We never use Google data for advertising or for purposes other than those authorized.

• 
  

11. Sharing of Information with Third Parties

11.1 Konvex may share data with infrastructure providers and authorized subprocessors, in accordance with DPA.

11.2 Third parties are required to comply with security standards equivalent to those applied by Konvex.

11.3 We may share data when required by law or by competent authorities.

11.4 Regarding Google data:

• We do not share Google data with third parties, except with infrastructure providers strictly necessary for the secure operation of the platform (e.g., cloud storage).

• We never sell or transfer Google data to third parties for commercial purposes.

• 
  

12. Data Retention and Deletion

12.1 We retain data only for as long as necessary to fulfill contractual or legal purposes.

12.2 Upon termination of the Services, we permanently delete authentication tokens and credentials, unless there is a legal obligation to retain them.

12.3 We apply secure deletion methods (overwriting, cryptographic erasure, device destruction). Deletion is carried out in accordance with the secure procedures described in Section 8 (Security and Compliance).

12.4 Users may request the deletion of their personal data by writing to support@getkonvex.com.

12.5 Regarding Google Data: Users may revoke access at any time from the Google Security Settings page. Additionally, they may request the immediate deletion of their OAuth-associated data by writing to support@getkonvex.com. Konvex will process these deletion requests within a maximum period of 30 calendar days from receipt.

13. User Rights

Users may:

• Access their personal data.

• Rectify inaccurate information.

• Request deletion or erasure of data.

• Object to the processing of their data.

• Request data portability.

Requests must be sent to support@getkonvex.com and will be handled within the applicable legal timeframes.

14. Compliance with Google API Data Policy

• We only request the minimum permissions necessary.

• Google data is never used for advertising or marketing purposes.

• Google data is not used for training AI/ML models.

• We comply with the Google API Services User Data Policy and the Google

• APIs Terms of Service.

• 
  

15. Intellectual Property and Branding

15.1 Ownership: All software, documentation, trademarks, and logos (“Materials”) are the exclusive property of Konvex.

15.2 License: Subject to these Terms, we grant you a limited, non-exclusive, non-transferable license to use the Materials solely to access and use the Services.

15.3 Marketing Use: By subscribing, you grant Konvex permission to display your name and logo in marketing materials, provided that no confidential information is disclosed.

15.4 Branding Customization (White-label): The Customer’s ability to customize the Konvex interface and services with its own visual identity will depend on the contracted plan:

• Starter and Pro Plans: The Customer may include only its logo in the areas permitted by the platform.

• Scale Plan: Includes full brand customization (Full brand).

• Enterprise Plan: Includes full brand customization and the ability to operate under the Customer’s own domain (Full brand + Custom Domain).

Under no circumstances shall brand customization imply the transfer of intellectual property rights over the software or the API, which shall remain the exclusive property of Konvex.

16. Limitation of Liability

16.1 Disclaimer of Warranties: The Services are provided “as is” and “as available.” We make no warranties of any kind, whether express or implied.

16.2 Indirect Damages: In no event shall Konvex be liable for indirect, incidental, special, consequential, or punitive damages.

16.3 Total Liability: Our total liability for any claim shall not exceed the fees paid by you during the 12 months preceding the event giving rise to the claim.

17. Indemnification

You agree to defend, indemnify, and hold Konvex harmless from any claim, liability, damage, or expense arising from your breach of these Terms or your use of the Services.

18. Prohibited Activities

You may not:

• Use automated systems (robots, spiders, scrapers) to access the API without authorization.

• Impersonate any person or entity or misrepresent your affiliation.

• Circumvent the measures we use to limit or restrict access.

• 
  

19. Links and Third-Party Content

Our website may contain links to third-party sites. We are not responsible for their content or privacy practices and make no representations regarding them.

20. Account Termination

20.1 Termination: You may request the cancellation of your account by writing to support. For the cancellation to be effective before the next monthly billing cycle, the 7-day prior notice requirement must be met. We may suspend or terminate your access for breach of these Terms.

20.2 Data Deletion: Upon cancellation or termination, we will permanently delete your authentication tokens, credentials, and integration data, in accordance with Section 12. You are responsible for maintaining your own backups.

20.3 Early Termination Penalties: Given the investment in technical resources and the benefit of the annual rate or Custom ERP development, if you decide to terminate an annual contract before completing the twelve (12) month term, you agree to pay a penalty calculated based on the remaining monthly payments required to complete the year, according to the following periods:

• Cancellation between month 1 and month 6: Payment shall be 50% of the total value of the remaining monthly payments required to complete the 12-month contract.

• Cancellation between month 7 and month 12: Payment shall be 25% of the total value of the remaining monthly payments required to complete the 12-month contract.

• 
  

21. Governing Law and Dispute Resolution

These Terms are governed by the laws of the Republic of Colombia. Any dispute arising under these Terms shall be resolved exclusively in the courts of Bogotá D.C.

Contact

For questions or support, please write to gestion@getkonvex.com or visit www.getkonvex.com.