Privacy Policy
Effective Date: July 5, 2026 · Last Updated: July 5, 2026
Jump to section
Who We Are
MJR Collective AI ("we," "us," or "our") is a technology company based in Virginia, United States. We provide a modular AI growth system for local businesses:
- Website hosting, CRM dashboard, and lead tracking (The Hub)
- A 24/7 AI voice receptionist that answers calls and books appointments
- Meta (Facebook & Instagram) advertising management
- SEO & Google Business Profile management
- Outbound outreach campaigns
- A free website & visibility audit for prospective clients
We also continue to support a small number of existing clients with legacy legal-industry tools (see Section 12). Our platform is available at mjrcollectiveai.com. Questions or concerns? Email us at support@mjrcollectiveai.com.
What We Collect & What We Don't
We collect only what is necessary to provide and improve our services. Here is a clear breakdown:
What We Collect
- Your name, business name, city, email address, and phone number (for example, when you request a free audit or book a call)
- Your website address and public business listings, which we review as part of the free audit
- Call recordings and transcripts from the AI receptionist, when your business uses that module
- Lead details captured on those calls: caller name, phone number, reason for calling, and appointment preferences
- Login credentials (email + hashed password — never plain text)
- Payment method details (processed entirely by Stripe — we never see your card number)
- Usage analytics: pages visited, features used, and aggregate performance data
- Basic security logs (login IP address and timestamp)
What We Do NOT Collect
- Social Security Numbers or government IDs
- Bank account numbers or financial credentials
- GPS or precise device location
- Biometric data
- Your contact lists or social media logins
- Data belonging to children under 18
- Any data sold to third parties or data brokers
Personal information you provide must be true, complete, and accurate. Please notify us of any changes.
Third-Party Processors We Use
We partner with the following trusted service providers. Each receives only the minimum data necessary to perform its function.
How We Use Your Data
We use collected information solely for the following purposes:
We do not use your data to train AI models, sell to advertisers, or share with any party not listed in this policy.
Data Retention
We retain data for as long as your account is active or as needed to provide services:
Audit requests & leads — Retained while we work with you, and deleted on request.
Lead & appointment records — Retained for the life of your business's account. You may delete individual records at any time from the dashboard.
Call recordings & transcripts — Summaries are stored in our database. Raw audio and full transcripts are governed by ElevenLabs' retention policy (configurable in the voice platform settings).
Account & billing data — Retained until account deletion is requested, plus any legally required retention period (e.g., tax records: 7 years).
Security logs — Failed login attempts and IP logs are retained for 90 days for fraud prevention.
To request deletion of your data, email support@mjrcollectiveai.com with the subject line "Data Deletion Request."
Security Measures
We have implemented multiple layers of technical and organizational security controls:
While we implement industry-standard security practices, no system is 100% secure. If you discover a potential security vulnerability, please report it responsibly to support@mjrcollectiveai.com.
Your Privacy Rights
Depending on where you are located, you may have the following rights regarding your personal information:
How to exercise your rights: Email support@mjrcollectiveai.com with the subject line "Privacy Request." We will acknowledge your request within 5 business days and respond within 30 calendar days.
Virginia residents (VCDPA): As a Virginia-based company, we comply with the Virginia Consumer Data Protection Act. You have the right to access, correct, delete, and obtain a copy of your personal data, and to appeal a decision we make about your request. Contact us to exercise these rights.
EEA, UK & Swiss residents (GDPR): If you are located in the European Economic Area, United Kingdom, or Switzerland, you have the rights above under the GDPR, plus the right to lodge a complaint with your local data protection authority. Our legal bases for processing are contract performance, legitimate interest, and consent.
Children's Privacy
Our platform is designed for professional use by businesses and is not directed to anyone under 18 years of age. We do not knowingly collect, solicit, or market to children under 18.
If we learn that we have inadvertently collected personal information from a child under 18, we will promptly delete that information and deactivate any associated account. If you believe we may have collected data from a minor, please contact us immediately at support@mjrcollectiveai.com.
Data Breach Notification
If we confirm a data breach that affects your personal information, we will notify affected users by email within 72 hours of confirming the breach. The notice will describe what happened, what data was involved, what we are doing about it, and what you can do to protect yourself.
Where required, we will also notify the appropriate regulators and authorities within the timelines set by applicable law.
Legacy Legal-Industry Services
We continue to deliver a small set of legacy tools to existing clients in the legal industry: AI intake, demand letter drafting, and AI medical record summaries.
Medical record summaries are processed only at the client's direction, for the client's own files, using text the client submits. MJR Collective AI is a general-purpose technology provider — we are not a healthcare provider, health plan, or healthcare clearinghouse, and the AI summarizer is not a HIPAA-covered service. We do not offer or sign Business Associate Agreements (BAAs). Clients are solely responsible for confirming that their use of these tools complies with their own legal, professional, and regulatory obligations before submitting any document.
We do not store original medical record documents — only the AI-generated summaries a client chooses to save to their account.
International Data Transfers
MJR Collective AI is based in Virginia, USA. Our primary database is hosted on infrastructure in the United States. If you access our services from outside the United States, your data will be transferred to and processed in the United States.
If you are located in the EEA, United Kingdom, or Switzerland, please note that the United States may not have data protection laws equivalent to those in your country. We take all reasonable measures to protect your personal information in accordance with this Privacy Policy and applicable law.
By using our services, you consent to the transfer of your information to the United States under the terms described in this policy.
Updates to This Policy
We may update this Privacy Policy periodically to reflect changes in our services, legal requirements, or best practices. The "Last Updated" date at the top of this page will always reflect the most recent revision.
For material changes — changes that significantly affect your rights or how we use your data — we will notify active users by email at least 14 days before the change takes effect. Continued use of our services after that date constitutes your acceptance of the revised policy.
We encourage you to review this policy periodically to stay informed.
Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
MJR Collective AI
📧 Email: support@mjrcollectiveai.com
📞 Phone: (571) 356-3125
🌐 Website: mjrcollectiveai.com
📍 State of Incorporation: Virginia, United States
For privacy-specific requests, use the subject line "Privacy Request" in your email. We respond within 30 days.