Bonafide
Legal

Privacy Policy

Last updated: May 14, 2026 · Effective date: May 14, 2026

This Privacy Policy ("Policy") explains how Skyeglobal.ai, Inc., a Delaware corporation doing business as Bonafide ("Bonafide," "Skyeglobal," "we," "us," or "our"), collects, uses, discloses, and protects information when you visit bonafide.ai and related subdomains (the "Site") or interact with our products and services (collectively, the "Services"). By using the Site or Services, you agree to this Policy.

In this Policy, "Bonafide" refers to Skyeglobal.ai, Inc., a Delaware corporation operating under the Bonafide brand.

This Policy is not legal advice. Specific legal questions about your rights should be directed to qualified counsel.

1. Information we collect

We collect information in three ways:

Information you provide

  • Contact and account data:name, business email, company, role, phone number when you request a demo, contact us, subscribe to updates, or apply for a position.
  • Communications:the contents of messages, meeting notes, and documents you send us.
  • Customer data:if you are a Bonafide customer, the brand and product data you authorize us to ingest, verify, and distribute on your behalf under your Master Services Agreement.

Information collected automatically

  • Log data:IP address, approximate location, browser type and version, operating system, referring URL, pages visited, dates and times of access.
  • Device identifiers:cookie IDs, session identifiers, and similar device- or browser-level identifiers.
  • Usage data:interactions with the Site such as pages viewed, links clicked, scroll depth, and time on page.

Information from third parties

  • Business information providers:publicly available firmographic data about your employer used to qualify inbound inquiries.
  • Partners and referrals:information shared by partners, advisors, or customers who refer you to us.

2. How we use information

We use the information above to:

  • Provide, operate, and improve the Site and Services.
  • Respond to inquiries, schedule demos, and provide customer support.
  • Send service communications, security alerts, and (with consent where required) marketing communications.
  • Perform analytics, including measuring Site usage and the effectiveness of our content.
  • Prevent fraud, abuse, and security incidents, and to enforce our Terms of Service.
  • Comply with legal obligations and respond to lawful requests from public authorities.

3. Legal bases for processing (EEA, UK, Switzerland)

If you are located in the European Economic Area, United Kingdom, or Switzerland, we process personal data on one or more of the following legal bases under the General Data Protection Regulation (GDPR) and UK GDPR:

  • Contract:to take steps at your request before entering into a contract, and to perform a contract with you.
  • Legitimate interests:operating and securing the Site, understanding usage, and promoting our Services, balanced against your rights and freedoms.
  • Consent:for non-essential cookies, marketing communications, and any processing where consent is required.
  • Legal obligation:to comply with applicable law.

You may withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

4. Cookies and similar technologies

We and our service providers use cookies, web beacons, local storage, and similar technologies to recognize your browser, remember preferences, measure Site usage, and (if you consent) deliver relevant advertising.

We categorize these technologies as follows:

  • Strictly necessary:required for the Site to function (e.g., security, load balancing, consent state).
  • Performance and analytics:help us understand how visitors use the Site.
  • Functional:remember choices such as language.
  • Marketing:measure campaign effectiveness and, where permitted, personalize content.

You can accept, reject, or manage non-essential cookies via the consent banner shown on your first visit, and at any time by clicking . Most browsers also let you block or delete cookies through their settings. For more on cookies generally, see allaboutcookies.org.

We honor the Global Privacy Control (GPC) signal where required by law. When detected, we treat it as a valid opt-out of sale or sharing of personal information for California residents and as a request to decline optional cookies in other jurisdictions.

5. How we share information

We do not sell personal information for monetary consideration. We may share information with:

  • Service providers under written contracts limiting their use of the data to providing services to us (e.g., hosting, email delivery, analytics, customer support).
  • Professional advisors:lawyers, auditors, and insurers.
  • Corporate transactions:in connection with a merger, acquisition, financing, or sale of assets, subject to confidentiality obligations.
  • Legal and safety:to comply with law, lawful requests, or to protect the rights, property, or safety of Bonafide, our users, or others.
  • With your direction or consent.

Where sharing for cross-context behavioral advertising (as defined under California law) occurs, we disclose that sharing and honor opt-out rights as described in Section 7.

6. International data transfers

We are headquartered in the United States. Personal data we collect may be processed in the United States and other jurisdictions whose data protection laws may differ from those in your country. Where required, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses, the UK International Data Transfer Addendum, and supplementary measures as applicable.

7. Your California privacy rights (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (together, "CCPA"), gives you the following rights:

  • Right to know:the categories and specific pieces of personal information we have collected, the sources, the business or commercial purpose, and the categories of third parties with whom it is shared.
  • Right to delete:personal information we collected from you, subject to exceptions.
  • Right to correct:inaccurate personal information we maintain about you.
  • Right to opt out:of the sale or sharing of personal information. We do not sell personal information for money. To the extent "sharing" under the CCPA (cross-context behavioral advertising) applies to our cookies, you may opt out via the cookie banner or by enabling GPC.
  • Right to limit use of sensitive personal information:we do not use sensitive personal information for inferring characteristics, but you may still submit a request.
  • Right to non-discrimination:we will not deny you service, charge a different price, or provide a different level of quality because you exercised your rights.

To exercise any of these rights, email privacy@bonafide.ai with the subject line "California Privacy Request" and include enough information for us to verify your identity (we may ask for two or three matching data points). You may also designate an authorized agent to submit a request on your behalf with written authorization we can verify.

Categories collected in the preceding 12 months: identifiers (name, email, IP), commercial information (inquiry and meeting history), internet or network activity (Site usage), geolocation (approximate, from IP), professional information (company, role), and inferences drawn from the foregoing.

Do Not Sell or Share My Personal Information / Limit the Use of My Sensitive Personal Information: we do not sell personal information for monetary consideration. To opt out of any "sharing" for cross-context behavioral advertising, use the Cookie preferences link in our footer or enable the Global Privacy Control signal in your browser.

8. Your rights under GDPR and UK GDPR

If you are in the EEA, UK, or Switzerland, you have the rights to:

  • Access personal data we hold about you and request a copy.
  • Rectification of inaccurate or incomplete data.
  • Erasure ("right to be forgotten"), subject to exceptions.
  • Restriction of processing in certain circumstances.
  • Data portability of data you provided to us in a structured, commonly used, machine-readable format.
  • Object to processing based on legitimate interests or for direct marketing.
  • Withdraw consent at any time where processing is based on consent.
  • Lodge a complaint with your local supervisory authority (list of EU authorities; UK residents may contact the ICO).

To exercise these rights, email privacy@bonafide.ai.

9. Other US state privacy rights

Residents of states with comprehensive privacy laws (including Colorado, Connecticut, Delaware, Indiana, Iowa, Maryland, Minnesota, Montana, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah, and Virginia) have rights that may include access, correction, deletion, portability, and opt-out of targeted advertising, sale, or profiling. To exercise these rights, email privacy@bonafide.ai. You may appeal a denial of your request by replying to our response with the subject line "Appeal."

10. Data retention

We retain personal data only for as long as necessary for the purposes described in this Policy, including to satisfy legal, accounting, or reporting requirements. Retention periods vary by data type; inquiry records are generally retained for up to 36 months, and contract records for the duration of the contract plus the applicable statute of limitations.

11. Security

We maintain administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, alteration, disclosure, or destruction. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

12. Children's privacy

The Services are intended for business users and are not directed to children under 16. We do not knowingly collect personal information from children under 16. If you believe we have collected such information, contact us and we will delete it.

13. Do Not Track

Our Site does not respond to Do Not Track (DNT) browser signals because no common standard has been adopted. We do honor the Global Privacy Control signal as described above.

14. Third-party links

The Site contains links to third-party sites not operated by Bonafide. This Policy does not apply to those sites. Review their privacy policies before providing any personal information.

15. Changes to this Policy

We may update this Policy from time to time. Material changes will be posted on this page with a new "Last updated" date and, where required, notified to you directly.

16. Contact us

Data controller: Skyeglobal.ai, Inc. (d/b/a Bonafide), a Delaware corporation
Privacy requests: privacy@bonafide.ai
General inquiries: hello@bonafide.ai

If you require a mailing address to exercise a privacy right, email privacy@bonafide.ai and we will provide one.

EU and UK representatives can be appointed upon reasonable request for Article 27 GDPR / UK GDPR purposes.