Last updated: June 2026
At Usermaven, privacy and data protection are important parts of how we build and operate our analytics platform. We are committed to helping our customers use Usermaven in a way that supports their obligations under the California Consumer Privacy Act, commonly known as the CCPA, as amended by the California Privacy Rights Act, or CPRA.
This page explains how Usermaven approaches CCPA-related responsibilities and how we support customers with privacy-related requests when they use our analytics platform.
This page is for general information only. It does not replace Usermaven's Privacy Policy, Terms of Service, Data Processing Agreement, or any other written agreement between Usermaven and its customers.
The California Consumer Privacy Act is a California privacy law that gives California residents certain rights over how covered businesses collect, use, disclose, sell, or share their personal information.
Depending on the situation, these rights may include:
Personal information under the CCPA generally means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked with a California resident or household. This may include names, email addresses, online identifiers, IP addresses, device identifiers, browsing activity, product usage data, geolocation data, account information, and similar data.
Usermaven is built to help marketing teams, agencies, product teams, SaaS companies, and brands understand website activity, product usage, funnels, user journeys, attribution, and customer behavior.
As an analytics provider, we understand that customer data must be handled carefully. Our privacy approach focuses on secure processing, clear responsibilities, customer control, and practical support for privacy rights requests.
Our CCPA approach focuses on:
When customers use Usermaven to collect and analyze data from their websites, products, users, visitors, leads, accounts, or customers, Usermaven generally acts as a service provider or contractor under the CCPA. In this role, Usermaven processes customer data on behalf of the customer and according to the customer's instructions, as set out in the applicable agreement.
In these cases, the customer is generally responsible for deciding what personal information is collected, why it is collected, how it is used, what notices are provided, how long the information is retained, and how consumer privacy requests are handled.
Usermaven may act as a business for personal information we collect and process for our own operations. This may include account management, billing, customer support, website activity, marketing communications, security, fraud prevention, and service improvement.
When Usermaven acts as a service provider or contractor for a customer, Usermaven processes customer data to provide, maintain, support, secure, and improve the Usermaven service in accordance with the customer's instructions and applicable contractual terms.
Usermaven does not sell or share customer analytics data.
The CCPA's definitions of "sale" and "sharing" are specific legal definitions. Customers are responsible for determining whether their own use of Usermaven, together with their websites, products, integrations, advertising platforms, consent tools, and other business processes, creates any obligation to provide CCPA notices, a "Do not sell or share my personal information" link, Global Privacy Control handling, or other opt-out mechanisms.
Usermaven's own collection and use of personal information for its website, marketing, account, support, and business operations is described in Usermaven's Privacy Policy.
Usermaven provides options to help customers manage their data, including data deletion and export support.
Customers can request help with exporting or deleting customer data by contacting:
support@usermaven.com
privacy@usermaven.com
When Usermaven acts as a service provider or contractor, deletion and export requests are handled based on the customer's instructions, unless applicable law requires otherwise.
If you are a California resident and your personal information was collected through a website, product, or service that uses Usermaven, please contact the owner or operator of that website, product, or service directly. They are usually the business responsible for receiving, verifying, and responding to your CCPA request.
The CCPA gives California residents certain privacy rights, but the business that controls how personal information is collected and used is generally responsible for receiving, verifying, and responding to consumer requests.
When Usermaven acts as a service provider or contractor for a customer, we do not directly control how that customer uses personal information collected through Usermaven. However, we will provide reasonable assistance to our customers in responding to valid CCPA requests, as required by applicable law and our contractual commitments.
If Usermaven receives a request from an individual relating to customer-controlled data, we may direct that individual to contact the relevant customer directly.
The CCPA applies to certain for-profit businesses that do business in California, collect personal information from California residents, determine the purposes and means of processing that personal information, and meet one or more legal thresholds.
As of January 1, 2025, the CCPA may apply to a business that meets one or more of the following criteria:
The CCPA may also apply to certain entities that control or are controlled by a covered business, share common branding with that business, and meet other requirements under the CCPA.
Non-profit organizations and government agencies are generally not subject to the CCPA, although there may be exceptions or related obligations depending on the situation.
Customers should review their own obligations under the CCPA with their legal or privacy advisors.
The CCPA includes special rules for sensitive personal information. Sensitive personal information may include certain government identifiers, account credentials, financial information, precise geolocation, racial or ethnic origin, religious or philosophical beliefs, union membership, contents of certain private communications, genetic data, biometric information used to identify a person, health information, sex life, or sexual orientation.
Usermaven is designed for analytics, attribution, customer journey analysis, and product usage insights. Customers should avoid sending sensitive personal information to Usermaven unless it is necessary, lawful, properly disclosed, and allowed under their agreement with Usermaven.
Customers are responsible for configuring their websites, products, forms, events, properties, integrations, consent settings, and tracking setup in a way that supports their own privacy obligations.
Usermaven uses technical and organizational measures designed to protect customer data against unauthorized access, loss, misuse, alteration, and disclosure.
These measures may include access controls, secure infrastructure practices, encryption where appropriate, monitoring, internal policies, vendor review, and controls designed to support the confidentiality, integrity, availability, and resilience of our systems.
No system can be guaranteed to be completely secure. However, we continue to review and improve our security practices as our platform and privacy requirements evolve.
Usermaven may use selected vendors, service providers, contractors, and subcontractors to help provide, secure, support, maintain, and improve our services. These may include providers for hosting, infrastructure, communications, customer support, billing, analytics, security, and operational workflows.
Before working with providers that may process customer data, Usermaven reviews relevant privacy and security practices and uses contractual safeguards designed to protect customer data.
Where Usermaven acts as a service provider or contractor, we use providers to help deliver the service in accordance with applicable law and contractual terms. Provider terms, restrictions, and related commitments are handled as set out in the relevant agreement or documentation.
Usermaven retains personal information for as long as reasonably necessary for the purposes described in our agreements, privacy notices, product settings, and internal policies, unless a longer retention period is required or permitted by law.
When Usermaven acts as a service provider or contractor, customer data retention may depend on the customer's account settings, subscription plan, product configuration, instructions, and applicable contractual terms.
Customers can request assistance with data deletion by contacting support@usermaven.com or privacy@usermaven.com.
Usermaven does not discriminate against individuals for exercising privacy rights under the CCPA.
This means we do not deny services, charge a different price, or provide a different level or quality of service solely because an individual has exercised rights available under the CCPA, unless permitted by applicable law.
Usermaven is built to help teams understand customer behavior, marketing performance, product usage, and attribution in a clear and responsible way.
We believe analytics should be useful, accurate, and privacy-aware. Our goal is to help customers make better decisions from their data while supporting modern privacy expectations.
If you have questions about CCPA, privacy, security, data deletion, data export, or Usermaven's data processing practices, please contact us at: privacy@usermaven.com
For product support or account-related help, you can also contact: support@usermaven.com