← Back to BidBuster

Privacy Policy

Effective date: July 4, 2026  ·  Last updated: July 4, 2026

1. Introduction

This Privacy Policy explains how MH Technologies LLC (“BidBuster,” “we,” “us”) collects, uses, shares, and protects personal information when you visit bidbuster.us, join our waitlist, or use our Service. It also describes your privacy rights. By using the Service you agree to this Policy.

2. Information We Collect

Information you provide to us

  • Account and contact information: such as your name, email address, company name, job title, and password when you register or join the waitlist.
  • Billing information: when you subscribe, our payment processor collects your payment-card or billing details. We do not store full card numbers; we receive limited information such as the last four digits and billing status.
  • Customer Content: the documents and data you upload or generate, including RFP and tender documents and your proposal materials. These may contain personal information about you or others (for example, names of personnel in a proposal).
  • Communications: information you provide when you contact support, respond to surveys, or otherwise communicate with us.

Information we collect automatically

  • Usage data: how you interact with the Service, features used, pages viewed, and actions taken.
  • Device and log data: IP address, browser type, device identifiers, operating system, and access times.
  • Cookies and similar technologies: see the Cookies section below.

Information from third parties

  • We may receive information from our payment processor, analytics providers, and (if you sign in through a third party) authentication providers.

3. How We Use Your Information

We use personal information to:

  • provide, operate, maintain, and secure the Service, including running the AI features on your Customer Content;
  • create and manage your account and process Subscriptions, billing, and renewals;
  • respond to your requests and provide customer support;
  • monitor, analyze, and improve the Service, and develop new features;
  • detect, prevent, and address fraud, abuse, security, and technical issues;
  • send you service, administrative, and (with your consent where required) marketing communications, which you can opt out of; and
  • comply with legal obligations and enforce our Terms.

4. AI Processing of Your Content

To provide features such as drafting responses, summarizing solicitations, and building compliance matrices, your Customer Content is processed by our systems and by trusted third-party AI providers acting as our subprocessors. These providers process your content only to perform the requested task on our behalf and under confidentiality obligations.

We do not use your Customer Content to train or improve generative AI models, and we require our AI subprocessors not to use your content to train their models. Your Customer Content is used only to provide the Service to you.

5. Legal Bases for Processing (EEA/UK users)

If you are in the European Economic Area or the United Kingdom, we rely on the following legal bases: performance of our contract with you (to provide the Service); our legitimate interests (to secure and improve the Service and prevent fraud); your consent (for certain marketing and cookies); and compliance with legal obligations.

6. How We Share Information

We do not sell your personal information. We share it only as follows:

  • Service providers / subprocessors: hosting and cloud infrastructure, AI model providers, payment processing, analytics, and email delivery, who process data on our behalf under contract.
  • Legal and safety: when required by law, subpoena, or government request, or to protect the rights, safety, and property of BidBuster, our users, or others.
  • Business transfers: in connection with a merger, acquisition, financing, or sale of assets, subject to this Policy.
  • With your direction: when you choose to share or export content.

Our subprocessors. We currently rely on the following categories of subprocessors: cloud hosting infrastructure; third-party AI model providers (to power the Service’s automated features); Stripe, Inc. (payment processing); and Google Analytics (usage analytics). We may update this list as our Service evolves and will reflect changes in this Policy.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to keep you signed in, remember preferences, and understand how the Service is used. We use essential cookies (required to operate the Service) and analytics cookies (Google Analytics 4 (GA4)). You can control non-essential cookies through your browser settings or any cookie banner we provide. Where required by law, we obtain your consent before setting non-essential cookies.

8. Data Retention

We keep personal information for as long as your account is active or as needed to provide the Service, and thereafter as required to comply with legal obligations, resolve disputes, and enforce our agreements. You can delete Customer Content or request account deletion; we will delete or de-identify your data within a reasonable period, except for copies retained for legal or backup purposes.

Specifically, unless a longer period is required by law, we delete or de-identify Customer Content within 30 days after you close your account, and remove it from routine backups within 90 days.

9. Data Security

We use technical and organizational measures designed to protect personal information, including encryption in transit and at rest, access controls, and monitoring. No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security. You are responsible for keeping your account credentials confidential.

10. Your Privacy Rights

California residents (CCPA/CPRA)

You have the right to know what personal information we collect and how we use and share it; to request deletion or correction of your personal information; and to be free from discrimination for exercising these rights. We do not sell or “share” (for cross-context behavioral advertising) your personal information. To exercise these rights, contact us using the details below.

EEA / UK residents (GDPR)

You have the right to access, correct, delete, restrict, or object to processing of your personal information; to data portability; and to withdraw consent at any time. You also have the right to lodge a complaint with your local data-protection authority.

Residents of other regions may have similar rights under local law. We will respond to verified requests as required by applicable law.

11. International Data Transfers

We are based in the United States, and your information may be processed in the United States and other countries where we or our subprocessors operate. Where we transfer personal information from the EEA, UK, or Switzerland, we rely on appropriate safeguards such as Standard Contractual Clauses.

12. Children’s Privacy

The Service is intended for business use by adults and is not directed to children. We do not knowingly collect personal information from anyone under 18. If you believe a child has provided us information, contact us and we will delete it.

13. Third-Party Links

The Service may link to third-party websites and services that we do not control. This Policy does not apply to those third parties, and we encourage you to review their privacy policies.

14. Changes to this Policy

We may update this Privacy Policy from time to time. We will post the updated version with a new effective date and, for material changes, provide additional notice where required. Your continued use of the Service after changes take effect constitutes acceptance.

15. Contact Us

For privacy questions or to exercise your rights, contact us at info@mhtechnologies.us, or MH Technologies LLC, 30 N Gould St, Ste N, Sheridan, WY 82801, USA. MH Technologies LLC is the data controller responsible for your personal information.