14 days free trial
Hello!
John Smith
  • CRM, Sales Flow, Help Desk
  • Projects, Tasks, Time Tracking
  • Invoices, Docs, Finance
Get Started
14 days free trial, no credit card needed.

Privacy Policy – Manavate

Effective Date: January 2026

Manavate Ltd. (“Manavate”, “we”, “us”, or “our”) is committed to protecting user privacy, safeguarding personal data, and complying with applicable data protection laws, including the Israeli Protection of Privacy Law, 1981, its amendments (including Amendment No. 13), and related regulations.

This Privacy Policy explains how we collect, use, store, secure, and process personal information in connection with the operation of the Manavate ERP / CRM system, website, and mobile application.

1. Scope of This Policy

This Privacy Policy applies to:
• The website: https://www.manavate.com
• The Manavate ERP / CRM system
• The Manavate Mobile application

This policy applies to business customers (B2B), system users, and prospects who have provided their details.

2. Data Controller and Data Processor Roles

Data Ownership
• Manavate’s business customers are the Data Controllers of all personal data and content uploaded, stored, or processed within their Manavate accounts (“Customer Content”).
• Manavate Ltd. acts solely as a Data Processor with respect to Customer Content.

Manavate does not determine the purposes or means of processing Customer Content and does not claim ownership of such data.

Manavate-Owned Databases

Manavate is the Data Controller with respect to its own business data, including:
• Customer and prospect contact details;
• Contractual, operational, and support-related data;
• Administrative and regulatory records.

3. Types of Information Collected

End-Customer Data (Processed on Behalf of Customers)
• Name, phone number, email address, identification number (company ID / national ID);
• Operational financial data (invoices, payments, collection statuses – excluding credit card details);
• Files, documents, and images;
• Leads, projects, tasks, and reports;
• Data transferred via API and integrations initiated by the customer.

Technical Information
• IP address;
• Device type, browser, and operating system;
• Logs, login times, and system activity records.

Prospect Information
• Name, phone number, email address, company name, business field, and notes.

4. Methods of Data Collection

Information is collected through:
• Manual input by customers or on their behalf;
• Integrations and third-party systems activated by customers;
• Website forms for account creation or contact requests;
• Cookies and similar technologies, subject to user consent.

5. Purposes of Processing

Personal data is processed solely for the following purposes:
• Operating and providing CRM / ERP services;
• Customer support and technical assistance;
• Data security, backups, and system maintenance;
• Compliance with legal obligations;
• Operational communications with customers and prospects.

Manavate does not use customer data for marketing, analytics, or commercial purposes.
Marketing communications are limited solely to prospects who voluntarily provided their details.

6. Disclosure to Third Parties

Information may be shared with:
• Infrastructure, hosting, and backup service providers;
• Development and technical support providers;
• Third-party payment and accounting service providers (without sharing credit card details);
• Third-party systems and integrations activated at the customer’s request.

All third parties are subject to confidentiality and data security obligations and may use the data only for the purposes for which it was disclosed.

7. Infrastructure and Data Storage

• Data is stored on physical servers located in Israel, operated by Bezeq International – Shaham Data Center, Petah Tikva.
• Production, development, and testing environments are separated.
• In the future, data may be transferred to servers outside Israel, in accordance with applicable law.

8. Information Security

Manavate implements technical and organizational security measures in accordance with the Israeli Protection of Privacy Regulations (Information Security), 2017, including:
• Encrypted communications (TLS 1.3);
• Firewalls and attack prevention mechanisms;
• Individual employee user accounts (no shared credentials);
• Role-based access controls;
• Daily redundant backups (retained for up to one month);
• Access to customer data for support purposes only, upon request;
• Internal documentation of data types and processing purposes.

Despite reasonable security measures, no system is completely secure, and Manavate cannot guarantee absolute protection against unauthorized access, misuse, or data loss.

9. Security Incidents and Data Breaches

Manavate maintains internal procedures for handling information security incidents.

In the event of a material data breach:
• The incident will be investigated and contained;
• Potential risks to data subjects will be assessed;
• Notifications will be provided to customers and the Israeli Privacy Protection Authority where required by law.

10. Data Retention and Deletion

• Data is retained for as long as the customer remains active in the system.
• Upon termination, data becomes inaccessible to the customer and is retained until a deletion request is submitted.
• There is no automatic deletion policy.
• Upon customer request, data will be deleted from the system and from backups within up to 30 days.

Deletion requests may be sent to: [email protected]

11. Data Subject Rights

In accordance with applicable law, data subjects may exercise the following rights:
• Access to personal data;
• Correction or update;
• Deletion;
• Data portability;
• Withdrawal of consent.

Requests may be submitted via the system or by email to [email protected].
Manavate will make reasonable efforts to respond to verified requests within 30 days, subject to legal requirements.

12. Automations and Integrations

The system enables automations and integrations initiated by customers via API.

In certain cases, Manavate may assist customers with setting up integrations through the customer’s own accounts, at the customer’s request and responsibility.

13. Cookies and Consent Mechanisms

Cookies are used on the website and within the system:
• For security and operational purposes;
• For storing user preferences.

Non-essential cookies are activated only after explicit user consent.
A cookie consent banner is in place.

14. Children’s Privacy

Manavate services are intended for businesses only and are not directed to individuals under the age of 18.

15. Privacy and Information Security Responsibility

Manavate has appointed an internal person responsible for privacy and information security compliance.

Designated person:
Koren Tarshish – CEO, Manavate Ltd.

16. Changes to This Policy

This Privacy Policy may be updated from time to time.
Updates will be published on the website with a revised effective date.

17. Contact Information

For any questions or requests regarding privacy:
📧 [email protected]

Try Manavate for your business

7-day free trial | No credit card needed

Get Started