Apono Privacy Policy
Last Updated April 18, 2026
Who we are
This Privacy Policy sets forth how Apono Tech Ltd. (“we” or “Apono”) collects and uses
information about individuals (“you”) who interact with us in any capacity, including visitors to
our website, prospective customers and business leads (e.g. individuals whose contact
details we collect at events, conferences, or through marketing activities), as well as users of
our platform (the “Services”). This policy covers all such interactions unless a separate,
more specific notice applies.
Respect for the privacy of your personal information is important to us. Through your use of
our Services or website, or through other interactions with us (such as by email or at events),
Apono will collect certain information, some of which can be used to personally identify you
(“Personal Information”).
If you are entering the Services through a subscription of your organization (“Customer”),
Apono processes Customer Personal Information (i.e., concerning Customer and its
personnel) in our capacity as a “data processor” (as such term is defined under the GDPR)
or similar term under applicable data protection laws, in accordance with the Data
Processing Agreement or similar agreement entered between Apono and Customer. If you
have any questions or requests regarding personal data collected in accordance therewith,
please contact your organization directly.
2. What information do we collect?
When you use the Service, Personal Information about you will be collected as follows:
Account Information
When you sign-up and register to the Services, you will be asked to provide us certain details about yourself. You may register to the Services directly through the portal or via single sign on (SSO) from the Customer system (if applicable).
- Registering through the portal: We may collect your full name, email address, as well as any other information you agreed to share with us.
- Registering through third-party services: We may have access to basic information from your account, such as email address, IP address, name and company name. At all times, we will abide by the terms, conditions and restrictions of the third-party platform.
Voluntary Information
We may collect information which you provide us voluntarily, including when you respond to communications from us, communicate with us via email, or share additional information through your use of the Services. We may also collect feedback, suggestions, complaints, bugs and reports you send to us.
Device & Technical Information
We may collect Personal Information from your device, including geolocation data, IP address, unique identifiers, and other information relating to your activity through the Services. If we combine Personal Information with non-personal information, the combined information will be treated as Personal Information as long as it remains combined.
3. What are your legal grounds for collecting my personal information?
We process your Personal Information only where we have a lawful basis to do so under
applicable law, including the GDPR. The legal bases we rely on are:
- With your consent: We ask for your agreement to process your information for the specific purposes stated in this Privacy Policy and you have the right to withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
- Performing an agreement with you: We collect and process your Personal Information in order to provide you with the Services, following your acceptance of this Privacy Policy and pursuant to the Apono Terms of Use.
- Legitimate interests: We process your information for our legitimate interests while applying appropriate safeguards that protect your privacy. This means that we process your information for purposes like detecting, preventing or otherwise addressing fraud, abuse, security, usability, functionality or technical issues with our Service; protecting against harm to the rights, property or safety of our properties, our users or the public as required or permitted by law; enforcing legal claims, including investigation of potential violations of this Privacy Policy; and in order to comply and/or fulfill our obligations under applicable laws, legal process, subpoena or governmental request.
- Legal obligation: We may process your Personal Information where necessary for compliance with a legal obligation to which we are subject, including responding to lawful requests from courts or regulatory authorities.
4. How do we use your personal information?
Apono may use the Personal Information collected through the Service only for the purposes
for which it was collected and compatible purposes, including:
- To set up your account and to provide the Services;
- To identify and authenticate your access to the Services;
- To send you relevant notifications, which are based on different activities offered by the Services;
- To communicate with you and to keep you informed of our latest updates;
- To perform research or conduct analytics in order to improve and customize the Services to your needs and interests;
- To support and troubleshoot the Services and to respond to your queries;
- To investigate and resolve disputes in connection with your use of the Services;
- To detect and prevent fraudulent and illegal activity or any other type of activity that may jeopardize or negatively affect the integrity of the Services; and
- To investigate violations and enforce our policies, and as required by law, regulation or other governmental authority, or to comply with a subpoena or similar legal process or respond to a government request, or to comply with our contractual obligations.
5. Who de we share your personal information with and why?
We may share information with third parties (or otherwise allow them access to it) only in the following manners and instances:
- Internally: We may share information with our affiliates, as well as our employees, for the purposes described in this Privacy Policy. Should Apono or any of its affiliates undergo any change in control, including by means of merger, acquisition or purchase of substantially all of its assets, your information may be shared with the parties involved in such event under strict security conditions. If we believe that such change in control might materially affect your Personal Information, we will notify you through prominent notice on our Services.
- Protecting Our Rights and Safety: We may share your information to enforce this Privacy Policy and/or the Apono Terms of Use, including investigation of potential violations thereof; to detect, prevent, or otherwise address fraud, security or technical issues; or if we believe in good faith that this will help protect the rights, property or personal safety of our users or the general public.
- Third Parties & Business Partners: We may share your Personal Information with selected service providers whose services are required to facilitate achievement of the purposes of processing set forth above, including third-party artificial intelligence model providers. These third parties serve as our sub-processors and may only process your information according to our instructions. We ensure that any sub-processors are bound by data processing agreements that comply with applicable data protection laws.
- Law Enforcement: We may cooperate with government and law enforcement officials to enforce and comply with the law. We may disclose information to government or law enforcement officials as we believe necessary or appropriate to respond to claims and legal process, to protect our or a third party’s property and legal rights, or to prevent any activity we consider illegal or unethical.
We will NOT sell your Personal Information to third parties in exchange for money. We may share anonymized or de-identified information with any third party at our sole discretion.
Where we transfer Personal Information to third parties outside the European Economic Area (EEA), we ensure appropriate safeguards are in place in accordance with applicable data protection law (see Section 8 on International Transfers).
6. Cookies and related technologies
Cookies are small data files that are placed on users’ devices to monitor how users interact with websites and other online services. Cookies can be used to identify your IP address, browser type, domain name, and specific web pages through which you click.
When you first visit our Service, you will be presented with a cookie banner that lets you review, accept, reject, or customize your cookie preferences. The banner’s default settings reflect the privacy laws applicable to your location: in jurisdictions that require prior consent for non-essential cookies, those cookies will not be set until you opt in; in other jurisdictions, you may opt out through the banner. Strictly necessary cookies are always active. You can revisit and update your preferences at any time by clicking the “Cookie Preferences” link in the footer of our website.
We use a consent management platform (Ketch) to record your preferences and to ensure that cookies and similar technologies are only loaded in accordance with the choices you make.
Apono and our service providers may use cookies because they:
- are essential for us to provide our Service to you;
- help us optimize, personalize and/or otherwise improve your experience and/or the performance of the Service and our service and marketing-related communications with you; and
- enable advertising delivered to you to be more relevant.
Categories of cookies we use
The table below lists the cookies and similar technologies used on our Service, the purpose they serve, and how long they remain on your device. This list is maintained through our consent management platform and is updated as our Service evolves.
| Cookie name | Category | Provider | Duration | Description |
| _leadgenie_session | Analytics | Apollo | 400 days | This cookie is used to maintain a user session and support sales and marketing tracking activities. |
| __cf_bm | Essential Services | Cloudflare | 400 days | A functional cookie set by Cloudflare to support its Bot Management and Bot Fight Mode services. It identifies and filters automated traffic (bots) to protect websites, typically lasting for 30 minutes. It does not store personal data and is essential for site security. |
| _cfuvid | Essential Services | Cloudflare | 400 days | A Cloudflare-set session cookie used for rate limiting and security, distinguishing individual users who share the same IP address. It helps distinguish legitimate users from bot traffic, allowing rate limiting rules to apply to specific visitors rather than an entire IP |
| _gcl_au | Targeted Advertising | Google Ads | 89 days | A first-party cookie used by Google Tag Manager to store and track conversion data across websites for Google Ads and Analytics. |
| IDE | Targeted Advertising | Google Ads | 400 days | The IDE cookie is a major third-party cookie used by Google’s advertising platforms (primarily DoubleClick) to track user behavior across non-Google websites for marketing and advertising purposes. |
| test_cookie | Targeted Advertising | Google Ads | 400 days | The test_cookie is a short-lived, functional cookie set by Doubleclick.net (a Google subsidiary) to verify if a user’s browser supports cookies. It does not store personal information, typically expires in a few seconds or minutes, and is essential for functionality in Google Ads, AdSense, and Display & Video. |
| _ga | Analytics | Google Analytics | 400 days | Used by Google Analytics to distinguish users. |
| _ga_* | Analytics | Google Analytics | 400 days | Used by Google Analytics to ensure that all interactions within a single visit (session) are correctly grouped together. |
| ar_debug | Targeted Advertising | Google Privacy Sandbox | 30 days | A technical identifier used by Google Ad Services (specifically DoubleClick) to debug and troubleshoot ad conversions. |
| __hssc | Analytics | HubSpot | Less than a day | This cookie keeps track of sessions. This is used to determine if HubSpot should increment the session number and timestamps in the __hstc cookie. |
| __hssrc | Analytics | HubSpot | 400 days | This cookie name is associated with websites built on the HubSpot platform. Whenever HubSpot changes the session cookie, this cookie is also set to determine if the visitor has restarted their browser. If this cookie does not exist when HubSpot manages cookies, it is considered a new session. |
| __hstc | Analytics | HubSpot | 179 days | The __hstc cookie is HubSpot’s primary tracking cookie, used to identify visitors, track session data, and analyze visitor behavior across a website |
| hubspotutk | Analytics | HubSpot | 179 days | This cookie name is associated with websites built on the HubSpot platform. This cookie is used to keep track of a visitor’s identity. This cookie is passed to HubSpot on form submission and used when deduplicating contacts. |
| cookietest | Essential Services | Ketch | 400 days | This cookie is used to determine whether a user has accepted or rejected the cookie consent banner. |
| AnalyticsSyncHistory | Analytics | 30 days | Used by LinkedIn to store information about the time a sync with the lms_analytics cookie took place. | |
| bcookie | Targeted Advertising | 400 days | Browser Identifier cookie to uniquely identify devices accessing LinkedIn to detect abuse on the platform | |
| bscookie | Targeted Advertising | 400 days | Used by the social networking service, LinkedIn, for tracking the use of embedded services. | |
| lidc | Targeted Advertising | Less than a day | LinkedIn uses the lidc cookie to facilitate the choice of a data center. All the data that LinkedIn collects has to be routed to the proper location based on its source. | |
| li_sugr | Targeted Advertising | 90 days | Used by LinkedIn to make a probabilistic match of a user’s identity outside the Designated Countries. | |
| UserMatchHistory | Targeted Advertising | 30 days | Used by linkedin for marketing purposes – such as tracking usage behaviour, optimising experience, or enabling marketing functionality. | |
| SRM_B | Targeted Advertising | Microsoft Ads | 400 days | This cookie is installed by Microsoft Bing. Identifies unique web browsers visiting Microsoft sites. |
| ANONCHK | Analytics | Microsoft Clarity | 400 days | Cookie used by Microsoft Clarity. It indicates whether Microsoft User ID is transferred to Anonymous ID, a cookie used for advertising. Clarity doesn’t use Anonymous ID. |
| _clck | Analytics | Microsoft Clarity | 364 days | A first-party cookie used by Microsoft Clarity to store a unique user ID and preferences, persisting across visits to the same site for up to 1 year. It ensures visitor behavior (like clicks and scrolls) is consistently tracked for analytics. |
| CLID | Analytics | Microsoft Clarity | 364 days | Identifies the first-time Clarity saw this user on any site using Clarity. |
| _clsk | Analytics | Microsoft Clarity | Less than a day | Connects multiple page views by a user into a single Clarity session recording. |
| MR | Targeted Advertising | Microsoft Clarity | 400 days | Indicates whether to refresh MUID Microsoft Clarity cookie. |
| MUID | Targeted Advertising | Microsoft Clarity | 400 days | Identifies unique web browsers visiting Microsoft sites. These cookies are used for advertising, site analytics, and other operational purposes. |
| SM | Essential Services | Microsoft Clarity | 400 days | Used in synchronizing the Microsoft Clarity MUID across Microsoft domains. |
You may opt out of the Tracking Technologies by following the instructions by sending an email to [email protected].
7. How long do we keep your information?
We retain the information we collect from our Users (as defined in the Apono Terms of Use) for as long as we are providing the Services to the applicable Customer, and thereafter for a period necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Retention periods are determined taking into account the type of information collected and the purpose for which it was collected, bearing in mind the requirements applicable to the situation and the need to destroy outdated or unused information at the earliest reasonable time.
Under applicable regulations, we may keep records containing Users’ Personal Information, account opening documents, communications, and anything else required by applicable laws and regulations.
We may rectify, replenish or remove incomplete or inaccurate information at any time and at our own discretion. Upon expiry of the applicable retention period, we will delete or anonymize your Personal Information.
8. International transfers
Since we operate globally, it may be necessary to transfer data, including Personal Information, to countries outside of the country in which the information was originally collected, including to countries outside the European Economic Area (EEA) that may not provide the same level of data protection as your home country.
In these instances, we will transfer your data only based on:
- Standard Contractual Clauses (SCCs) adopted by the European Commission;
- An adequacy decision by the European Commission confirming that the destination country offers an adequate level of data protection; or
- Other lawful transfer mechanisms under applicable data protection law.
You may request a copy of the safeguards we have put in place for international transfers by contacting us at [email protected].
9. Your privacy rights
Depending on your jurisdiction, you may have the following rights with respect to your Personal Information. Subject to exemptions provided by law, and upon proper verification of your identity, you may have the right to:
- Right of access: To request access to the Personal Information we hold about you, including a copy of your data.
- Right to rectification: To request correction of any inaccurate or incomplete Personal Information we hold about you.
- Right to erasure: To request deletion of your Personal Information (subject to any legal obligation that may require us to retain that information).
- Right to restriction: To request that we restrict the processing of your Personal Information in certain circumstances.
- Right to data portability: To receive your Personal Information in a structured, commonly used and machine-readable format, and to transmit it to another controller.
- Right to object: To object to processing of your Personal Information based on our legitimate interests, including for direct marketing purposes.
- Right to withdraw consent: Where processing is based on your consent, you have the right to withdraw that consent at any time without affecting the lawfulness of prior processing.
- Right to lodge a complaint: To lodge a complaint with the competent supervisory authority in your jurisdiction (e.g., the Data Protection Authority in your EU member state).
To exercise any of these rights, please contact us at: [email protected]. Please note that these rights are not absolute and may be subject to limitations under applicable law.
10. How do we protect the privacy of children?
To use our Services, you must be over the age of eighteen (18). We do not knowingly collect Personal Information from individuals under the age of eighteen and do not wish to do so. We reserve the right to request proof of age at any stage so that we can verify that individuals under the age of eighteen are not using the Services.
If you believe that we might have any information from or about an individual under the age of eighteen, please contact us at [email protected] so that we can promptly delete such information.
11. How do we protect your information?
We implement appropriate technical and organizational security measures designed to protect your Personal Information against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.
12. Changes to this policy
This Privacy Policy may change from time to time. We will post any policy changes on this page. You are encouraged to check for the latest policy often. Your continued use of the Services after any changes constitutes your acceptance of the updated policy.
13. Contacting us
If you have any questions about this Privacy Policy or concerns about the way we process your Personal Information, or if you wish to raise a complaint on how we have handled your Personal Information, please contact us directly at:
Apono Tech Ltd.
Menakhem Begin Rd 144 Tel Aviv-Yafo, Israel
Email: [email protected]
Data Protection Officer: [email protected]