# Privacy Policy **Last updated: [DATE]** [BRAND_NAME], LLC ("we," "us," "our") operates the website at [DOMAIN] and provides AI consulting services. This Privacy Policy explains how we collect, use, and disclose personal information. ## What we collect **You give us:** - Contact information (name, email, phone, company, role) - Information you submit through the booking form or other forms - Communications with us (calls, emails, chats) **We collect automatically:** - IP address, browser type, device information - Pages visited, time on site, referring URL - Cookies and similar technologies (see Cookie section) **We collect from third parties:** - Enrichment data from public sources and tools like Apollo and Clay (when used in outbound) - Payment information from Stripe (we do not store full card numbers) ## How we use personal information - Provide and improve our Services - Schedule and conduct AI-disclosed discovery calls and audits - Send transactional and marketing communications - Process payments - Comply with legal obligations - Detect, prevent, and address fraud or abuse ## AI-conducted calls When we call you using an AI voice agent, the agent will: - Disclose at the start of the call that it is an AI assistant - Disclose that the call may be recorded for quality - Honor your request to stop, opt out, or be transferred to a human teammate - Honor National Do-Not-Call list and your specific opt-out Recordings are retained for 30 days unless we are engaged with you under a signed contract that specifies otherwise. ## Sharing We share personal information with: - Our Subprocessors (listed in our DPA) who help us deliver Services - Service providers under written confidentiality and data protection obligations - Law enforcement when required by law - Counterparties in a corporate transaction (with notice) We do not sell personal information. ## Your rights Depending on your jurisdiction, you may have rights to: - Access the personal information we hold about you - Correct inaccurate information - Request deletion - Opt out of marketing communications (every email has a one-click unsubscribe) - Object to certain processing - Data portability To exercise these rights, email us at [BRAND_EMAIL]. We will respond within 30 days. ## California (CCPA) California residents may request the categories of personal information we have collected, shared, or sold in the past 12 months. We do not sell personal information. To make a request, email [BRAND_EMAIL]. ## EU/UK (GDPR) Our legal bases for processing include: - Performance of a contract - Our legitimate interests in operating and growing our business - Your consent (where required) - Compliance with legal obligations You may lodge a complaint with your supervisory authority. ## Security We use industry-standard safeguards including encryption in transit and at rest, MFA on administrative access, per-client data isolation, and a documented incident response plan. No system is perfectly secure; we cannot guarantee absolute security. ## Retention We retain personal information for as long as needed to provide Services and meet legal obligations. Specifically: - AI call recordings: 30 days default (longer if engagement is active) - Email communications: 7 years - Contract records: 7 years post-termination ## Cookies We use first-party cookies for authentication and analytics. We use PostHog for product analytics. You can opt out of analytics in your browser settings or via your account settings if logged in. ## Children Our Services are not directed at children under 16 and we do not knowingly collect personal information from them. ## Changes We may update this Policy. Material changes will be notified by email or prominent notice on the site. ## Contact [BRAND_NAME], LLC [ADDRESS] [BRAND_EMAIL]