Privacy Policy

SaasyVoice Inc. ("SaasyVoice," "we," "us," or "our") provides an AI-powered voice agent platform that enables businesses to automate inbound and outbound phone calls. This Privacy Policy explains how we collect, use, share, and protect information when you use our website at saasyvoice.ai and our application at https://app.saasyvoice.ai (collectively, the "Service").

By using the Service, you agree to the practices described in this policy. If you are using SaasyVoice on behalf of a business, you represent that you have authority to bind that business to this policy.

1. Information We Collect

Account & Profile Information

When you register or sign in, we collect:

• Name, email address, and profile picture (via Google OAuth)
• Company name
• Billing information (processed by our payment provider; we do not store full card numbers)

Voice Agent Configuration

When you build and configure AI voice agents, we store:

• Agent names, prompts, instructions, and system settings
• Phone numbers provisioned through the Service
• Tool configurations (calendar integrations, webhooks, custom functions)

Call Data

When your AI agents handle phone calls, we collect and store:

• Call transcripts (text transcriptions of conversations)
• Call metadata: caller phone number, duration, timestamps, call outcome
• Agent actions taken during the call (e.g., calendar bookings, data lookups)

Google Account Data

When you connect your Google account to enable voice agent tools, we access the following data through Google APIs:

• Google Calendar – event titles, dates and times, attendees, and calendar availability (accessed to book, check, and cancel appointments on behalf of your voice agents)
• Gmail – email sending capability through your connected Gmail account (used to send summaries, follow-ups, and documents on behalf of your voice agents). We do not read or store the contents of your inbox.
• OAuth tokens & account identifiers – we store OAuth refresh tokens and the email address of each connected Google account to maintain the integration. Tokens are encrypted at rest and are not shared with third parties.

Usage & Technical Data

• Pages visited, features used, and time spent in the application
• IP address, browser type, device type, and operating system
• Error logs and performance metrics

2. How We Use Your Information

We use the information we collect to:

• Provide the Service – operate AI voice agents, process calls, and deliver features
• Manage your account – authentication, billing, and subscription management
• Improve and develop the Service – analyze usage patterns and conversations to fix bugs, remove unhelpful features, and introduce new capabilities (see Section 3 below)
• Ensure safety and security – detect fraud, abuse, and policy violations
• Communicate with you – send transactional emails, product updates, and support responses
• Comply with legal obligations – respond to lawful requests from authorities

Use of Google User Data

Data obtained through Google APIs is used solely to provide and improve the user-facing features of the Service:

• Google Calendar data is used exclusively to book appointments, check availability, and cancel appointments on behalf of your configured voice agents
• Gmail data is used exclusively to send emails (such as summaries, follow-ups, and documents) on behalf of your configured voice agents

Google user data is not used for advertising, market research, or any purpose unrelated to providing or improving the voice agent features you have enabled.

3. AI Analysis & Product Improvement

Specifically, we use conversation and call data to:

• Identify and fix bugs in AI agent behavior
• Understand which features are useful and which are not, so we can eliminate low-value functionality and invest in high-value improvements
• Develop new features and capabilities based on real-world usage patterns
• Improve conversation quality, naturalness, and accuracy of responses

This analysis may be performed by automated systems and, in some cases, by SaasyVoice team members who review call transcripts for quality assurance purposes. When human review occurs, it is limited to what is necessary and subject to confidentiality obligations. Human reviewers do not directly access Google Calendar events or Gmail content; Google user data obtained via Google APIs is accessed only programmatically by the Service to provide user-facing features.

Aggregate & anonymized insights: We may derive aggregated, de-identified insights from conversation data (e.g., "X% of calls result in a booking") and use these insights to improve the product or share them in research, benchmarks, or marketing materials. This aggregated data cannot reasonably be used to identify individual callers or customers.

If you are a business customer and your end users (callers) interact with your AI agents, you are responsible for obtaining any required consent from those callers for transcription and AI processing of their calls, as required by applicable law (see Section 4).

4. Call Transcription

SaasyVoice transcribes all calls handled by your AI agents. Transcripts are stored securely and are accessible in your dashboard. We recommend configuring your agents to announce at the start of each call that the conversation is handled and transcribed by an AI system — both as a legal compliance measure and as a matter of transparency for callers.

Call transcripts are used to:

• Provide you with a complete text record of conversations handled by your agents
• Enable you to search, review, and export call content
• Power our AI analysis and product improvement processes (Section 3)

5. Data Sharing & Third-Party Services

We do not sell your personal information. We share data only in the following circumstances:

Service Providers

We use trusted third-party providers to operate the Service. These providers process data on our behalf and are bound by confidentiality obligations:

• Google Firebase / Firestore – user authentication and database storage
• Google Cloud / Vertex AI (Gemini) – AI model inference that powers voice agent conversations
• Twilio – phone call routing and delivery infrastructure
• Stripe (or equivalent) – payment processing and subscription management
• Analytics providers – anonymous usage analytics to understand product performance

Legal Requirements

We may disclose information if required by law, court order, or government request, or when we believe disclosure is necessary to protect the rights, property, or safety of SaasyVoice, our users, or the public.

Business Transfers

If SaasyVoice is acquired, merged, or undergoes a change of control, your information may be transferred as part of that transaction. We will notify you before your information becomes subject to a materially different privacy policy.

Google User Data

Google Calendar and Gmail data accessed through Google APIs is processed exclusively through Google's own services and is not transferred to any other third-party service. OAuth tokens are stored securely and are not shared with third parties. We do not transfer, disclose, or sell Google user data to third parties for advertising, data brokerage, credit assessment, or any purpose unrelated to providing the Service.

With Your Consent

We may share your information for any other purpose with your explicit consent.

6. Google API Services Disclosure

SaasyVoice's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, SaasyVoice:

• Only uses Google user data to provide or improve user-facing features that are prominent in the application's user interface
• Does not transfer Google user data to third parties unless necessary to provide or improve user-facing features, to comply with applicable law, or as part of a merger, acquisition, or asset sale with prior user consent
• Does not use Google user data for serving advertisements, including retargeting, personalized, or interest-based advertising
• Does not allow humans to read Google user data unless (a) we have obtained the user's affirmative agreement, (b) it is necessary for security purposes such as investigating abuse, (c) it is necessary to comply with applicable law, or (d) the data is aggregated and anonymized and used for internal operations

7. Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. Specifically:

• Account data – retained until you delete your account, plus a brief grace period for recovery
• Call transcripts – retained for the duration of your subscription and for a period after account closure to allow data export
• Usage logs – retained for up to 12 months for security and debugging purposes
• Billing records – retained for the period required by applicable tax and financial laws

You may request deletion of your data at any time by contacting us (see Section 13). Note that some data may be retained in aggregated, de-identified form even after deletion.

8. Security

We implement industry-standard technical and organizational measures to protect your information, including:

• Encryption of data in transit (TLS) and at rest
• Access controls limiting who can access customer data internally
• Regular security reviews and monitoring
• Secure authentication via Google OAuth

No method of transmission over the internet or electronic storage is 100% secure. If you believe your account has been compromised, contact us immediately.

9. Your Rights & Choices

Depending on your location, you may have the following rights:

• Access – request a copy of the personal data we hold about you
• Correction – request correction of inaccurate data
• Deletion – request deletion of your personal data
• Portability – request an export of your data in a machine-readable format
• Opt-out of marketing – unsubscribe from non-transactional communications at any time

California residents may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected and to opt out of its sale. To exercise any of these rights, contact us at the address in Section 13.

Please note that some data cannot be deleted while your account is active or while we have a legal obligation to retain it.

10. Cookies & Analytics

We use cookies and similar technologies to operate the Service and understand how people use it. Cookies we use include:

• Essential cookies – required for authentication and session management
• Analytics cookies – help us understand traffic patterns and feature usage (these are anonymous)

You can control cookie settings through your browser. Disabling essential cookies will prevent you from using the Service.

11. Children's Privacy

The Service is intended for business use and is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us and we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by posting a notice in the application at least 14 days before the changes take effect. The "Last updated" date at the top of this page reflects the most recent revision.

Your continued use of the Service after changes take effect constitutes your acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy, please contact us: