Legal

Privacy Policy

Last updated: February 19, 2026

1. Information We Collect

We collect information you provide directly, including:

  • Account information: Name, email, business name, phone number
  • Business data: Knowledge base content, service information, pricing, and hours
  • Call data: Phone numbers, call recordings, transcripts, and AI-generated summaries
  • Contact data: Customer names, phone numbers, emails, and appointment details
  • Usage data: How you interact with the dashboard, features used, and performance metrics

2. How We Use Your Information

We use collected information to:

  • Provide and improve the Rachel AI service
  • Answer calls and manage appointments on your behalf
  • Send notifications and service communications
  • Analyze usage patterns to improve our product
  • Ensure TCPA compliance and consent management
  • Provide customer support

3. Call Recordings and Transcripts

Call recordings and transcripts are stored securely and accessible only to you (the account owner). We do not listen to or review your call recordings unless required for technical support with your explicit permission.

4. Data Sharing

We do not sell your personal information or business data. We may share data with:

  • Service providers: Twilio (phone/SMS), OpenAI (AI processing), Stripe (payments), Clerk (authentication)
  • Legal requirements: When required by law, subpoena, or legal process
  • Business transfers: In connection with a merger, acquisition, or asset sale

5. Data Security

We implement industry-standard security measures including encryption in transit (TLS), encrypted database connections, role-based access controls, and regular security audits. No method of transmission over the internet is 100% secure.

6. Data Retention

We retain your data for as long as your account is active. Upon account deletion, we will delete your data within 30 days, except where retention is required by law.

7. Your Rights

You have the right to:

  • Access and export your data at any time through the dashboard
  • Correct inaccurate information
  • Delete your account and associated data
  • Opt out of non-essential communications

8. TCPA and SMS Consent

Our platform includes built-in TCPA compliance tools including consent tracking, opt-out keyword handling (STOP/START), and audit logging. You are responsible for obtaining proper consent before sending messages to your contacts.

9. Cookies

We use essential cookies for authentication and session management. We do not use third-party advertising cookies.

10. Children's Privacy

The Service is not intended for use by individuals under 18. We do not knowingly collect information from minors.

11. California Privacy Rights (CCPA)

California residents have additional rights under the CCPA, including the right to know what data we collect, request deletion, and opt out of data sales (we do not sell data).

12. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of material changes via email or dashboard notification.

13. Contact

For privacy-related questions, contact us at privacy@rachel.ai.