Privacy Policy

Information you provide directly

• Account information: your name, email address, business name, business address, and phone number when you register.
• Business profile: industry, services, pricing, hours of operation, and other details you configure in your knowledge base.
• Payment information: billing address and payment card details. Payment data is processed and stored by Stripe; we do not store full card numbers.
• Communications: messages you send to our support team.

Information collected automatically

• Usage data: pages viewed, features used, clicks, and session duration.
• Log data: IP address, browser type, operating system, referring URLs, and timestamps.
• Cookies and similar technologies: session cookies required for authentication and preference storage. See Section 8 for details.

Information about your customers

When your customers contact your business through Pylor-powered channels, we process:

• Names, phone numbers, and email addresses;
• Conversation transcripts and call recordings;
• Appointment details and service history;
• Any other information your customers share during interactions.

You, as the business operator, are the controller of this customer data. Pylor processes it as a service provider on your behalf. You are responsible for obtaining any required consents from your customers and for ensuring your use of our Service complies with applicable law.

We use the information we collect to:

• Provide, maintain, and improve the Service;
• Process payments and manage subscriptions;
• Send transactional communications (receipts, account alerts, security notices);
• Send marketing communications about Pylor products and features (you may opt out at any time);
• Train and improve our AI models using anonymized and aggregated data;
• Detect, investigate, and prevent fraud, abuse, and security incidents;
• Comply with legal obligations;
• Enforce our Terms of Service.

We do not sell your personal information or your customers' personal information to third parties for their independent marketing purposes.

We may share information with:

Service providers

We share information with vendors that help us operate the Service under confidentiality obligations, including:

Legal requirements

We may disclose information if we believe in good faith that disclosure is required by law, legal process, or to protect the rights, property, or safety of Pylor, our users, or the public.

Business transfers

If Pylor is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

We retain your account information for as long as your account is active, plus a reasonable period thereafter for legal and business purposes. Conversation transcripts and call recordings are retained for 12 months by default. You may request earlier deletion by contacting us.

Upon account termination, we delete your Customer Data within 90 days, except as required to comply with legal obligations, resolve disputes, or enforce our agreements.

We implement industry-standard technical and organizational measures to protect your information, including encryption in transit (TLS) and at rest, access controls, and regular security reviews. However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

If you discover a security vulnerability, please report it responsibly to security@pylor.ai.

All users

Regardless of where you live, you may contact us to:

• Access the personal information we hold about you;
• Correct inaccurate personal information;
• Request deletion of your personal information (subject to legal obligations);
• Opt out of marketing communications (via the unsubscribe link in any email).

California residents (CCPA / CPRA)

If you are a California resident, you have the right to:

• Know what personal information we collect, use, disclose, and sell;
• Delete personal information we hold about you, subject to exceptions;
• Correct inaccurate personal information;
• Opt out of the "sale" or "sharing" of personal information (we do not sell personal information);
• Limit the use of sensitive personal information;
• Not be discriminated against for exercising your privacy rights.

To exercise these rights, contact us at privacy@pylor.ai. We will respond to verifiable requests within 45 days.

EEA, UK, and Swiss residents (GDPR)

If you are located in the European Economic Area, United Kingdom, or Switzerland, our legal basis for processing your personal data includes:

• Contract performance: processing necessary to provide the Service you have subscribed to;
• Legitimate interests: fraud prevention, security, and product improvement;
• Consent: for marketing communications and optional features;
• Legal obligation: compliance with applicable law.

You have the right to access, rectify, erase, restrict, or port your personal data, and to object to certain processing. You also have the right to lodge a complaint with your local supervisory authority. To exercise your rights, contact us at privacy@pylor.ai.

We do not transfer personal data to countries outside the EEA except under appropriate safeguards (Standard Contractual Clauses or equivalent). Please contact us for details.

The Service is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us immediately and we will promptly delete it.

We use the following types of cookies:

• Strictly necessary cookies: Required for authentication (managed by Clerk) and secure session management. These cannot be disabled.
• Preference cookies: Remember your settings, such as your light/dark theme preference.
• Analytics cookies: Aggregate, anonymized data about how the Service is used to help us improve it.

You can control cookies through your browser settings. Disabling strictly necessary cookies will prevent you from using the Service.

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by displaying a notice in the Service. The "Effective date" at the top of this page reflects the date of the most recent update. Your continued use of the Service after changes take effect constitutes your acceptance of the updated policy.

If you have questions about this Privacy Policy or our data practices, please contact us: