Privacy Policy

1. Information We Collect

Account & Profile Data

We collect information you provide when creating an account, including:

• Name, email address, company name, and job title
• Profile picture and avatar
• Preferences and notification settings

Authentication

We store authentication-related data including:

• OAuth tokens from Google and Microsoft sign-ins via Auth0
• Password hashes using bcrypt encryption
• Two-factor authentication (2FA) settings

Payment & Billing

Credit card details are tokenized through Stripe. We retain:

• Billing address and contact information
• Transaction history and invoices
• Subscription plan details

Communication

We collect communications you have with us and through our platform:

• Support tickets and live chat transcripts
• Email correspondence
• Chatbot interactions and conversation history

AI Training Data

Usage & Analytics

We collect data about how you interact with our platform:

• Pages visited and features used
• Time spent and click patterns
• API calls and error logs

Device & Technical

We automatically collect technical information:

• IP address and geolocation (approximate)
• Browser type and version
• Operating system and screen resolution
• Device ID and type

Session Recordings

We may record screen interactions including mouse movements, clicks, scrolls, and form interactions. Sensitive data (passwords, credit cards) is automatically masked.

Integration Data

Data from connected third-party services as configured by you, including CRM platforms (Salesforce, HubSpot), Helpdesk tools (Zendesk), and marketing platforms.

2. How We Use Your Information

• Service Delivery: Provide platform functionality, process requests, deliver omnichannel communication, and enable automated workflow responses
• Product Improvement: Analyze usage patterns, train AI models (using anonymized data), conduct A/B experiments, and fix bugs
• Communication: Send transactional emails, provide ad operations, and notify you about product updates and new features
• Security: Detect unauthorized access, monitor for suspicious activity, prevent fraud, and comply with legal obligations
• Personalization: Customize your experience based on your preferences and usage patterns

3. Information Sharing and Disclosure

We share data with trusted third-party service providers who assist our operations:

Service Providers

• Auth0: Authentication and identity management
• Stripe: Payment processing
• AWS/Google Cloud: Cloud infrastructure and hosting
• Cloudflare: CDN and security services
• SendGrid: Email delivery
• Twilio: SMS and voice communications

AI/ML Services

We may use AI providers (OpenAI, Anthropic) to power certain features. Your data is NOT used for provider training without explicit opt-in consent.

Integration Partners

Data may be shared with CRM/Helpdesk tools as configured by you in your integration settings.

Legal Requirements

4. Data Security

We implement industry-standard security measures to protect your personal information:

Encryption

• TLS 1.3 for all data in transit
• AES-256 encryption for data at rest

Access Controls

• Role-based access control (RBAC)
• Two-factor authentication required for administrators
• IP whitelisting for sensitive operations
• Automatic session timeouts

Infrastructure & Compliance

• SOC 2 Type II certified
• ISO 27001 compliant
• Regular security audits and penetration testing
• 24/7 security monitoring

5. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy:

• Active Accounts: Data retained for the duration of your subscription
• Deleted Accounts: 30-day grace period before permanent deletion
• Transaction Records: Retained for 7 years for tax and legal compliance
• Usage Logs: Retained for 90 days for security and debugging
• Backups: Retained for 90 days for disaster recovery
• AI Training Data: Anonymized data may be retained indefinitely; identifiable data deleted upon request

6. Your Rights and Choices

General Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal data we hold about you
• Rectification: Request correction of inaccurate or incomplete data
• Erasure: Request deletion of your personal data (Right to be Forgotten)
• Portability: Request transfer of your data to another service
• Restriction: Request limitation of processing in certain circumstances
• Object: Object to processing based on legitimate interests
• Withdraw Consent: Withdraw consent at any time where processing is based on consent

EU Residents (GDPR)

If you are located in the European Union, you have additional rights under GDPR:

• Lawful bases for processing: contract performance, legitimate interests, and consent
• Right to lodge a complaint with your local Data Protection Authority
• Data Protection Officer: Contact at dpo@televisor.pro

California Residents (CCPA)

If you are a California resident, you have specific rights under CCPA:

• No Sale: We do NOT sell your personal information
• Right to Know: Request categories and specific pieces of data collected
• Right to Delete: Request removal of personal information
• Non-Discrimination: We will not discriminate against you for exercising your rights
• Authorized Agent: You may designate an agent to make requests on your behalf

7. International Data Transfers

We operate globally and may transfer your data across borders:

Data Locations

• Primary: European Union (Frankfurt, Germany)
• Secondary: United States (Virginia)

Transfer Mechanisms

• Standard Contractual Clauses (SCCs)
• EU Adequacy Decisions
• EU-US Data Privacy Framework

Data Residency

Enterprise Option: Enterprise customers can request EU-only or US-only data storage to meet specific regulatory requirements.

8. Cookies and Tracking Technologies

We use cookies, web beacons, and similar technologies to enhance your experience. For detailed information about how we use these technologies and your choices, please see our dedicated Cookie Policy.

9. Children's Privacy

Our service is not intended for children under 16 years of age. We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 16, we will delete that information promptly.

If you believe we have inadvertently collected information from a child, please contact us at privacy@televisor.pro.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons.

We will notify you of significant changes through:

• Email notification to registered users
• Prominent notice on our website
• In-app notification

We encourage you to review this policy periodically. The "Last updated" date at the top indicates when the policy was last revised.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

TeleVisor, Inc.
2261 Market Street
San Francisco, CA 94114
United States

Privacy Team: privacy@televisor.pro
Data Protection Officer: dpo@televisor.pro

For data subject access requests (DSAR), please email privacy@televisor.pro with the subject line "DSAR Request".