Privacy Policy

What we collect

• Account info — owner email, name, workspace name, timezone, and role from your identity provider (Clerk).
• Business communications — inbound/outbound SMS bodies, call recordings (voicemail audio), call transcripts, Google Business Profile reviews and replies you choose to ingest.
• Contact data of your customers — phone numbers, display names, conversation timestamps, and anything your customers text you.
• Operational telemetry — per-tenant AI model calls, cost, latency, and error traces needed to bill metered usage and debug failures.
• Financial data (when you connect a bank via Plaid) — institution name, account name + last-4 digits, transaction amounts, dates, merchant names, source categories, and account balances for accounts you explicitly link. We never store full account or card numbers. Plaid credentials (access tokens) are encrypted with AES-256-GCM at rest and never leave the server.

Financial data via Plaid

When you choose to connect a bank account, we use Plaid as our data-access provider. What happens:

• What we request: accounts:read, transactions:read, and your name (for account-matching). Nothing else.
• What we store: institution name, account name + last-4 mask, transactions (amount, merchant, date, source categories). We do not store full account numbers, routing numbers, or card PANs.
• How we store it: transactions in your per-workspace encrypted Postgres database; Plaid access tokens wrapped in an additional application-layer AES-256-GCM envelope inside the control-plane database; all connections over TLS 1.2+.
• Why we need it: to analyze recurring subscriptions, duplicate charges, unusual spending, bank fees, and to prepare tax-oriented expense summaries. We never move money — the connection is strictly read-only.
• MFA required: you must have two-factor authentication enabled on your account before you can link a bank. The connection is revoked if you remove MFA.
• How long we keep it: transactions up to 24 months from the posted date. Older transactions are purged daily.
• How to disconnect: /app/connectors → Bank accounts → Disconnect. Disconnected data is retained for a 30-day grace period so you can re-link without losing history, then hard-purged. "Disconnect & purge now" skips the grace period.
• If you revoke at your bank:when your bank's Plaid portal reports a revocation, we purge immediately — no grace period.
• Sub-processor:Plaid Inc. Plaid's own privacy policy applies to the data-access pipe itself.

How we use it

• Draft reply text and suggest actions on inbound signals.
• Bill metered usage against your plan and produce itemized invoices.
• Operate, secure, and improve the service. We do not sell personal data.
• Aggregated, non-identifying metrics may be used to improve AI quality across the platform.

Data retention

• Call recordings + transcripts: automatically purged 90 days after the call.
• Messages, customers, conversations: retained for the life of your workspace or until you erase them per-customer (GDPR Art. 17) or request full workspace deletion.
• AI traces:retained per the tenant's schema policy to enable audit + replay; redacted fields are never retained in recoverable form.
• Financial transactions: up to 24 months from posted date. Disconnected Plaid items are retained for 30 days then hard-purged.

Your rights

• Export everything your workspace holds as JSON via Settings → Export all my data.
• Delete a single customer's data from their customer profile page (erase button).
• Delete your entire workspace — contact support; processed within 30 days.
• Opt out of SMS: end customers can text STOP to any number we operate; the number is blocked from future outbound immediately.

Sub-processors

We use the following sub-processors as data processors on our behalf: Clerk (authentication), Neon (database), Cloudflare R2 (blob storage), Anthropic / OpenAI / Groq / Deepgram (AI model providers), Twilio (telephony), Plaid (financial data access), Resend (email delivery), Stripe (billing), Inngest (background jobs), Sentry (error tracking).

Contact

Questions or a formal data subject request: privacy@2biz.ai.