Privacy Policy

Last updated: April 2, 2026

Effective Date: April 1, 2026

Last Updated: April 1, 2026

CrispClose AI (“CrispClose,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use the CrispClose AI platform, website located at crispclose.com, and all related services (collectively, the “Service”).

By accessing or using the Service, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Service.

1. Information We Collect

1.1 Account Information

When you create an account, we collect information you provide directly, including:

  • Full name
  • Email address
  • Phone number
  • Business name and address
  • Billing and payment information (processed securely through third-party payment processors)
  • Login credentials

1.2 Business Data

Through your use of the Service, we may collect and process business-related data, including:

  • Business contact lists and lead information you upload or connect
  • Appointment scheduling data
  • CRM and sales pipeline information
  • Integration credentials and configurations for connected platforms (Facebook, Instagram, WhatsApp, SMS)

1.3 Conversation Data

The Service processes messaging conversations between your AI sales agent and your leads or customers. This data may include:

  • Message content across connected channels (Facebook Messenger, Instagram DMs, WhatsApp, SMS)
  • Conversation metadata (timestamps, channel, message status)
  • Lead contact details exchanged during conversations
  • Appointment details and booking information
  • AI agent responses generated on your behalf

1.4 Usage Data

We automatically collect information about how you interact with the Service, including:

  • Log data (IP address, browser type, operating system, referring URLs)
  • Device information (device type, unique device identifiers)
  • Feature usage patterns and interaction data
  • Performance data and error logs
  • Pages visited and time spent on the Service

1.5 Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies to collect usage data, maintain session state, and improve the Service. See Section 8 for more details.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing the Service: To operate, maintain, and deliver the features and functionality of the Service, including AI-powered conversation handling, lead management, and appointment booking
  • Account Management: To create and manage your account, process payments, and communicate with you about your subscription
  • Service Improvement: To analyze usage patterns, diagnose technical issues, and develop new features and enhancements
  • AI Training and Quality: To improve the accuracy, relevance, and performance of our AI models and conversation capabilities
  • Communication: To send you transactional emails, service updates, security alerts, and support messages
  • Security: To detect, prevent, and respond to fraud, unauthorized access, and other security incidents
  • Legal Compliance: To comply with applicable laws, regulations, and legal obligations
  • Marketing: To send promotional communications about our products and services, subject to your opt-out preferences

3. Data Sharing and Third Parties

We do not sell your personal information. We may share your information with third parties only in the following circumstances:

3.1 Service Providers

We work with trusted third-party service providers who assist us in operating the Service, including:

  • Cloud hosting and infrastructure providers
  • Payment processors
  • Analytics and monitoring services
  • Email delivery services
  • Customer support tools

These providers are contractually obligated to protect your data and may only use it to perform services on our behalf.

3.2 Platform Integrations

When you connect third-party platforms (Facebook, Instagram, WhatsApp, SMS carriers), data is exchanged as necessary to deliver messaging functionality. Your use of these platforms is subject to their respective privacy policies.

We may disclose your information if required to do so by law or in response to valid legal process, including court orders, subpoenas, or government requests.

3.4 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of the transaction. We will notify you of any such change and any choices you may have regarding your data.

We may share your information with third parties when you have given us your explicit consent to do so.

4. Data Security

We take the security of your data seriously and implement industry-standard technical and organizational measures to protect it, including:

  • Encryption: All data is encrypted in transit using TLS 1.2 or higher, and at rest using AES-256 encryption
  • Access Controls: Role-based access controls and multi-factor authentication for internal systems
  • Infrastructure Security: Hosted on secure, SOC 2 compliant cloud infrastructure with continuous monitoring
  • Regular Audits: Periodic security assessments and vulnerability testing
  • Incident Response: Documented procedures for detecting and responding to security incidents

We maintain compliance standards aligned with HIPAA requirements for customers in applicable industries. If your use case involves protected health information (PHI), please contact us at [email protected] to discuss a Business Associate Agreement (BAA).

While we strive to protect your information, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security, but we are committed to taking all reasonable steps to safeguard your data.

5. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. Specific retention periods include:

  • Account Information: Retained for the duration of your account and for up to 30 days after account deletion to allow for recovery
  • Conversation Data: Retained for the duration of your subscription. Upon cancellation or termination, conversation data is deleted within 90 days unless retention is required by law
  • Usage and Log Data: Retained for up to 24 months for analytics and service improvement purposes
  • Billing Records: Retained for up to 7 years as required by financial regulations

After the applicable retention period, data is securely deleted or anonymized so that it can no longer be associated with you.

6. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

6.1 Right to Access

You may request a copy of the personal information we hold about you.

6.2 Right to Correction

You may request that we correct any inaccurate or incomplete personal information.

6.3 Right to Deletion

You may request that we delete your personal information, subject to certain legal exceptions (such as data we are required to retain for compliance purposes).

6.4 Right to Data Portability

You may request a copy of your data in a structured, commonly used, and machine-readable format.

6.5 Right to Object

You may object to the processing of your personal information for certain purposes, including direct marketing.

6.6 Right to Restrict Processing

You may request that we limit the processing of your personal information under certain circumstances.

Where we rely on consent as the legal basis for processing, you may withdraw your consent at any time.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days, or within the timeframe required by applicable law. We may ask you to verify your identity before processing your request.

7. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including:

  • The right to know what personal information we collect, use, and disclose
  • The right to request deletion of your personal information
  • The right to opt out of the sale or sharing of your personal information
  • The right to non-discrimination for exercising your privacy rights

We do not sell personal information as defined under the CCPA/CPRA. To exercise your California privacy rights, contact us at [email protected].

8. Cookies and Tracking Technologies

8.1 Types of Cookies We Use

  • Essential Cookies: Required for the Service to function properly, including authentication and security cookies
  • Analytics Cookies: Help us understand how users interact with the Service so we can improve it
  • Functional Cookies: Remember your preferences and settings to enhance your experience

8.2 Managing Cookies

You can manage your cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. However, disabling essential cookies may impair the functionality of the Service.

8.3 Do Not Track

Some browsers offer a “Do Not Track” (DNT) signal. We currently do not respond to DNT signals, but we respect your privacy preferences as described in this policy.

9. Children’s Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from anyone under 18 years of age. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly.

If you believe that a child under 18 has provided us with personal information, please contact us immediately at [email protected].

10. International Data Transfers

CrispClose AI is based in the United States. If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate.

We take appropriate safeguards to ensure that your data is protected in accordance with this Privacy Policy when transferred internationally, including the use of Standard Contractual Clauses approved by the European Commission where applicable.

By using the Service, you consent to the transfer of your information to the United States and other jurisdictions as described in this section.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. If we make material changes, we will notify you by:

  • Posting the updated policy on our website with a revised “Last Updated” date
  • Sending you an email notification
  • Providing a notice through the Service

We encourage you to review this Privacy Policy periodically. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.

12. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

CrispClose AI — Privacy Team Email: [email protected] Website: crispclose.com

For general support inquiries, you may also reach us at [email protected].