Privacy Policy

1. Introduction

This Privacy Policy explains how DeskGreet (“we”, “us”, “our”) collects, uses, shares and protects information when you use our AI receptionist service (the “Service”) — including our website, dashboard, web call widget, and the AI agents that handle calls and messages on behalf of our customers (“Customers”).

We are the data controller for information about visitors to our website and people who sign up to evaluate the Service. We are a data processor for information our Customers route through their AI agents (for example, the recordings, transcripts and contact details of their end-users — patients, diners, leads, guests).

2. Information we collect

2.1 Information you provide

• Account information — name, email, business name, vertical, password.
• Business configuration — your hours, services, prices, FAQs, the script you give the agent.
• Payment information — handled by our payment processor (Stripe). We never see or store full card numbers.
• Contact form submissions — anything you write to us via the contact form, email, or our chat.

2.2 Information collected automatically

• Usage data — pages visited, features used, timestamps, and approximate location derived from your IP.
• Device data — browser type, operating system, screen size.
• IP address and country — captured for fraud prevention, rate-limiting and analytics.

2.3 Information processed on behalf of Customers

When an AI agent handles a call or message for one of our Customers, we process the call audio, transcripts, AI responses, action logs, caller phone number, and any data the caller shares (their name, appointment time, order details, etc.). This data belongs to our Customer; we process it under their instructions per Section 5 below.

3. How we use information

• To provide and operate the Service — connecting calls, generating AI responses, completing actions you configured.
• To improve the Service — debugging issues, measuring quality, and (with permission) fine-tuning agent behavior.
• To communicate with you — service notifications, billing, security alerts, and (only with consent) product updates.
• To secure the Service — detecting fraud, abuse, scraping, and policy violations.
• To comply with legal obligations — tax, accounting, fraud reporting, valid law-enforcement requests.

We do not sell your personal information. We do not use your end-customer call data to train general-purpose AI models.

4. Voice recordings and transcripts

Inbound calls handled by the Service are recorded and transcribed so the AI can respond, the action log can be written, and you can review what happened.

• Callers may be informed that the call is being handled by an automated system; depending on your jurisdiction, you (the Customer) may also be required to disclose recording. This is your responsibility.
• Recordings and transcripts are encrypted at rest and in transit.
• You can request deletion of any specific recording from your dashboard or by emailing yousuf_tahir@live.com.
• By default we retain call recordings for 30 days and transcripts for 180 days; Custom-plan Customers can configure shorter or longer retention.

5. Sub-processors

To deliver the Service we share information with the following sub-processors. Each is bound by a written data-processing agreement that requires confidentiality and security commitments at least as strong as ours.

An up-to-date list is available on request. We will notify Customers in advance of any new sub-processor and provide an opportunity to object.

6. Data retention

• Account data — retained while your account is active and for up to 90 days after deletion (for billing reconciliation and legal claims).
• Call recordings — 30 days by default.
• Transcripts and action logs — 180 days by default.
• Anonymized usage analytics — retained indefinitely.

7. Security

We use industry-standard safeguards:

• TLS 1.2+ for all data in transit.
• Encryption at rest for recordings, transcripts and credentials.
• Least-privilege access controls on production systems.
• Regular dependency and image scans.
• Logging and alerting on anomalous access.

No system is perfectly secure. If you believe your account has been compromised, email yousuf_tahir@live.com immediately.

8. Your rights

Depending on where you live, you may have the right to:

• Access the personal data we hold about you.
• Correct inaccurate data.
• Delete your data (subject to legal retention).
• Export your data in a portable format.
• Object to certain processing or withdraw consent.
• Lodge a complaint with your local data-protection authority.

To exercise these rights, email yousuf_tahir@live.com. We will respond within 30 days.

For California residents: we do not sell or share personal information for cross-context behavioral advertising.

9. International data transfers

The Service is operated from servers in the EU and the US. If you are outside these regions, your data may be transferred internationally. We rely on Standard Contractual Clauses and equivalent safeguards for such transfers.

10. Cookies and analytics

We use a minimal set of cookies for session management and rate-limiting. We do not use third-party advertising or cross-site tracking cookies. Aggregated analytics are first-party only.

11. Children

The Service is not directed to children under 16. We do not knowingly collect personal information from children. If you believe we have, contact us and we will delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be announced by email or via the dashboard at least 14 days before they take effect. The “Last updated” date above always reflects the current version.

13. Contact

For privacy questions, requests, or complaints, contact:

DeskGreet
Email: yousuf_tahir@live.com
Or use our contact form.