AutomatycAutomatycBack to home

Legal

Privacy Policy

Last updated: April 11, 2026

Automatyc (“we”, “our”, or “us”) provides an AI receptionist and AI assistant service for small businesses. This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using Automatyc, you agree to the terms described below.

1. Information we collect

1.1 Account and business information

When you sign up, we collect your email address, name, business name, business phone number, owner phone number, industry, services offered, hours of operation, and any brand details you provide (logo, colors, brand voice, topics to emphasize or avoid).

1.2 Voice and call data

When Automatyc answers or places calls on your behalf, we process the audio in real time, generate transcripts, and store call recordings, summaries, and metadata (phone number, duration, timestamps, caller intent). Recordings and transcripts are retained so you can review them from your dashboard.

1.3 SMS data

We send and receive SMS messages on your business phone number for appointment reminders, confirmations, callbacks, review requests, and administrative replies between you and Automatyc. We store the content, direction, and timestamps of these messages, and log explicit opt-in and opt-out events as required by carrier (A2P 10DLC) regulations.

1.4 Calendar data

If you connect Google Calendar, Microsoft Outlook, Calendly, or Apple Calendar, we read and write events on the calendars you select. We only access the calendars you explicitly authorize and only for the purpose of scheduling, rescheduling, and canceling appointments booked through Automatyc.

1.5 Social media data

If you enable the Social Media Manager add-on and connect Facebook, Instagram, Google Business Profile, or TikTok, we request only the permissions needed to publish content you approve and (optionally) respond to comments and messages on your behalf. We store OAuth access tokens, page IDs, post IDs, and media URLs required to operate the service. We do not sell this data, and we do not use it to train machine-learning models.

1.6 Payment information

Payments are processed by Stripe. We do not store full credit-card numbers on our servers. We store only a Stripe customer ID, subscription ID, plan tier, and billing status.

1.7 Automatically collected

We collect standard web analytics (page visits, device type, general location derived from IP) to operate and secure the service.

2. How we use information

  • To operate the AI receptionist and AI assistant on your behalf
  • To schedule, confirm, reschedule, and cancel appointments
  • To generate and publish social media content that you have approved
  • To send appointment reminders and review requests to your customers
  • To bill you and manage your subscription
  • To improve accuracy and reliability of the service
  • To comply with legal obligations

We do not sell your personal information. We do not use your voice recordings, transcripts, calendar data, customer lists, or social media content to train third-party machine-learning models.

3. How we share information

We share information only with service providers that help us operate Automatyc:

  • Supabase — hosted database and authentication
  • Vercel — application hosting
  • Google — Gemini voice and text AI, Google Calendar, Google Business Profile
  • Telnyx — telephony (voice and SMS carrier)
  • Stripe — payment processing
  • Resend — transactional email
  • Meta (Facebook / Instagram), TikTok — only when you enable the social media feature and connect those accounts
  • Kie.ai — AI image and video generation (social media feature)

Each provider receives only the data required to perform its function. We also disclose information when required by law, to protect the rights and safety of our users, or in the event of a corporate transaction such as a merger or acquisition.

4. Meta Platform Terms

For customers who connect Facebook or Instagram: data received from the Meta Platform is used only to operate features you have enabled inside Automatyc (publishing content you approved, responding to comments and messages in the mode you selected). We do not transfer this data to any third party except the subprocessors listed above. You can revoke access at any time from your Facebook settings or your Automatyc dashboard.

5. Your rights and choices

You can access, correct, export, or delete your business data at any time from your dashboard or by emailing privacy@automatyc.io. See our Data Deletion page for the deletion process.

Residents of California, the European Economic Area, and the United Kingdom have additional rights under applicable law (CCPA, GDPR). We honor verified requests to access, port, or erase personal data, and to opt out of “sale” or “sharing” of personal information (we do neither).

6. Data retention

We retain account data for as long as your subscription is active. Call recordings, transcripts, and SMS history are retained for 12 months by default, after which they are permanently deleted. You can request earlier deletion at any time. Financial records are retained for 7 years as required by law.

7. Security

We use industry-standard encryption in transit (TLS 1.2+) and at rest. Passwords are hashed using bcrypt. Access to production systems is restricted and logged. No system is perfectly secure; if we discover a breach that affects your personal information, we will notify you without undue delay.

8. Children

Automatyc is not intended for individuals under 16. We do not knowingly collect personal information from children.

9. International users

Automatyc is operated from the United States. If you use the service from outside the U.S., you consent to the transfer of your information to the U.S. for processing.

10. Changes to this policy

We may update this policy from time to time. Material changes will be announced via email or in your dashboard at least 30 days before they take effect.

11. Contact

Questions about this policy or your data? Email privacy@automatyc.io.