← Back to AlphaAssist

Privacy Policy

Last updated: May 27, 2026

1. Information We Collect

AlphaAssist ("we," "our," or "us") collects the following information when you use our AI virtual assistant service:

• Business Information: Business name, address, hours of operation, services, and pricing that you provide during onboarding.
• Contact Information: Phone numbers, email addresses, and names of business owners and their customers who interact with the AI assistant.
• Call Data: Phone call recordings, transcripts, duration, and caller phone numbers when calls are handled by the AI assistant.
• Messages: SMS messages sent and received through the service.
• Appointment Data: Calendar events, client names, and scheduling information.
• Payment Information: Billing details processed securely through Stripe. We do not store credit card numbers.

2. How We Use Your Information

• To provide the AI virtual assistant service, including answering calls, booking appointments, and sending messages.
• To send SMS notifications to business owners about messages and appointments.
• To send appointment confirmations and follow-ups to callers.
• To improve our AI assistant's responses and accuracy.
• To process payments and manage subscriptions.
• To provide customer support.

3. SMS/Text Messaging

AlphaAssist sends SMS messages on behalf of our business customers for the following purposes:

• Notifying business owners of new messages and appointment bookings.
• Sending appointment confirmations to callers who request them.
• Sending follow-up information requested by callers during phone calls.

Message frequency varies based on call volume. Message and data rates may apply. Users can opt out of SMS by replying STOP to any message, and can reply HELP to receive support contact information.

We will not share or sell your mobile information with third parties or affiliates for marketing or promotional purposes. Mobile information collected for the purpose of sending SMS messages is used solely to deliver the service. Information sharing with service providers necessary to deliver SMS (such as our telephony carrier) is covered in Section 4 below.

4. Data Sharing

We do not sell your personal information. We share data only with:

• Service Providers: Twilio (telephony and SMS), OpenAI (AI voice processing), Cartesia (text-to-speech), Stripe (payments), Google (calendar and drive), and Meta (Facebook + Instagram posting) — only as needed to provide the service.
• Your Business Customers: Call transcripts and messages are accessible to the business owner whose AI assistant handled the interaction.
• Legal Requirements: When required by law, subpoena, or court order.

5. Data Retention

Call logs and messages are retained for 90 days. Appointment data is retained for the duration of your subscription plus 30 days. You may request deletion of your data at any time by contacting us.

6. Security

We use industry-standard encryption (TLS/SSL) for data in transit and encrypted storage for data at rest. Access to customer data is restricted to authorized personnel only.

7. Your Rights

You may request access to, correction of, or deletion of your personal data by contacting us at support@alphaassist.cc.

8. Mobile Application (Android)

The AlphaAssist Android app (package cc.alphaassist.mobile) collects the following in addition to the service-side data described above:

• Microphone audio (optional): When you record a 30-second voice sample for voice cloning, the audio is uploaded to our servers and forwarded to Cartesia for synthesis. The audio is retained only as long as needed to create the clone, then deleted. The microphone is not used at any other time.
• Push notification token: When you sign in, the app registers a Firebase Cloud Messaging (FCM) token with our servers so we can deliver new-message and emergency-call alerts. The token is rotated by Android periodically; old tokens are deleted from our database within 24 hours.
• Crash diagnostics: If the app crashes, we send the error name, error message, stack trace, app version, OS version, and device model to our servers to fix the bug. We do not include any personal information or message content in crash reports.
• Authentication credentials: A JSON Web Token (JWT) and refresh token are stored in the Android Keystore (hardware-backed encrypted storage). The JWT expires every 24 hours and is silently refreshed; you can revoke both tokens by signing out or deleting your account from inside the app.

Permissions used: INTERNET and ACCESS_NETWORK_STATE (talk to our API), RECORD_AUDIO (voice cloning, only when you tap "Record sample"), POST_NOTIFICATIONS (push alerts), WAKE_LOCK and VIBRATE (emergency notifications that bypass Do Not Disturb).

Children's privacy: AlphaAssist is a business tool for owners and operators aged 18 or older. The app is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, contact us at support@alphaassist.cc and we will delete it.

Account deletion: You can delete your AlphaAssist account at any time from inside the app at Settings → Delete account, or by emailing support@alphaassist.cc. Deletion takes effect after a 30-day grace period during which you can recover the account by signing in again; after 30 days all account data, call recordings, transcripts, voice clones, and push tokens are permanently removed.

9. Contact

For questions about this privacy policy, contact us at support@alphaassist.cc.