Privacy Policy
Last updated: June 12, 2026
⚠️ TCPA Notice: AVA is an automated calling platform. By using AVA to contact phone numbers, you represent and warrant that you have obtained all required prior express written consent under the Telephone Consumer Protection Act (TCPA) and applicable state laws. AVA Digital Architecture is not liable for your compliance with calling regulations.
1. Who We Are
AVA is operated by AVA Digital Architecture ("we," "us," or "our"). AVA is an AI voice agent platform that enables businesses to deploy automated calling, lead qualification, and CRM automation workflows.
2. Information We Collect
We collect the following categories of information:
- Account information: Name, email address, password (hashed), Discord identity (if used for login).
- Billing information: Credit balance, plan tier, top-up history. Payment processing is handled by third-party providers and we do not store raw card data.
- Usage data: Calls placed, transcripts generated, campaign activity, webhook events, agent configurations.
- CRM integration data: Contact information passed via GoHighLevel or other CRM webhooks (name, phone number, custom fields).
- Call recordings and transcripts: Audio and text transcripts of AI-handled calls are stored for your review in your dashboard.
- Technical data: IP address, browser type, device identifiers, log data.
3. How We Use Your Information
- To provide and operate the AVA platform and your AI voice agents.
- To process payments and manage your subscription.
- To send transactional emails (account confirmation, billing receipts).
- To improve product reliability and diagnose technical issues.
- To comply with legal obligations.
We do not sell your personal data to third parties. We do not use call transcripts or contact data for AI model training without explicit consent.
4. Third-Party Services
AVA integrates with and transmits data to the following third-party providers:
- Twilio — telephony infrastructure (your Bring Your Own Twilio credentials)
- Deepgram — real-time speech-to-text and text-to-speech
- OpenAI — large language model inference
- GoHighLevel (GHL) — CRM integration via webhook
- Supabase / PostgreSQL — database hosting
- Discord — OAuth2 authentication (optional)
- Apify — optional web data enrichment
Each provider's use of your data is governed by their own privacy policies.
5. Data Retention
Call transcripts and campaign records are retained for as long as your account is active. You may request deletion of your data by contacting us at the address below. Account data is deleted within 30 days of account termination.
6. Security
We use industry-standard encryption (TLS in transit, encrypted at rest) and access controls. API tokens (Twilio, Deepgram, OpenAI) are stored encrypted and never exposed in logs or reports.
7. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you.
- Request correction of inaccurate data.
- Request deletion of your data ("right to be forgotten").
- Object to or restrict certain processing.
- Data portability (export your transcripts and campaign data).
To exercise these rights, contact us at our contact page.
8. Cookies
We use session cookies necessary for authentication and platform operation. We do not currently use advertising or tracking cookies. You can disable cookies in your browser settings, but this may affect platform functionality.
9. Children's Privacy
AVA is not directed at individuals under 18 years of age. We do not knowingly collect data from minors.
10. Changes to This Policy
We may update this Privacy Policy. We will notify registered users of material changes via email and update the "Last updated" date above.
11. Contact Us
Questions about this Privacy Policy? Contact us here.
⚠️ Legal Disclaimer: This is a template Privacy Policy. You should have this document reviewed by qualified legal counsel before publishing, especially given AVA's nature as an automated calling platform subject to TCPA, GDPR, and other regulations.