chatley-ai

Privacy Policy

Last updated: April 15, 2026

Introduction

This Privacy Policy governs your access to and use of the Chatley.ai website, applications, products, and services (collectively, the "Services"). The Services are operated by Chatley AI, Inc., a Delaware corporation ("Company," "we," "our," or "us").

By accessing or using our Services, you consent to the collection, use, and sharing of your information as described in this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

Table of Contents

  1. 1. Information We Collect
  2. 2. How We Use Your Information
  3. 3. How We Share Your Information
  4. 4. Cookies and Tracking Technologies
  5. 5. Data Security
  6. 6. Data Retention
  7. 7. Your Privacy Rights
  8. 8. Children's Privacy
  9. 9. International Data Transfers
  10. 10. Changes to This Privacy Policy
  11. 11. Contact Us

1. INFORMATION WE COLLECT

We collect several types of information from and about users of our Services:

1.1 Personal Information You Provide to Us

Account Information: When you register for an account, we collect your name, email address, phone number, company name, and password.

Payment Information: When you subscribe to our paid Services, we collect payment details, billing address, and transaction history. Payment information is processed by our third-party payment processors and is not stored on our servers.

Profile Information: Information you provide in your user profile, such as job title, profile picture, and preferences.

Communications: Content of messages, emails, or support requests you send to us.

User Content: Information you input into our Services, including prompts, configurations, conversation scripts, AI agent settings, and other content you create using our AI tools.

1.2 Information We Collect Automatically

Usage Data: Information about how you interact with our Services, including features used, time spent, actions taken, API calls made, and conversation metrics.

Device Information: Information about your device, including IP address, device type, operating system, browser type, and device identifiers.

Log Data: Server logs, error reports, performance data, and security event logs.

Location Information: General location information derived from your IP address.

1.3 Voice and Audio Data

Call Recordings: When you use our voice conversation features, we record, transcribe, and process audio conversations between your AI agents and end users. By using our voice features, you represent and warrant that you have obtained all necessary consents from end users for the recording and processing of their voice data in accordance with applicable laws, including but not limited to state wiretapping and biometric data laws.

Voice Biometric Data: Audio recordings may contain voice characteristics that could be considered biometric data under certain state laws. We process this data solely to provide transcription and AI conversation services. We do not use voice data for biometric identification or authentication purposes.

1.4 Information from Third Parties

Integration Partners: If you connect our Services with third-party applications (such as CRM systems, communication platforms, or analytics tools), we may receive information from those services in accordance with your authorization and their privacy policies.

Business Partners: Information shared by our business partners, such as referral sources or joint marketing partners.

2. HOW WE USE YOUR INFORMATION

We use your personal information for the following purposes:

2.1 To Provide and Maintain Our Services

  • Create and manage your account and workspace
  • Provide voice, chat, SMS, and related AI agent features you configure
  • Process billing, subscriptions, and service-related communications
  • Provide customer support and operational notices

2.2 To Improve and Develop Our Services

  • Analyze aggregated usage to improve reliability, performance, and security
  • Develop new features and fix defects
  • Conduct internal testing and quality assurance

2.3 AI Model Training and Improvement

We use anonymized and aggregated data derived from your use of the Services to improve our product analytics and application performance. This may include usage patterns, interaction metrics, performance data, and error logs.

What We Do:

  • Use anonymized and aggregated data for product analytics and application performance
  • Monitor errors, abuse, and platform health

What We Don't Do:

  • Sell your personal information as described in Section 3
  • Use your conversation content to train third-party foundational models where contractually prohibited for Enterprise configurations

For Enterprise Customers: Our core infrastructure providers are contractually prohibited from using Chatley AI customer data to train their foundational models. If you have specific data residency or zero-retention requirements, please contact us at security@chatley.ai to configure your account accordingly.

2.4 For Marketing and Communication

  • Send promotional or educational communications where permitted and in line with your preferences
  • Personalize content based on choices you have made in your account or marketing subscriptions

2.5 For Security and Legal Compliance

  • Detect, prevent, and respond to fraud, abuse, and security incidents
  • Enforce our agreements and comply with legal obligations

3. HOW WE SHARE YOUR INFORMATION

We do not sell your personal information. However, we may share your information in the following circumstances:

3.1 Service Providers and Subprocessors

We share information with third-party service providers who help us operate, provide, improve, and market our Services. Our primary voice AI infrastructure and telephony are powered by enterprise-certified providers that hold active SOC 2 Type II, HIPAA, and PCI DSS certifications.

Through our infrastructure integrations, your data may be processed by service providers for the following purposes, depending on your specific configuration and feature usage:

  • Hosting, compute, telecommunications, and AI inference for configured agents
  • Logging, monitoring, security operations, and incident response
  • Email, ticketing, customer success, and billing tools
  • Analytics and error reporting as enabled for your workspace

For a complete and up-to-date list of our subprocessors — including their legal entity names, data locations, and compliance certifications — please visit our Subprocessor Registry at [chatley.ai/subprocessors](https://www.chatley.ai/subprocessors).

These service providers are only permitted to use your information to provide services to us and are required to maintain the confidentiality and security of your information in accordance with applicable data protection laws.

3.2 Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of our business or assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.

3.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities. We may also disclose your information to:

  • Law enforcement or regulators when required by applicable law or lawful process
  • Professional advisers (such as lawyers or auditors) where necessary and subject to confidentiality obligations

3.4 SMS and Text Messaging Data

Phone numbers collected for the purpose of SMS and text messaging communications are used exclusively for sending transactional messages, agent-assisted communications, and marketing messages on behalf of the specific business client you have consented to hear from. We do not share or sell these phone numbers to third parties for their own marketing purposes. All messaging campaigns are conducted in compliance with applicable laws and carrier guidelines.

3.5 With Your Consent

We may share your information with third parties when you have given us your consent to do so.

3.6 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you with third parties for research, marketing, analytics, or other purposes.

4. COOKIES AND TRACKING TECHNOLOGIES

4.1 Types of Cookies We Use

We use cookies and similar tracking technologies to collect information about your interactions with our Services:

  • Strictly necessary cookies for sign-in, security, and core functionality
  • Functional cookies to remember preferences you set
  • Analytics cookies to understand usage and improve the Services, where permitted
  • Advertising or marketing cookies only where you have consented, as applicable

4.2 Your Cookie Choices

Most web browsers allow you to control cookies through their settings preferences. To opt out of targeted advertising, you can visit:

  • Industry opt-out resources such as the NAI or DAA consumer choice tools, where available in your region
  • Your device or browser settings for ad tracking and cookie controls

5. DATA SECURITY

We implement appropriate technical and organizational security measures to protect your personal information from unauthorized access, disclosure, alteration, and destruction. These measures include:

  • Encryption in transit and at rest where appropriate for the Services we operate
  • Access controls, authentication, and least-privilege practices for our systems
  • Monitoring, logging, and vulnerability management
  • Vendor diligence and contractual safeguards for subprocessors

Chatley AI's voice infrastructure runs on a SOC 2 Type II certified platform. Our application layer is currently in SOC 2 Type II readiness.

No method of transmission over the Internet or electronic storage is 100% secure. While we implement commercially reasonable security measures, we cannot guarantee absolute security.

5.1 Data Breach Notification

In the event of a data breach that affects your personal information, we will notify you and any applicable regulatory authorities in accordance with applicable laws, without undue delay.

6. DATA RETENTION

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Specific Retention Periods:

  • Account and profile data for the life of your account and a reasonable period thereafter for backups and legal holds
  • Billing and transaction records as required for tax, accounting, and regulatory obligations
  • Security and abuse-prevention logs for periods needed to protect the platform and meet compliance requirements
  • Marketing preferences until you withdraw consent or we delete them in line with this Policy

6.1 Your Right to Request Deletion

You may request deletion of your personal information at any time by contacting us at security@chatley.ai. We will comply with your request subject to legal and contractual obligations.

7. YOUR PRIVACY RIGHTS

Depending on your location, you may have the following rights regarding your personal information:

  • Access to the personal information we hold about you
  • Correction of inaccurate or incomplete information
  • Deletion, subject to legal and contractual exceptions
  • Restriction or objection to certain processing, where applicable law provides
  • Data portability, where required by applicable law

California Residents (CCPA/CPRA): You have the right to know what personal information we collect, to delete it, to opt out of its sale (we do not sell personal information), and to non-discrimination for exercising your rights.

EEA/UK Residents (GDPR): You have the additional right to lodge a complaint with a supervisory authority.

To exercise any of these rights, contact us at security@chatley.ai.

8. CHILDREN'S PRIVACY

Our Services are not intended for children under 13 years of age (or under 16 in the EEA). We do not knowingly collect personal information from children under 13 (or 16 in the EEA). If you believe your child has provided us with personal information, please contact us at security@chatley.ai and we will take steps to remove that information.

9. INTERNATIONAL DATA TRANSFERS

We are based in the United States and the information we collect is governed by U.S. law. If you are accessing our Services from outside the United States, please be aware that information collected through our Services may be transferred to, processed, stored, and used in the United States and other jurisdictions.

For EEA, UK, and Swiss Users: We rely on Standard Contractual Clauses approved by the European Commission for transfers of personal data to countries that do not provide an adequate level of data protection. You may request a copy of these clauses by contacting us at security@chatley.ai.

10. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by means of a notice on our website prior to the changes becoming effective. The date at the top of this Privacy Policy indicates when it was last updated.

11. CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Chatley AI, Inc. 252 NW 29th St Miami, FL 33127

Email: security@chatley.ai

We will respond to your inquiry within 30 days.

By using our Services, you acknowledge that you have read and understood this Privacy Policy.