Privacy Policy

BookLine AI ("we," "us," or "our") operates the BookLine AI platform, including the website at booklineai.com and related services (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

1. Information We Collect

1.1 Information You Provide

• Account Information: When you register, we collect your name, email address, phone number, and password.
• Business Information: Business name, address, phone number, hours of operation, services offered, staff details, and other business configuration data.
• Payment Information: We use Stripe to process payments. We do not store your full credit card number, expiration date, or CVV on our servers. Stripe handles all payment data in accordance with PCI-DSS standards.
• Communications: When you contact us via email, forms, or other channels, we collect the content of those communications.

1.2 Information Collected Automatically

• Call Data: When our AI assistant handles calls for your business, we collect call metadata including caller phone numbers, call duration, timestamps, call direction, and call outcomes.
• Call Recordings and Transcripts: Calls handled by our AI assistant may be recorded and transcribed for quality assurance, service improvement, and your review. These recordings and transcripts are accessible through your portal dashboard.
• Usage Data: We collect information about how you interact with our Service, including pages visited, features used, and actions taken within the portal.
• Device and Browser Information: IP address, browser type, operating system, and device identifiers.

1.3 Information from Third Parties

• Integration Data: If you connect third-party services (e.g., Google Calendar, Square), we may receive data from those services as authorized by you.
• Voice AI Provider: We use Vapi as our voice AI infrastructure provider. Call processing data flows through their systems in accordance with their privacy practices.

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service
• Process your transactions and manage your subscription
• Configure and operate your AI phone assistant
• Generate call analytics, summaries, and sentiment analysis
• Send transactional emails (account verification, password resets, billing receipts)
• Send service-related notifications you've opted into (daily call summaries, missed call alerts)
• Respond to your inquiries and provide customer support
• Detect, prevent, and address fraud, abuse, or technical issues
• Comply with legal obligations

3. How We Share Your Information

We do not sell your personal information. We may share information in the following circumstances:

• Service Providers: We share data with third-party vendors who help us operate our Service, including:
  • Vapi — Voice AI call processing
  • Stripe — Payment processing
  • Resend — Transactional email delivery
  • Infrastructure providers — Cloud hosting and data storage
• Business Team Members: If you add team members to your business account, they may access business data including call logs, analytics, and settings based on their assigned role.
• Legal Requirements: We may disclose information if required by law, regulation, legal process, or governmental request.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

4. Call Recording and Caller Privacy

Our AI assistant handles phone calls on behalf of your business. Important details regarding call handling:

• Callers interact with an AI assistant, and calls may be recorded and transcribed.
• As the business owner, you are responsible for complying with applicable call recording consent laws in your jurisdiction (one-party vs. two-party consent states).
• We provide configuration options for your AI assistant to disclose its AI nature and recording status to callers.
• Caller phone numbers and call content are stored securely and accessible only to authorized members of your business account and BookLine AI administrators.
• Call recordings are retained for the duration of your active subscription plus 30 days after cancellation, after which they are permanently deleted.

5. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Secure password hashing (bcrypt)
• JWT-based authentication with short-lived access tokens
• Role-based access controls within the platform
• Regular security assessments of our infrastructure

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

• Account Data: Retained for the duration of your account plus 90 days after deletion.
• Call Logs and Transcripts: Retained for the duration of your active subscription plus 30 days.
• Call Recordings: Retained for the duration of your active subscription plus 30 days.
• Payment Records: Retained as required by applicable tax and financial regulations.
• Contact Form Submissions: Retained for 12 months.

7. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal data, subject to legal retention requirements.
• Portability: Request your data in a structured, machine-readable format.
• Opt-Out: Unsubscribe from marketing communications at any time via email preferences or by contacting us.

To exercise any of these rights, contact us at [email protected].

8. Cookies and Tracking

We use essential cookies to maintain your authenticated session in the portal. We do not use third-party advertising cookies or cross-site tracking technologies on our platform.

9. Children's Privacy

Our Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• The right to know what personal information we collect, use, and disclose
• The right to request deletion of your personal information
• The right to opt-out of the sale of personal information (we do not sell personal information)
• The right to non-discrimination for exercising your privacy rights

11. International Data Transfers

Our Service is hosted in the United States. If you access the Service from outside the United States, your information will be transferred to and processed in the United States. By using the Service, you consent to this transfer.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last Updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

BookLine AI
Email: [email protected]
General: [email protected]
Website: booklineai.com