Legal

Privacy Policy

Last updated: April 20, 2026 · Effective: April 20, 2026

RevoAI (“RevoAI,” “we,” “us”) operates an AI receptionist platform that answers calls and text messages on behalf of local businesses. This Privacy Policy explains what personal information we collect, how we use it, who we share it with, and the rights you have.

We’re a Canadian company and we follow the Personal Information Protection and Electronic Documents Act (PIPEDA), Canada’s Anti-Spam Legislation (CASL), and applicable provincial privacy laws. If you’re in the European Economic Area or California, additional rights described below may apply to you.

1. Who this policy applies to

This policy applies to (a) customers who sign up for a RevoAI account, (b) end users whose calls and messages are handled by RevoAI on behalf of one of our customers, and (c) website visitors at revoai.ca. Our customers are independent businesses; when they use RevoAI to communicate with their own customers, they act as the data controller and we act as their service provider.

2. Information we collect

Account information

When you create a RevoAI account, we collect your name, email address, business name, phone number, time zone, and the configuration details you provide about your business (hours, services, FAQs, staff, locations).

Communication content

When RevoAI answers a call or message on your behalf, we process: phone numbers, message bodies, audio recordings of calls, AI-generated transcripts, the AI’s responses, and any booking, contact, or note created from the conversation. Audio and transcripts are retained for the life of your account so you can review them in your dashboard, and are deleted on request.

Payment information

Billing is handled by Stripe. We never receive or store your full payment card details. We do receive limited information from Stripe — last four digits, card brand, expiry, and billing email — for invoice display.

Usage and device data

We collect log data when you use the dashboard (pages viewed, actions taken, IP address, browser, OS, timestamps) and product analytics events that help us improve the service. We do not sell this data.

3. How we use information

  • To provide the service — answer calls and texts, book appointments, send confirmations and reminders, surface conversations in your dashboard.
  • To process payments, send invoices, and prevent fraud.
  • To improve product quality — diagnose bugs, train internal evaluations, and measure feature performance. We do not use your customers’ conversation content to train third-party AI models.
  • To send service-related emails (billing, downtime, security). You can opt out of marketing email at any time; we’ll still send transactional messages required to operate your account.
  • To comply with legal obligations and respond to lawful requests.

4. AI processing

RevoAI uses third-party AI providers, including Anthropic Claude for language understanding, Retell for voice orchestration, and ElevenLabs for voice synthesis. Conversation content is sent to these providers solely to generate the AI’s response and is not used by them to train their public models when accessed through their commercial APIs. We require contractual data-protection commitments from each provider.

5. Sharing of information

We share personal information only with:

  • Service providers who run our infrastructure: Vercel (hosting), Neon (database), Clerk (authentication), Stripe (billing), Twilio (telephony), Nylas (calendar sync), Resend (email), Pusher (real-time updates), Inngest (background jobs), and the AI providers listed above.
  • Our customers — conversations conducted on their behalf are accessible to them in their dashboard.
  • Legal authorities, when required by law or to protect rights, safety, and property.
  • An acquirer, if RevoAI is involved in a merger, acquisition, or asset sale — we will notify affected users.

We do not sell personal information.

6. Data retention

We retain account data for as long as your account is active. After cancellation, account and conversation data is retained for 90 days to support reactivation and is then deleted, except where we’re required to retain records longer for tax, billing, or legal reasons. You can request earlier deletion at info@revoai.ca.

7. Security

Data is encrypted in transit (TLS 1.2+) and at rest. Access to production systems is restricted to authorized personnel and audited. We use industry-standard practices, but no internet-connected service can guarantee absolute security; please use a strong, unique password for your RevoAI account.

8. Your rights

Depending on where you live, you may have the right to access, correct, export, or delete your personal information, restrict or object to certain processing, withdraw consent, or lodge a complaint with a data-protection authority. To exercise any of these rights, email info@revoai.ca from the address on your account. We respond within 30 days.

9. International transfers

RevoAI is operated from Canada and processes data in Canada and the United States. Where we transfer personal information across borders, we use contractual safeguards that comply with applicable law.

10. Children

RevoAI is intended for businesses, not individuals under 18. We do not knowingly collect personal information from children. If you believe we have, contact us and we will delete it.

11. Changes to this policy

We may update this policy. Material changes will be communicated by email and posted at this URL with a new effective date. Continued use of RevoAI after the effective date constitutes acceptance.

12. Contact

RevoAI, Toronto, Ontario, Canada
Email: info@revoai.ca

Questions? Email info@revoai.ca and we’ll get back to you within one business day.