This policy explains what information Vyrrah Recaller ("we", "us") collects when a practice ("Client") uses our missed-call recovery service, and how we handle it.
We do not sell personal information. We do not use caller data for advertising.
We use Twilio (telephony/SMS), Supabase (database hosting), SendGrid (email), and an AI provider (OpenAI and/or Anthropic) to generate replies. Each receives only the data needed to perform its function. Where we handle protected health information, we maintain Business Associate Agreements (BAAs) with applicable sub-processors.
Text-backs are sent in response to an inbound call to the Client. Recipients can stop messages at any time by replying STOP, and get help by replying HELP. Message and data rates may apply.
We retain conversation and analytics data for as long as the Client's account is active and as needed to provide reporting. Clients may request export or deletion of their data by contacting us.
Access to production data is restricted and transmitted over encrypted connections. No method of transmission is perfectly secure, but we apply commercially reasonable safeguards.
Clients and their callers may request access to, correction of, or deletion of personal information by emailing hello@vyrrahlabs.com.
We may update this policy; material changes will be communicated to active Clients.
Contact: Vyrrah Labs · hello@vyrrahlabs.com · This document is a general template and not legal advice. Have counsel review before relying on it for regulated (e.g. HIPAA) use.