We only collect what we need to deliver and improve your CynAI service. Contact Information — name, company name, email address, and phone number when you book a demo, audit, or sign up for any service. Business Data — product catalogs, service offerings, FAQs, pricing, policies, and operational data you provide during onboarding. Conversation Data — chat transcripts, voice call records, and email content processed by CynAI agents on your behalf across all channels. CRM & System Data — contact records, order history, support interactions, and workflow data synced between CynAI and your connected business systems. Usage Data — how you interact with our website and dashboard. Payment Information — processed securely through our payment provider. We do not store card details directly.
Every piece of data has a specific stated purpose. To deliver your CynAI service — set up, configure, train, and deploy your AI agents correctly. To improve your service — monthly performance reports, optimisation recommendations, and updates. To communicate with you — onboarding updates, performance reports, and maintenance notices. To process your payments. To comply with the law — where required by PIPEDA, CASL, CCPA, CAN-SPAM, NDPR, or GDPR where applicable. We do not use your data for advertising. Chatpliance does not run ads and does not use client or customer data to target or profile anyone for marketing purposes.
Chatpliance Consultancy does not sell, rent, trade, or share your personal data or your customers’ personal data with any third party for commercial purposes. Full stop. Your store data, customer conversation data, CRM records, and business information are used exclusively to deliver your contracted CynAI service — nothing else. We share data with a third party only when necessary to deliver your service — for example, syncing contact records with your authorised HubSpot or Salesforce account. We share only the minimum required.
Your data belongs to you — not to Chatpliance. You have the following rights at any time: Right to Access — request a copy of all data we hold about you or your business. Right to Correction — request that inaccurate or incomplete data be corrected. Right to Deletion — request that your data be permanently deleted from our systems. Right to Portability — request your data in a portable format. Right to Object — object to how we are processing your data. On Cancellation: we deliver a full export of your data within 7 business days and permanently delete it from our systems within 30 days — confirmed to you in writing. To exercise any of these rights, email info@chatplianceconsultancy.com. We respond within 30 days.
Secure Storage — all data is stored using industry-standard encryption at rest and in transit. Access Controls — only authorised Chatpliance team members can access client data and only to the extent required to deliver your service. No Cross-Client Sharing — your data is never used to train AI models for other clients. Breach Notification — if a data breach affects your account, we notify you within 72 hours of discovery. Honest note: No system is 100% breach-proof. What we commit to is following best practices, acting immediately if something goes wrong, and telling you within 72 hours — not hiding it.
Canada (PIPEDA): Right to know what personal information we hold, right to access and correct your personal information, right to withdraw consent for data processing at any time, right to file a complaint with the Office of the Privacy Commissioner of Canada. USA (CCPA + CAN-SPAM): Right to know what personal data we collect and how we use it, right to request deletion of your personal data, we do not sell personal data — standing policy for all regions, every automated email includes a clear unsubscribe option — CAN-SPAM compliant. West Africa (NDPR Framework): Consent-based processing, right to access, right to correction, right to deletion, data minimisation at core. EU (GDPR where applicable): Right to Access, Rectification, Erasure, Data Portability, and Right to Object. Data Processing Addendum available on request for clients with EU customer data obligations.
To deliver CynAI services we work with: Shopify, WooCommerce, Magento, BigCommerce — store integration. HubSpot, Salesforce, Klaviyo — CRM sync. Twilio — voice processing. WhatsApp, Messenger, SMS providers — messaging delivery. We share only the minimum data necessary with each provider. We do not authorise any provider to use your data for their own marketing. Cookies: The Chatpliance website uses cookies to improve your experience, remember your session, and improve our content. You can disable cookies through your browser settings. We do not use advertising cookies. No Google DART cookies. No ad network tracking of any kind.
For any privacy questions, data access requests, or deletion requests — contact us directly. We respond within 30 days. Chatpliance Consultancy Inc · info@chatplianceconsultancy.com · +1 438-231-0888 · London, Ontario, Canada · chatplianceconsultancy.com. This Privacy Policy is written to cover all current and future AI automation services Chatpliance may develop or deliver. You will not need to review and sign a new Privacy Policy every time we add a capability. This policy is your standing data agreement — updated only when a material change requires it, with a minimum of 14 days notice to active clients.
