Legal

Privacy Policy

Effective Date: May 18, 2026  ·  Last Updated: May 18, 2026

At Topher AI, your privacy matters. This policy explains what data we collect, why we collect it, how we use it, and what rights you have. We are committed to being transparent and to handling your data responsibly.

1. Overview

This Privacy Policy describes how Topher AI ("Topher AI," "we," "us," or "our") collects, uses, and discloses information about you when you use our website at topherai.com and our AI receptionist and lead automation services (collectively, the "Services").

This policy applies to:

  • Clients — businesses and individuals who subscribe to our Services
  • End Users — customers, leads, and callers who interact with our AI on behalf of our clients
  • Website Visitors — anyone who visits our website

Our clients act as data controllers for the personal data of their customers and leads processed through our Services. Topher AI acts as a data processor in those contexts, processing data on our clients' behalf according to their instructions and this Privacy Policy.

2. Information We Collect

Information You Provide Directly

When you create an account, subscribe to our Services, or contact us, we collect:

  • Name, email address, and phone number
  • Business name, type, and contact information
  • Billing and payment information (processed securely via our payment processor)
  • Communications you send to us (emails, support requests, feedback)
  • Any additional information you choose to provide in your account profile

Information Collected Automatically

When you use our website or Services, we automatically collect:

  • IP address, browser type, operating system, and device information
  • Pages visited, links clicked, and time spent on our website
  • Referring URLs and search terms
  • Log data including access times and error logs
  • Usage patterns and feature interactions within the platform

Call & Conversation Data

When our AI handles calls on your behalf, we collect:

  • Caller phone numbers and call metadata (time, duration, direction)
  • Voice recordings of calls (where legally permitted and disclosed to callers)
  • Transcripts and summaries of conversations
  • Lead qualification data extracted from conversations (name, budget, timeline, etc.)
  • Appointment booking information
  • SMS and text message content sent and received through our platform

Information from Third Parties

We may receive information about you from third-party services you connect to our platform, such as CRM systems, calendar applications, and real estate databases.

3. How We Use Your Information

We use the information we collect to:

Purpose Examples
Provide Services Answer calls, qualify leads, send alerts, book appointments
Account Management Manage your subscription, process payments, send invoices
Communication Respond to support requests, send service updates and alerts
Improve Services Analyze usage patterns, improve AI accuracy and quality
Safety & Security Detect fraud, abuse, or violations of our Terms of Service
Legal Compliance Comply with applicable laws and respond to legal requests
Marketing Send promotional communications (with your consent, where required)

We do not sell your personal data to third parties for their marketing purposes.

4. Information Sharing

We do not sell, rent, or trade your personal information. We may share your information in the following limited circumstances:

Service Providers

We share information with third-party vendors who help us operate our Services, including cloud hosting providers, payment processors, voice and telephony providers, analytics services, and customer support tools. These providers are contractually obligated to protect your data and use it only as directed by us.

Business Transfers

If Topher AI is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

Legal Requirements

We may disclose information if we believe disclosure is required by law, subpoena, court order, or other governmental request, or when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, or investigate fraud.

With Your Consent

We may share your information in other ways when you have given us your explicit consent to do so.

5. Third-Party Services

Our Services integrate with the following categories of third-party providers. Each has its own privacy practices:

Provider Type Purpose Data Shared
Voice AI Platform (e.g., Vapi) AI voice call processing Call audio, transcripts, conversation data
AI Language Models (e.g., OpenAI, Anthropic) AI reasoning, conversation generation, lead qualification Conversation text, lead metadata, qualification context
Telephony / SMS (e.g., Telnyx) Phone & SMS delivery Phone numbers, message content, call metadata
Database (e.g., Supabase) Data storage & management Lead data, conversation logs, account data
Automation (e.g., n8n) Workflow & integration automation Lead data, trigger events
Calendar (e.g., Google Calendar, Calendly) Appointment scheduling Appointment details, contact information
Payment (e.g., Stripe) Subscription billing Payment method details, billing address
Analytics Website & product usage Usage events, IP address, device info

We encourage you to review the privacy policies of these providers to understand how they handle your data.

6. Call & Conversation Data

Recordings & Transcripts

Our AI may record and transcribe phone calls to provide our Services. These recordings and transcripts are used to: deliver real-time AI responses, generate lead qualification summaries and alerts, improve our AI models (in anonymized, aggregated form only), and resolve disputes or support requests.

Your Disclosure Obligations

If you use our call recording features, you are responsible for disclosing to callers that their call may be recorded, as required by applicable law. Many U.S. states require consent from all parties to a call before recording. Topher AI is not responsible for your compliance with applicable call recording laws.

End User Data (Your Customers)

When your customers interact with our AI on your behalf, we process their personal data (names, phone numbers, preferences, budget information, etc.) as your data processor. You are the data controller for this information and are responsible for having appropriate legal bases to collect and process it, and for providing any required notices to your customers.

7. Cookies & Tracking Technologies

We use cookies, web beacons, and similar tracking technologies on our website to:

  • Keep you logged into your account
  • Remember your preferences and settings
  • Analyze website traffic and usage patterns
  • Improve our website's performance and user experience

Types of Cookies We Use

  • Essential cookies: Required for the website to function. Cannot be disabled.
  • Analytics cookies: Help us understand how visitors use our site (e.g., Google Analytics).
  • Preference cookies: Remember your settings and choices.

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our website. For more information, see your browser's help documentation.

8. Data Retention

We retain your personal information for as long as necessary to provide our Services and fulfill the purposes described in this policy, or as required by law.

  • Account data: Retained for the duration of your subscription plus 90 days after account closure
  • Call recordings: Retained for 90 days by default; clients may configure shorter retention periods
  • Transcripts and lead data: Retained for the duration of your subscription
  • Billing records: Retained for 7 years as required by applicable tax and accounting laws
  • Website analytics: Retained for up to 26 months in aggregated or anonymized form

When data is no longer needed, we delete or anonymize it in a secure manner. You may request earlier deletion of your data by contacting us (see Section 15).

9. Security

We implement industry-standard technical, administrative, and physical security measures to protect your information against unauthorized access, disclosure, alteration, and destruction. These measures include:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Access controls and authentication requirements for our systems
  • Regular security reviews and vulnerability assessments
  • Employee training on data security and privacy practices
  • Secure, reputable third-party infrastructure providers

No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee its absolute security. If you believe your account has been compromised, contact us immediately at cs@topherai.com.

10. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request that we correct inaccurate or incomplete data
  • Deletion: Request that we delete your personal data (subject to certain exceptions)
  • Portability: Request your data in a machine-readable format
  • Opt-Out: Opt out of marketing communications at any time
  • Restriction: Request that we restrict certain processing of your data

To exercise any of these rights, contact us at cs@topherai.com. We will respond within 30 days. We may need to verify your identity before fulfilling your request.

Marketing Opt-Out

You can unsubscribe from our marketing emails by clicking the "unsubscribe" link in any marketing email, or by contacting us directly. Note that even if you opt out of marketing emails, we may still send you transactional messages related to your account and Services.

11. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

Right to Know

You have the right to know what personal information we collect, use, disclose, and sell (we do not sell personal information). You may request this information up to twice per 12-month period.

Right to Delete

You have the right to request deletion of your personal information, subject to certain exceptions (such as when we need the data to complete a transaction or comply with a legal obligation).

Right to Correct

You have the right to request correction of inaccurate personal information we maintain about you.

Right to Opt-Out of Sale or Sharing

We do not sell your personal information as defined under the CCPA, nor do we share it for cross-context behavioral advertising purposes.

Right to Non-Discrimination

We will not discriminate against you for exercising your CCPA rights.

How to Submit a Request

To submit a CCPA request, contact us at cs@topherai.com with "California Privacy Request" in the subject line. We will verify your identity and respond within 45 days (extendable by an additional 45 days when necessary).

12. Children's Privacy

Our Services are designed for business use and are not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we learn we have inadvertently collected such information, we will delete it promptly. If you believe we have collected information from a child under 13, please contact us at cs@topherai.com.

13. International Users

Topher AI is based in the United States. If you access our Services from outside the United States, your information will be transferred to and processed in the United States, where data protection laws may differ from those in your country.

By using our Services, you consent to this transfer. If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we will ensure that any such transfers are made in compliance with applicable data protection laws, including through the use of Standard Contractual Clauses where required.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last Updated" date at the top of this page and, where appropriate, notify you by email or through a notice on our website.

Your continued use of our Services after any changes to this Privacy Policy constitutes your acceptance of the updated policy.

15. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or our data practices, please contact us:

Topher AI — Privacy Team

Email: cs@topherai.com

Phone: (213) 898-6724

Hours: Monday–Friday, 9am–6pm PST

We take privacy inquiries seriously and will respond to your request within 30 days.