Privacy Policy

Introduction

Welcome to Ghostly ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our voice AI application and related services.

Ghostly provides AI-powered voice agents and automation tools that help businesses operate with minimal human intervention. Our services include voice agent creation, Google integrations, VAPI integration, and various business automation features.

Information We Collect

Personal Information

• • Account information (email address, username, password)
• • Profile information you choose to provide
• • Contact information for customer support
• • Billing and payment information (processed securely through third-party providers)

Voice and Audio Data

• • Voice recordings from your AI voice agents
• • Audio transcriptions and processed voice data
• • Voice agent configuration and training data
• • Call logs and conversation metadata

Integration Data

• • Google account integration data (with your consent)
• • Google Sheets data you authorize us to access
• • Third-party API keys and connection credentials
• • Integration usage and performance metrics

Technical Information

• • Device and browser information
• • IP address and location data
• • Usage analytics and service performance data
• • Error logs and debugging information

How We Use Your Information

• • Service Delivery: To provide, maintain, and improve our AI voice agent services
• • AI Processing: To train and optimize voice AI models for better performance
• • Account Management: To manage your account, process payments, and provide customer support
• • Communication: To send service updates, security notifications, and respond to inquiries
• • Analytics: To analyze usage patterns and improve our services
• • Security: To detect, prevent, and address technical issues and security threats
• • Legal Compliance: To comply with applicable laws and regulations

Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

• • Service Providers: With trusted third-party providers (VAPI, Google APIs) necessary for service delivery
• • Legal Requirements: When required by law, court order, or government request
• • Business Protection: To protect our rights, property, or safety, and that of our users
• • Consent: With your explicit consent for specific purposes
• • Business Transfer: In connection with a merger, acquisition, or sale of assets

Data Security

We implement industry-standard security measures to protect your information:

• • Encryption in transit and at rest
• • Secure authentication and access controls
• • Regular security audits and monitoring
• • Limited access to personal data on a need-to-know basis
• • Secure data storage with reputable cloud providers

Data Retention and Deletion

We retain your information only as long as necessary to provide our services and comply with legal obligations:

• • Account data: Retained while your account is active and for a reasonable period after deletion
• • Voice recordings: Retained as configured in your settings, with options for automatic deletion
• • Usage analytics: Anonymized and retained for service improvement purposes
• • Legal compliance: Some data may be retained longer to meet regulatory requirements

Your Rights and Controls

You have the following rights regarding your personal information:

• • Access: Request a copy of your personal information
• • Correction: Update or correct inaccurate information
• • Deletion: Request deletion of your personal information
• • Portability: Receive your data in a structured, machine-readable format
• • Restriction: Limit how we process your information
• • Objection: Object to certain types of processing
• • Consent Withdrawal: Withdraw consent for specific processing activities

International Data Transfers

Your information may be processed and stored in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses and adequacy decisions where applicable.

Children's Privacy

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will take steps to delete the information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through our service. Your continued use of our services after changes become effective constitutes acceptance of the revised policy.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us: