This page displays the site privacy policy in full. Paste or edit your complete privacy policy in the rich-text area below so visitors can read how their data is handled. Last updated: 2025-11-03.
Got it. I’ve tuned your Privacy Policy for the Atlas Flow AI agents use-case (voice + chat + reviews/GBP), keeping your business details intact and avoiding overpromising. I focused on: call/voice recording & transcripts, AI vendors, telephony/usage data, automated decision-making disclosures, opt-outs/consent, retention, and AU compliance notes.
Below is a ready-to-paste updated version.
Last updated June 02, 2025
This Privacy Notice for Atlas Flow (“we”, “us”, or “our”) describes how and why we access, collect, store, use, and/or share (“process”) your personal information when you use our services (“Services”), including our AI agents for voice calls and messaging (collectively, “AI Products”).
Our Services include:
Our websites (e.g., http://www.atlas-flow.com) that link to this Notice
Our web or mobile applications that link to this Notice
AI Products embedded into phone systems, web chat widgets, messaging channels, and review/GBP tools
Other related interactions (sales, marketing, events, support)
Questions or concerns? Email [email protected].
What personal information do we process? Depending on how you interact with us and the AI Products, we may process contact details, call audio, call and message transcripts, chat content, business profile data, booking information, and technical/usage data. See 1. WHAT INFORMATION DO WE COLLECT?
Sensitive information? We do not intentionally process sensitive information. If a caller or user voluntarily shares sensitive data with an AI agent, we will handle it as described in this Notice and ask the user to avoid sharing unnecessary sensitive information.
Third parties? We use trusted service providers for telephony, AI inference, analytics, payments, CRM/communications, and reviews/GBP operations. See 3. WHEN AND WITH WHOM DO WE SHARE…
How do we use information? To provide and improve AI Products; book appointments; send confirmations; request reviews; provide customer support; ensure security/fraud prevention; comply with law. See 2. HOW DO WE PROCESS…
AI disclosure. Our AI Products are assistive. They help collect information, draft responses, and book requests. We do not rely on automated decisions that produce legal or similarly significant effects without human oversight. See 5. DO WE OFFER AI-BASED PRODUCTS?
Security. We use reasonable technical and organisational measures, but no system is 100% secure. See 8. HOW DO WE KEEP YOUR INFORMATION SAFE?
Your rights. Depending on your location, you may have access, correction, deletion, portability, and objection/opt-out rights. See 10–13.
Opt-outs. Reply STOP to SMS; follow email unsubscribe links; manage cookies in your browser.
Contact. [email protected].
WHAT INFORMATION DO WE COLLECT?
HOW DO WE PROCESS YOUR INFORMATION?
WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?
DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?
DO WE OFFER ARTIFICIAL INTELLIGENCE-BASED PRODUCTS?
HOW DO WE HANDLE YOUR SOCIAL LOGINS?
HOW LONG DO WE KEEP YOUR INFORMATION?
HOW DO WE KEEP YOUR INFORMATION SAFE?
DO WE COLLECT INFORMATION FROM MINORS?
WHAT ARE YOUR PRIVACY RIGHTS?
CONTROLS FOR DO-NOT-TRACK FEATURES
DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?
DO OTHER REGIONS HAVE SPECIFIC PRIVACY RIGHTS?
DO WE MAKE UPDATES TO THIS NOTICE?
HOW CAN YOU CONTACT US ABOUT THIS NOTICE?
HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?
In Short: We collect personal information you provide when you use our Services or AI Products, contact us, or transact with us.
Personal Information Provided by You (examples; will vary by feature):
Identity & Contact: names, company, role, phone numbers, email addresses, mailing addresses, contact preferences
Account & Profile: usernames, marketing preferences, review links you provide
Service Content (AI Products): call audio, voicemails, call metadata (timestamps, duration, caller ID, routing), transcripts of calls and chats, messages sent through web chat/social channels, booking details (requested service, address, preferred time windows), and notes you or we add
Business Profile (for your account): service area, services offered, scheduling/booking rules, pricing ranges you configure
Payment Data: processed by Stripe; we receive limited records (e.g., last4, status, amounts). See Stripe’s privacy notice for details.
Sensitive Information. We do not seek sensitive information (e.g., health, religious beliefs). If you disclose it during a call or chat, we will process it only to the extent required to provide the requested service and then minimise/limit further processing.
Social Logins. If you choose to register via a social login, we receive the basic profile data permitted by that provider. See 6.
In Short: We collect device, usage, and telephony telemetry when you interact with the Services or AI Products.
Log & Usage Data: IP address, device/browser type, settings, feature usage, timestamps, pages/actions, error logs
Device Data: device identifiers, operating system, network/carrier
Location Data: approximate geolocation (e.g., derived from IP)
Telephony & Messaging Metadata: call/message routing details, deliverability, carrier responses, status codes — used for reliability, fraud prevention, and billing
We receive limited data from vendors that help us provide the Services (e.g., Google for analytics, telephony providers for call delivery status, app stores/payment processors). We do not buy personal data from data brokers.
In Short: To deliver, secure, support, and improve AI Products and related Services.
Provide & improve AI Products: answer calls/chats, capture details, create bookings, send confirmations, trigger review requests, and route to humans when needed
Operate telephony & messaging: place/receive calls, process transcripts, deliver SMS/email notifications, handle opt-outs
Customer support & troubleshooting: investigate issues, quality assurance (including limited review of call/chat samples by authorised staff or providers)
Security & abuse prevention: detect spam/fraud, protect accounts and systems
Analytics & product improvement: measure usage and performance, improve prompts, guardrails, and flows
Marketing & communications: send product updates, optional marketing (you can opt out)
Legal compliance: respond to lawful requests, enforce terms, maintain records
We process your information only where permitted by applicable law and limit access to authorised personnel and service providers.
In Short: With trusted service providers who help us deliver the Services, and in standard business/legal scenarios.
Service providers / subprocessors (examples that may apply depending on your plan and configuration):
Telephony & Messaging: providers that supply phone numbers, call routing, SIP, SMS/MMS, call recording storage, and deliverability
AI Inference & Infrastructure: AI platforms that transform inputs (e.g., speech-to-text, text-to-speech, LLMs) and cloud hosting providers
Analytics & Diagnostics: website/app analytics, error reporting
Payments: Stripe
CRM/Email/SMS: tools used to send confirmations, reminders, review requests
Reviews/GBP: where you connect your GBP or socials, we act via those platforms per your settings
We require these providers to use data only to deliver contracted services and to protect it appropriately.
Business Transfers: In the event of a merger, acquisition, or asset sale.
Legal: To comply with law, enforce terms, or protect rights, safety, and security.
With Your Direction: For integrations you enable (e.g., connecting calendars, GBP, or other apps).
Yes. We use cookies, pixels, and similar technologies for core functionality, security, analytics, and (where enabled) remarketing. See our Cookie Notice at http://www.atlas-flow.com/cookies. You can manage preferences in your browser and via platform opt-outs.
In Short: Yes. Our AI Products power call handling, chat assistance, transcription, booking flows, and review requests.
How AI is used: speech recognition and synthesis, language understanding, text generation, routing/intent detection, summarisation, and drafting messages
Assistive use, not decisions with legal effect: Our AI agents assist your business in handling enquiries and bookings. We do not rely on automated decisions that produce legal or similarly significant effects without human oversight.
Model training: We do not allow AI providers to use your inputs/outputs to train their foundation models unless we state otherwise and obtain your explicit opt-in.
Accuracy: AI may generate incomplete or inaccurate outputs. We implement guardrails, but you should review important outputs before relying on them.
If you register or connect using a social account, we receive profile data that provider shares per your settings. We use it to operate your account and Services. Manage your social platform privacy settings directly with the provider.
We retain personal information only as long as necessary for the purposes in this Notice (or as required by law). Illustrative defaults (subject to change in your account or contract):
Call recordings & AI transcripts: ~90 days by default, then deletion or anonymisation
Operational logs & security records: short operational windows unless needed for security/abuse investigations
Account, billing, and tax records: per statutory requirements
Where deletion is impracticable (e.g., backups), we securely store and isolate the data until deletion is feasible.
We employ reasonable and appropriate administrative, technical, and physical safeguards (access controls, encryption in transit, least-privilege, monitoring, and vendor due diligence). No method of transmission or storage is 100% secure.
No. Our Services target adults. If we learn we collected data from a person under 18, we’ll delete it. Report concerns to [email protected].
Depending on your location, you may have rights to access, correct, delete, port, object, or restrict certain processing, and to withdraw consent where processing is based on consent.
Marketing opt-out: unsubscribe links in emails; reply STOP to SMS.
Account changes/deletion: manage settings in your account, or contact us.
Telephony consent: you can opt out of call recording where required by law; our agents disclose call recording where applicable.
No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. Information sharing to subcontractors in support services (e.g., customer support) is permitted. All other use case categories exclude text messaging originator opt-in data and consent; this information will not be shared with third parties.
Contact [email protected] to exercise rights.
We currently do not respond to DNT signals due to the lack of a standard. If that changes, we’ll update this Notice.
Residents of certain US states (e.g., CA, CO, CT, DE, FL, IN, IA, KY, MD, MN, MT, NE, NH, NJ, OR, RI, TN, TX, UT, VA) may have additional rights. You can request access, correction, deletion, portability, and opt-out of targeted advertising/sale/profiling (where applicable). You may designate an authorised agent. We will verify requests and respond within the timelines required by law. Appeals can be sent to [email protected].
Categories of Personal Information We Collected in the last 12 months (illustrative; varies by feature use):
Category Examples Collected
A. Identifiers name, postal address, phone, email, IP, account ID YES
B. Customer Records (CA) contact data, billing records (limited via Stripe) YES
C. Protected characteristics gender, age, etc. NO (not sought)
D. Commercial information transactions, purchase history YES
E. Biometric fingerprints/faceprints NO
F. Internet/Network browsing, app usage, interactions YES
G. Geolocation approximate location (IP-based) YES (approx.)
H. Audio/Electronic call recordings, voicemail, chat transcripts YES
I. Professional business contact details YES (B2B context)
J. Education student records NO
K. Inferences preferences derived from interactions YES (limited for service improvement)
L. Sensitive personal information as defined by law NO (not sought)
We do not sell personal information. Where online tracking may be deemed “sale”/“sharing” under certain state laws, you can opt out via cookie controls and the instructions in our Cookie Notice.
We process personal information under the Privacy Act 1988 (Cth) (including the Australian Privacy Principles) and NZ Privacy Act 2020. This Notice satisfies the relevant notice requirements. You may request access and correction of your personal information. If you have concerns, you may complain to the OAIC (AU) or OPC (NZ).
Call recording consent: Where required, our voice agent will disclose recording. If you do not consent, please advise the agent and we will provide alternatives.
Do Not Call/SMS: You can opt out of marketing calls/SMS at any time as noted above.
Yes. We may update this Notice to reflect changes to our practices or legal requirements. We’ll post the updated date and, where material, provide additional notice.
Email: [email protected]
Postal: Atlas Flow, __________, __________, Australia
Submit a data subject access request or contact [email protected]. We’ll verify your identity and respond per applicable law.
If you have questions about this privacy policy or your rights, please contact our privacy team at [email protected]. We aim to respond within 5 business days.
Effective date: 2025-11-03. This footer provides contact info and the effective date; no buttons are included in the footer to comply with footer rules.