Privacy Policy

1. Information We Collect

We collect information you provide directly when you create an account, sign up for our service, or contact us. This includes your name, email address, business name, and deployment preferences.

We also collect information automatically when you use our service, including log data (IP address, browser type, pages visited) and usage data (features used, check-ins processed, interactions completed).

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our service
• Send you service-related communications and setup instructions
• Respond to your questions and support requests
• Monitor usage to detect and prevent abuse
• Comply with legal obligations

3. Visitor Data

When your visitors interact with Agent Greeter, they may provide information (name, reason for visit, contact details). This visitor data belongs to you as the account holder. We process it on your behalf as a data processor. We do not sell or share visitor data with third parties except as required to provide the service.

For medical offices on Enterprise plans with a HIPAA BAA in place, we handle protected health information (PHI) according to HIPAA requirements. Starter and Pro plans are not covered by a HIPAA BAA and should not be used to collect PHI.

4. Data Retention

Account information is retained for the duration of your subscription and for 90 days after cancellation, after which it is deleted. Visitor interaction logs are retained for 12 months. You may request earlier deletion by contacting us at [email protected].

5. Cookies

We use essential cookies to maintain your session and remember your preferences. We also use analytics cookies (PostHog) to understand how our website is used. You can disable non-essential cookies by declining our cookie banner or adjusting your browser settings.

6. Third-Party Services

We use the following third-party services to operate Agent Greeter:

• Cloudflare — hosting, CDN, and security
• PostHog — product analytics
• Stripe — payment processing (we do not store your card details)

7. Your Rights

You have the right to access, correct, or delete your personal information. You may also object to processing or request data portability. To exercise these rights, contact us at [email protected].

8. Data Security

We use industry-standard encryption (TLS 1.3) for data in transit and AES-256 encryption for data at rest. Access to customer data is restricted to authorized personnel on a need-to-know basis.

9. Children's Privacy

Our service is not directed to children under 13. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify account holders of material changes by email at least 14 days before they take effect.

11. Contact

For privacy-related questions, contact us at [email protected].