Privacy Policy

Effective date: March 30, 2026

This Privacy Policy describes how SwiftAppLab ("we", "us", or "our") collects, uses, stores, and protects information in connection with NeverMissAI, our AI voice receptionist service, and our related website, client portal, and APIs (collectively, the "Service"). By using the Service, you agree to the practices described in this policy.

1. Information We Collect

1.1 Business Information You Provide

When you sign up for NeverMissAI, we collect information about your business, including:

• Business name, address, and phone number
• Hours of operation and holiday schedules
• Services offered, pricing, and business-specific FAQs
• Custom greeting scripts and call-handling instructions

1.2 Account and Contact Information

• Your name and email address
• Phone number(s) for call forwarding and notifications
• Login credentials for the client portal

1.3 Call Data

When the AI receptionist handles a call on your behalf, we collect:

• Call recordings -- audio recordings of inbound calls handled by the AI
• Call transcripts -- text transcriptions generated from call audio
• Caller information -- the caller's phone number and any information the caller voluntarily provides during the call (name, reason for calling, appointment preferences, etc.)
• Call metadata -- date, time, duration, and call status

1.4 Payment Information

Payment processing is handled entirely by Stripe. We receive confirmation of your subscription status and transaction history but do not store your credit card number, bank account details, or other sensitive payment credentials on our servers.

1.5 Usage and Technical Data

• Session cookies and authentication tokens for the client portal
• Browser type, operating system, and device information
• IP address and approximate geographic location
• Pages visited and features used within the client portal

2. How We Use Your Information

We use the information we collect for the following purposes:

• Provide the Service -- power the AI receptionist to answer calls, respond to caller inquiries, and follow your business-specific instructions
• Call notifications -- send you real-time call summaries and transcripts via email or SMS
• SMS account alerts -- send operational text messages only to mobile numbers that you provide with explicit consent; message frequency varies, message and data rates may apply, and you can reply STOP to opt out or HELP for help
• Calendar scheduling -- create appointments in your Google Calendar when callers request a booking (if you have enabled this integration)
• Billing and payments -- process subscription charges and manage your account through Stripe
• Improve and train -- analyze aggregated, anonymized call data to improve AI accuracy, voice quality, and service reliability
• Support and communication -- respond to your questions, troubleshoot issues, and send service-related announcements
• Legal compliance -- comply with applicable laws, regulations, and legal processes

3. Call Recording Disclosure

You may access and review call recordings and transcripts through the client portal. You may request deletion of specific recordings at any time by contacting us.

4. Third-Party Services

We rely on trusted third-party providers to deliver different parts of the Service. Each provider receives only the minimum data necessary to perform its function.

4.1 Twilio

Twilio provides the telephony infrastructure for receiving and routing phone calls and sending SMS notifications. When a call is placed to your business number, Twilio processes the caller's phone number, call audio, and call metadata. Twilio's privacy practices are governed by the Twilio Privacy Statement.

4.2 Vapi.ai

Vapi.ai provides the AI voice processing layer that powers the receptionist. Call audio is streamed to Vapi in real time for speech recognition, natural language understanding, and response generation. Vapi processes call audio and transcripts in accordance with their Privacy Policy.

4.3 ElevenLabs

ElevenLabs provides voice synthesis technology to generate natural-sounding AI speech during calls. Text responses are sent to ElevenLabs for conversion to audio. ElevenLabs does not receive caller identity information. Their practices are described in the ElevenLabs Privacy Policy.

4.4 Stripe

Stripe handles all payment processing. When you subscribe to NeverMissAI, your payment information is collected and stored by Stripe -- we never have access to your full card details. See the Stripe Privacy Policy for more information.

4.5 Google Calendar (Optional)

If you enable the Google Calendar integration, we request OAuth access to your Google Calendar account. This access is used solely to create calendar events when a caller books an appointment during a call. We do not read, modify, or delete existing calendar events. We do not access any other Google services or data beyond creating calendar entries. You may revoke this access at any time through your Google Account permissions.

5. Data Storage and Security

We implement commercially reasonable administrative, technical, and physical safeguards to protect your information, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Access controls limiting data access to authorized personnel on a need-to-know basis
• Regular security reviews and monitoring of our infrastructure
• Secure authentication for the client portal

Your data is stored on servers located in the United States. While no method of electronic storage is 100% secure, we strive to protect your information using industry-standard practices. If we become aware of a security breach that affects your personal information, we will notify you in accordance with applicable law.

6. Data Retention

We retain your data for as long as your account is active and as needed to provide the Service. Specifically:

• Call recordings and transcripts are retained for 90 days from the date of the call, unless you request earlier deletion or configure a different retention period
• Business and account information is retained for the duration of your subscription and for up to 30 days after cancellation to allow for reactivation
• Billing records are retained as required by tax and financial regulations (typically 7 years)
• Aggregated, anonymized analytics may be retained indefinitely as they cannot be linked back to any individual or business

After your account is closed and the applicable retention period has expired, we will delete or anonymize your data within 30 days.

7. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

• Access -- request a copy of the personal data we hold about you and your business
• Correction -- request correction of any inaccurate or incomplete data
• Deletion -- request deletion of your personal data, subject to legal retention requirements
• Export -- request your data in a portable, machine-readable format
• Objection -- object to certain types of data processing where we rely on a legitimate interest
• Restriction -- request that we limit how we process your data in certain circumstances

To exercise any of these rights, contact us at hello@swiftapplab.com. We will respond to verified requests within 30 days. We may ask for additional information to verify your identity before processing a request.

8. Cookies and Tracking

We use a minimal set of cookies to operate the Service:

• Session cookies -- used to authenticate your login to the client portal and maintain your session. These are essential for the Service to function and expire when you close your browser or after a period of inactivity.
• Preference cookies -- used to remember your portal display settings and preferences.

We do not use third-party advertising or tracking cookies. We may use basic analytics to understand how the client portal is used and to improve the Service.

9. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your data only in the following limited circumstances:

• Third-party service providers -- as described in Section 4, solely to provide the Service
• Legal requirements -- when required by law, subpoena, court order, or governmental regulation
• Protection of rights -- when necessary to enforce our terms, protect our rights, or ensure the safety of our users
• Business transfers -- in connection with a merger, acquisition, or sale of assets, in which case your data would remain subject to the protections described in this policy

We do not sell, rent, or share mobile phone numbers or SMS opt-in consent data with third parties or affiliates for their marketing or promotional purposes. We share this data only with service providers needed to deliver the messaging service.

10. Children's Privacy

NeverMissAI is a business-to-business service and is not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected information from a person under 18, we will delete that information promptly. If you believe we have inadvertently collected such data, please contact us at hello@swiftapplab.com.

11. California Privacy Rights

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to request deletion, and the right to opt out of the sale of your personal information. As stated above, we do not sell personal information. To exercise your California privacy rights, contact us at hello@swiftapplab.com.

12. International Data Transfers

If you are accessing the Service from outside the United States, your data will be transferred to and processed in the United States. By using the Service, you consent to this transfer. We take steps to ensure that your data receives an adequate level of protection in the jurisdictions in which we process it.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by email or through a notice in the client portal at least 14 days before the changes take effect. The "Effective date" at the top of this page indicates when the policy was last revised. Your continued use of the Service after the updated policy takes effect constitutes your acceptance of the changes.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: