Legal

Privacy Policy

Last Updated: March 28, 2026Effective Date: July 10, 2025

Important: By accessing our website or using our Services, you acknowledge that you have read and agree to the practices described herein. If you do not agree, please discontinue use immediately.

Introduction and Identity of Controller

SayVo AI Inc. (d/b/a SayVo.ai, "Company," "we," "us," or "our") is a Canadian corporation (16047203 Canada Inc.) providing artificial intelligence-powered Inside Sales Agent ("ISA") solutions for the mortgage and financial services industry. We are committed to protecting the privacy and security of personal information we receive, process, or store in connection with our services.

This Privacy Policy ("Policy") describes how we collect, use, disclose, retain, and protect personal information in connection with: (a) our website at https://sayvo.ai and all associated subdomains (the "Website"); (b) our AI-powered voice calling, SMS messaging, and email communication services (collectively, the "Services"); and (c) any other interaction you have with us.

Scope of This Policy

This Policy applies to personal information of:

Visitors to the Website ("Website Users")
Individuals who receive AI-generated calls, SMS messages, or emails through our Services on behalf of our clients ("End Recipients")
Our clients and their authorized representatives ("Clients")
Job applicants and other individuals who contact us directly

This Policy does not govern the independent privacy practices of our Clients. Clients are separately responsible for their own privacy compliance obligations with respect to data they process outside of our platform.

Information We Collect

3.1 — Information You Provide Directly

Contact and Account Information: name, company name, email address, telephone number, job title, and other information provided when you contact us, register, or execute an agreement.
Payment Information: billing address and payment details (processed by PCI-compliant third-party processors; we do not store full card numbers).
Communications: content of emails, inquiries, support requests, and other correspondence you send us.

3.2 — Information Collected Automatically from the Website

Log Data: IP address, browser type/version, OS, referring URLs, pages viewed, timestamps, and session duration.
Analytics Data: aggregated usage statistics, click-through rates, and navigation patterns via analytics tools.
Device Information: hardware model, unique device identifiers, and mobile network information.
Cookies and Similar Technologies: used to maintain sessions, analyze traffic, and improve user experience. You may manage cookies via browser settings; disabling certain cookies may impair Website functionality.

3.3 — AI Voice Call Data

Our core Services involve AI-powered voice agents conducting outbound calls on behalf of Clients. We collect:

Call Recordings: all calls may be recorded for quality assurance, compliance, and AI model improvement.
Transcripts: automated speech-to-text transcription of call content.
Call Metadata: caller/recipient numbers, duration, timestamps, outcome codes, and disposition classifications.
Conversational Data: substantive content including expressed intent, objections, and consent indicators.

BY ANSWERING OR CONTINUING A CALL MADE THROUGH OUR PLATFORM, ALL PARTIES CONSENT TO RECORDING AND TRANSCRIPTION AS DESCRIBED HEREIN. IF YOU DO NOT CONSENT, PLEASE DISCONNECT IMMEDIATELY AND NOTIFY US AT contact@sayvo.ai.

3.4 — SMS and Text Messaging Data

Subscriber Data: mobile number, opt-in/opt-out status, and keyword responses.
Message Content: content of messages sent and received, including keyword interactions (e.g., STOP, HELP).
Technical Metadata: delivery status, timestamps, carrier information, and device type.

3.5 — Email Communication Data

Recipient email addresses and associated identifiers.
Engagement data: open rates, click-through rates, delivery status, and unsubscribe/bounce data.
Substance of email communications sent through our platform.

3.6 — Mortgage and Financial Lead Data

Where Clients deploy our Services in the mortgage or financial services context, we may process personal information of prospective borrowers, including names, contact details, self-reported financial status, property information, and expressed mortgage intent. This data is processed on behalf of and at the direction of our Clients.

3.7 — Derived and Inferred Data

We may generate AI-derived data including lead scores, conversion likelihood assessments, call sentiment analysis, and engagement predictions to optimize our Services.

How We Use Your Information

4.1 — Service Delivery and Operations

Providing, maintaining, and improving our AI voice, SMS, and email services
Placing and managing AI-assisted outbound calls and messages on behalf of Clients
Processing opt-in and opt-out requests and routing communications

4.2 — AI Model Development and Improvement

Training, testing, and fine-tuning AI voice agents using de-identified or aggregated interaction data
Developing new AI capabilities and automation features
Conducting quality assurance and performance testing

4.3 — Analytics and Reporting

Generating lead conversion analytics and performance reports for Clients
Internal business analytics, market research, and product development
Monitoring Service usage patterns and system health

4.4 — Safety, Security, and Fraud Prevention

Detecting, investigating, and preventing fraudulent, unauthorized, or illegal activity
Enforcing our Terms of Service and applicable agreements
Protecting the rights, property, and safety of SayVo AI, our Clients, and End Recipients

4.5 — Legal and Regulatory Compliance

Complying with applicable laws including PIPEDA, CASL, TCPA, and telemarketing regulations
Responding to lawful requests from governmental and law enforcement authorities
Maintaining records as required by law

AI-Specific Disclosures

5.1 — Synthetic AI Voices

CALLS MADE THROUGH OUR PLATFORM MAY BE CONDUCTED ENTIRELY BY AN AI VOICE AGENT WITHOUT ANY HUMAN OPERATOR. Our AI agents may sound human-like but are not human. Where required by applicable law, our AI voice agents will disclose their AI nature upon direct request.

5.2 — Accuracy of AI Outputs

AI-GENERATED CONTENT, CLASSIFICATIONS, AND OUTPUTS ARE INHERENTLY PROBABILISTIC AND MAY CONTAIN ERRORS, INACCURACIES, OR MISREPRESENTATIONS. WE MAKE NO WARRANTY REGARDING THE ACCURACY, COMPLETENESS, OR RELIABILITY OF ANY AI-GENERATED OUTPUT. Clients are responsible for reviewing and validating AI-generated content before relying upon it.

5.3 — Automated Decision-Making

Our Services include automated systems that may assist in decisions regarding communications strategy, lead qualification, and call prioritization. These systems are designed to optimize service delivery and do not constitute fully automated decisions with legal or similarly significant effects on individuals.

5.4 — Continuous Learning

Our AI systems may use de-identified interaction data to improve performance over time. Aggregated data from our platform may be used to train AI models applied globally across our Services.

Call Recording and Monitoring

All telephone calls made through or recorded by our platform are subject to recording and monitoring for quality assurance, compliance verification, dispute resolution, and AI model improvement. By initiating, accepting, or continuing a call on our platform:

All parties to the call consent to such recording and monitoring.
Calls may be reviewed by authorized SayVo AI personnel or automated systems.
Call recordings may be retained for the periods described in Section 10.

Where applicable law requires two-party or all-party consent to call recording, Clients are responsible for ensuring appropriate disclosures and consents are obtained from their employees, agents, and End Recipients prior to deploying our Services. SayVo AI is not responsible for Client failures to obtain required consents.

Communications Consent (SMS, Voice, and Email)

7.1 — Consent to Receive AI-Generated Communications

By providing contact information to our Clients or to SayVo AI directly, you may receive automated and AI-generated telephone calls, SMS/text messages, and emails. These communications may include service notifications, follow-up outreach, appointment reminders, promotional offers, and other messages.

STANDARD MESSAGE AND DATA RATES MAY APPLY TO SMS COMMUNICATIONS. MESSAGE FREQUENCY VARIES.

7.2 — Opt-Out Rights

SMS: Reply "STOP" to any message. You will receive a one-time confirmation, after which no further messages will be sent to that number.
Voice: Request removal from call lists during any call, or contact us at contact@sayvo.ai.
Email: Click the unsubscribe link in any email, or contact us at contact@sayvo.ai.

We will honour opt-out requests within timeframes required by applicable law. Transactional and legally required communications may not be subject to opt-out.

Disclosure to Third Parties

We do not sell, rent, or lease your personal information. We may share information with:

8.1 — Service Providers and Subprocessors

Vetted third-party vendors bound by confidentiality and data processing agreements, including:

Cloud hosting and infrastructure providers
Telephony carriers and SMS gateway operators
Speech-to-text and AI model providers
Analytics and business intelligence platforms
Payment processors
Legal, accounting, and professional advisors

8.2 — Business Clients

We share End Recipient data with the Client on whose behalf the communication was made, as this is the primary purpose for which such data was collected.

8.3 — Legal and Regulatory Disclosures

Law enforcement agencies, courts, or regulators pursuant to lawful requests, court orders, or subpoenas
Government authorities to comply with mandatory reporting obligations
Regulatory bodies investigating potential violations of law

8.4 — Business Transfers

In the event of a merger, acquisition, asset sale, or insolvency proceeding, personal information may be transferred as part of the transaction, subject to applicable notice requirements.

8.5 — Aggregated Data

We may share aggregated, de-identified, or anonymized data that cannot reasonably identify any individual, without restriction.

Data Security

We implement and maintain commercially reasonable administrative, technical, and physical security measures designed to protect personal information against unauthorized access, disclosure, alteration, destruction, or misuse. These measures include, but are not limited to:

Encryption of data in transit and at rest using industry-standard protocols
Role-based access controls and multi-factor authentication for authorized personnel
Regular security assessments, penetration testing, and vulnerability management
Incident response procedures compliant with applicable breach notification requirements
Contractual obligations on subprocessors to maintain equivalent security controls

NO SECURITY SYSTEM IS IMPENETRABLE. WE CANNOT AND DO NOT GUARANTEE THAT UNAUTHORIZED PARTIES WILL NEVER BE ABLE TO CIRCUMVENT OUR SECURITY MEASURES OR THOSE OF OUR THIRD-PARTY SERVICE PROVIDERS. WE ARE NOT RESPONSIBLE FOR: (A) CIRCUMVENTION OF ANY PRIVACY SETTINGS OR SECURITY MEASURES ON THE WEBSITE OR IN OUR SERVICES; (B) UNAUTHORIZED ACCESS RESULTING FROM CLIENT-SIDE VULNERABILITIES, COMPROMISED CREDENTIALS, OR THIRD-PARTY ACTIONS; (C) DATA LOSS, CORRUPTION, OR UNAUTHORIZED DISCLOSURE CAUSED BY FACTORS BEYOND OUR REASONABLE CONTROL; OR (D) ANY LOSSES ARISING FROM CYBER INCIDENTS AFFECTING THIRD-PARTY INFRASTRUCTURE, CARRIERS, OR SUBPROCESSORS. YOUR USE OF THE SERVICES IS AT YOUR OWN RISK. In the event of a breach affecting your personal information, we will notify you as required by applicable law, but shall have no liability beyond such notification obligations.

Data Retention

Client Account Data: retained for the duration of the Client relationship and for 7 years thereafter for legal, accounting, and dispute resolution purposes.
Call Recordings and Transcripts: minimum of 12 months from the date of the call, subject to applicable legal hold requirements.
SMS and Email Data: duration of active subscription plus 12 months thereafter.
Website Analytics: aggregated data retained indefinitely; individual-level log data deleted or anonymized after 12 months.
Lead and Contact Data: retained pursuant to Client instructions and applicable legal requirements.

Upon expiry of applicable retention periods, personal information is securely deleted or anonymized using commercially reasonable methods. Deleted data cannot be recovered.

Third-Party Links and Services

Our Website may contain links to third-party websites, platforms, or services that we do not own or control.

WE HAVE NO CONTROL OVER AND ASSUME NO RESPONSIBILITY FOR THE CONTENT, PRIVACY POLICIES, OR PRACTICES OF ANY THIRD-PARTY WEBSITE OR SERVICE. The inclusion of any link does not constitute endorsement. We encourage you to review the privacy policies of any third-party sites you visit.

Your Rights and Choices

12.1 — Canadian Residents (PIPEDA)

Under PIPEDA and applicable provincial legislation, you have the right to:

Request access to personal information we hold about you
Request correction of inaccurate personal information
Withdraw consent to processing (subject to legal or contractual restrictions)
Lodge a complaint with the Office of the Privacy Commissioner of Canada (www.priv.gc.ca)

12.2 — California Residents (CCPA/CPRA)

California residents may have rights to know, delete, correct, and opt out of the sale or sharing of personal information. We do not sell personal information as defined under the CCPA. Submit requests to contact@sayvo.ai.

To exercise any privacy rights, contact our Privacy Officer at contact@sayvo.ai. We will respond within 30 days of receiving a verified request, or such extended period as permitted by law.

International Data Transfers

SayVo AI is based in Canada. Personal information may be processed or stored in other countries, including the United States, with different data protection laws. When we transfer personal information internationally, we implement appropriate safeguards, including contractual obligations, to ensure protection consistent with this Policy and applicable law.

Website Disclaimer and Limitation of Liability

THE CONTENT ON OUR WEBSITE IS PROVIDED FOR GENERAL INFORMATIONAL AND MARKETING PURPOSES ONLY AND DOES NOT CONSTITUTE LEGAL, FINANCIAL, MORTGAGE, INVESTMENT, TAX, REGULATORY, OR OTHER PROFESSIONAL ADVICE OF ANY KIND. NOTHING ON THE WEBSITE SHALL BE CONSTRUED AS A RECOMMENDATION, ENDORSEMENT, OR SOLICITATION. We make no representations or warranties, express or implied, as to the accuracy, completeness, currency, suitability, or reliability of any Website content. Content may be changed, modified, or removed at any time without notice.

Case studies, testimonials, projected savings, conversion rate claims, and performance statistics represent individual results under specific circumstances and are not guarantees or predictions of future performance. Actual results will vary materially based on individual circumstances, market conditions, lead quality, Client implementation, regulatory environment, and numerous other factors beyond our control.

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, WE EXPRESSLY DISCLAIM ALL LIABILITY — WHETHER IN CONTRACT, TORT (INCLUDING NEGLIGENCE), STRICT LIABILITY, STATUTORY LIABILITY, OR OTHERWISE — FOR: (A) ANY ERRORS, OMISSIONS, OR INACCURACIES IN WEBSITE CONTENT; (B) ANY ACTIONS TAKEN OR NOT TAKEN IN RELIANCE ON WEBSITE CONTENT; (C) ANY DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, SPECIAL, EXEMPLARY, OR PUNITIVE DAMAGES ARISING FROM YOUR ACCESS TO OR USE OF THE WEBSITE; (D) ANY LOSS OF DATA, REVENUE, PROFITS, OR BUSINESS OPPORTUNITIES; AND (E) ANY THIRD-PARTY CONDUCT, CONTENT, OR SERVICES ACCESSED THROUGH OR REFERENCED ON THE WEBSITE. YOUR SOLE REMEDY FOR DISSATISFACTION WITH THE WEBSITE IS TO CEASE ACCESSING IT.

Assumption of Risk

By accessing the Website or providing personal information to SayVo AI, you acknowledge that you do so voluntarily and at your own risk. You assume full responsibility for evaluating the accuracy, completeness, and usefulness of any information, content, or materials available through the Website or Services.

You acknowledge that the transmission of information over the internet is inherently insecure, that we cannot guarantee the confidentiality or security of data transmitted electronically, and that any information you provide is transmitted at your own risk. We shall not be liable for any interception, alteration, or misuse of information during transmission by third parties.

Children's Privacy

Our Services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from minors. If we become aware that we have inadvertently collected data from a minor, we will promptly delete it. Contact us at contact@sayvo.ai if you believe we have collected information from a minor.

Changes to This Policy

We reserve the right to modify this Privacy Policy at any time. Material changes will be communicated by: (a) posting the updated Policy with a revised "Last Updated" date; and (b) providing notice through our Services or by email. Your continued use of our Website or Services following the effective date of any change constitutes acceptance of the updated Policy.

Contact and Privacy Officer

Privacy Officer — SayVo AI (16047203 Canada Inc.)

d/b/a SayVo.ai

Email: contact@sayvo.ai

Website: https://sayvo.ai

Mailing Address: PO Box 338, Station A, Toronto, ON M5W 1C5, Canada

We are committed to resolving privacy concerns promptly and in accordance with applicable law. If you are not satisfied with our response, you may contact the Office of the Privacy Commissioner of Canada or your applicable provincial privacy commissioner.

Frequently Asked Questions

Does SayVo AI record phone calls?

Yes. All calls made through the SayVo AI platform are recorded for quality assurance, compliance verification, dispute resolution, and AI model improvement. By answering or continuing a call, all parties consent to recording. Clients deploying our Services are responsible for ensuring required disclosures and consents are obtained from End Recipients, particularly in two-party or all-party consent jurisdictions.

How does SayVo AI protect personal data?

SayVo AI implements commercially reasonable administrative, technical, and physical security measures including encryption of data in transit and at rest, role-based access controls with multi-factor authentication, regular security assessments, and incident response procedures. However, no security system is impenetrable and we cannot guarantee that unauthorized access will never occur.

Is SayVo AI compliant with TCPA, CASL, and PIPEDA?

SayVo AI is designed to support compliance with TCPA, CASL, PIPEDA, and related telemarketing and privacy regulations. However, Clients are solely and exclusively responsible for ensuring their own compliance with all applicable laws in every jurisdiction where they deploy the Services, including obtaining required consents from End Recipients.

Does SayVo AI sell personal information?

No. SayVo AI does not sell, rent, or lease personal information. We may share data with vetted service providers bound by confidentiality agreements, with the Client on whose behalf communications were made, and as required by law. We may share aggregated, de-identified data that cannot identify individuals.

How long does SayVo AI retain call recordings and data?

Call recordings and transcripts are retained for a minimum of 12 months. Client account data is retained for the duration of the relationship plus 7 years. SMS and email data is retained for the active subscription period plus 12 months. Website analytics are anonymized after 12 months.

Can I opt out of SayVo AI communications?

Yes. For SMS, reply STOP to any message. For voice calls, request removal during any call or email contact@sayvo.ai. For email, click the unsubscribe link in any message. We honour opt-out requests within timeframes required by applicable law.