Convos

Privacy Policy

Last updated: March 31, 2026

Introduction

This Privacy Policy describes how Convos ("we," "us," or "our") collects, uses, shares, and protects personal information when you use our AI-driven conversational texting and sentiment analysis platform (the "Services"). It applies to all users of the Services, including organizations that upload contact data and the individuals whose information those organizations provide.

By accessing or using the Services, you agree to the practices described in this policy. If you do not agree, please do not use the Services.

Information we collect

We collect information in the following categories:

Account and registration data

When you create an account or request a demo, we collect your name, email address, phone number, organization name, job title, and billing information.

Uploaded data

Contact information you provide, including names, phone numbers, and campaign-related reference materials such as talking points, survey questions, and background documents.

Conversation data

Text-based conversations between our AI agent and your contacts, including message content, timestamps, delivery status, and opt-out requests.

Analytics and derived data

Aggregated sentiment scores, engagement metrics, response rates, and other insights generated from conversation data.

Usage and device data

Browser type, operating system, IP address, pages visited, referring URLs, session duration, and interaction patterns collected automatically when you use the platform.

Cookies and tracking technologies

We use cookies, pixels, and similar technologies for authentication, preferences, analytics, and performance monitoring. You can manage cookie preferences through your browser settings. Disabling cookies may affect certain platform functionality.

How we use information

We use collected information to:

  • Provide, operate, and maintain the Services
  • Send and manage conversational text messages on your behalf
  • Generate sentiment analysis, engagement reports, and actionable insights
  • Process payments and manage your account
  • Communicate with you about service updates, security alerts, and support
  • Improve, personalize, and develop new features
  • Detect, prevent, and address fraud, abuse, or technical issues
  • Comply with legal obligations and enforce our Terms of Service

We do not sell personal data or conversation data to third parties. We do not use conversation data for advertising purposes.

Automated decision-making and AI processing

Our Services use artificial intelligence and machine learning to analyze conversation data and generate sentiment insights. This automated processing produces aggregated reports and scores; it does not make legal or similarly significant decisions about individual contacts. You retain full control over how insights are interpreted and acted upon.

Sharing and third-party disclosure

We may share information in the following circumstances:

  • Service providers: We work with trusted third-party providers for cloud hosting, SMS delivery, payment processing, analytics, and AI infrastructure. These providers are contractually bound to use data only as needed to perform services on our behalf and to maintain appropriate security measures.
  • Legal requirements: We will disclose information if required by law, subpoena, court order, or governmental request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control.
  • With your consent: We may share information for any other purpose with your explicit consent.

SMS and messaging privacy

Convos sends text messages on behalf of our clients to contacts they provide. All messaging is subject to applicable telecommunications laws, including the Telephone Consumer Protection Act (TCPA). We honor opt-out requests (e.g., STOP replies) promptly and maintain internal suppression lists to prevent further contact. We do not share phone numbers or message content with unrelated third parties.

Data retention

We retain personal data for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements. Specific retention periods vary by data type:

  • Account data is retained for the duration of your account and for a reasonable period afterward as required for legal or business purposes.
  • Conversation data is retained for the campaign period plus up to twelve (12) months, unless you request earlier deletion or a longer period is required by law.
  • Analytics data may be retained in aggregated, de-identified form indefinitely.

You may request deletion of your data at any time. See "Your rights" below.

Data security

We implement administrative, technical, and physical safeguards designed to protect data from unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit (TLS) and at rest (AES-256)
  • Role-based access controls and multi-factor authentication
  • Regular security assessments and vulnerability testing
  • Employee security training and confidentiality obligations

No method of transmission or storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security.

Data breach notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify affected users and applicable regulatory authorities as required by law. We will provide information about the nature of the breach, the data involved, steps we are taking to address it, and recommendations for protective measures.

International data transfers

Convos is based in the United States. If you access the Services from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate. We take steps to ensure that transfers are made in compliance with applicable data protection laws and that your information receives an adequate level of protection.

Your rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to legal retention requirements.
  • Portability: Request a copy of your data in a structured, machine-readable format.
  • Objection: Object to processing of your data for certain purposes.
  • Restriction: Request that we limit how we use your data.
  • Withdraw consent: Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at privacy@convos.ai . We will respond within thirty (30) days or as required by applicable law.

California privacy rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

  • The right to know what personal information we collect, use, and disclose.
  • The right to request deletion of your personal information.
  • The right to opt out of the "sale" or "sharing" of personal information. Convos does not sell personal information as defined under the CCPA/CPRA.
  • The right to non-discrimination for exercising your privacy rights.
  • The right to correct inaccurate personal information.
  • The right to limit use and disclosure of sensitive personal information.

To submit a request, email privacy@convos.ai with the subject line "California Privacy Request." We may verify your identity before fulfilling your request.

User consent and responsibilities

By uploading contact lists or using our Services, you represent and warrant that you have obtained all necessary consent or have another lawful basis for the collection and use of data you provide. You are responsible for ensuring that your use of the Services complies with all applicable privacy and telecommunications laws, including obtaining any required consent from contacts before messaging them.

Children's privacy

The Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected information from a child under 18, we will take steps to delete that information promptly. If you believe a child has provided us with personal data, please contact us at privacy@convos.ai .

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by posting the updated policy on this page with a revised "last updated" date and, where required by law, by email or through the platform. Your continued use of the Services after the effective date of a revised policy constitutes acceptance of the updated terms.

Contact us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, contact us at:

Convos
Email: privacy@convos.ai

If you are not satisfied with our response, you may have the right to lodge a complaint with a supervisory authority in your jurisdiction.

© 2026 Convos. All rights reserved.