Privacy Policy – Lysa AI

Effective Date: 16th of April 2025

This Privacy Policy explains how DIGITAL WOLF DI TAVERNESE MIRKO ("we," "our," or "us"), based in Alessandria, Italy, collects, uses, stores, shares, and protects your information when you use the Lysa AI phone assistant service ("Lysa" or the "Service"). By using the Service, you agree to the terms outlined in this Privacy Policy.

1. Information We Collect

We collect the following types of personal and business data to operate the Lysa service:

a. Client Data

Business name, contact name, phone number, and email address

Billing information (processed through Stripe)

Preferences and configuration details for your setup

b. Caller/User Data

Call recordings and transcripts (inbound and outbound)

Phone numbers of callers

Call timestamps, durations, and call routing metadata

Customer information provided during calls (e.g., names, emails, booking details)

c. Technical Data

IP addressesBrowser/user-agent data

Usage and interaction logs with the dashboard

Analytics data on feature performance and call outcomes

2. How We Use Your Information

We process personal data for the following purposes:

To deliver and operate the Lysa AI service

To manage your account and provide customer support

To improve the accuracy and performance of the voice assistant

To generate usage and activity reports for clientsTo meet legal or regulatory compliance requirements

3. Legal Basis for Processing (GDPR Compliance)

We process your personal data lawfully under the following bases:

Performance of a contract: Providing and maintaining the Service

Legitimate interests: Improving system performance and usage experience

Consent: For storing voice data, usage analytics, and marketing (where required)

Legal obligation: To comply with Italian and international data laws

4. Data Sharing & Third Parties

We share data with third parties only when necessary to provide our Service.

These include:

Retell AI – voice assistant processing

Twilio – telephony infrastructure

Stripe – billing and payment processing

Make.com – workflow automation

Google Sheets – data storage and client dashboards

These third parties may store data on servers located outside of your country, including the United States. All vendors are required to follow strict data protection standards.

5. Data Retention

Call recordings and data are retained only as long as needed for service delivery, analytics, or legal obligations.

Upon cancellation, clients may request full deletion of their data, which will be processed within 30 days.

Minimal technical logs may be retained for security, debugging, and compliance purposes.

6. Data Security

We use appropriate technical and organizational measures to protect your data, including:

SSL encryption on all connectionsAccess control and role-based restrictionsSecure storage using GDPR-compliant infrastructureRegular audits and vulnerability monitoring

Despite our efforts, no system is 100% secure. You use the Service at your own risk.

7. International Transfers

Because we use third-party services with infrastructure outside the EU/EEA (e.g., USA), your data may be transferred internationally. All such transfers comply with GDPR and applicable data protection laws through mechanisms such as Standard Contractual Clauses (SCCs) or equivalent safeguards.

8. Your Rights (Under GDPR and Similar Laws)

If you are located in the EU/EEA or another jurisdiction with data protection laws, you may have the following rights:

Right to access your personal data

Right to correct or update inaccurate data

Right to request data deletion ("right to be forgotten")

Right to object to or restrict processingRight to data portability

Right to file a complaint with a supervisory authority

To exercise these rights, contact us at [email protected]. We will respond within 14 days.

9. Cookies and Tracking

The client dashboard may use cookies or similar technologies to:

Authenticate sessions

Track usage statistics

Improve user experience

You may disable cookies in your browser settings, but this may limit dashboard functionality.

10. Children's Privacy

Our Service is not intended for use by children under the age of 16. We do not knowingly collect personal data from minors. If we learn that a child has submitted personal information, we will delete it immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on our website or dashboard. Your continued use of the Service after updates constitutes your agreement to the revised policy.

12. Contact Information

If you have questions about this Privacy Policy or your data rights, please contact us:

DIGITAL WOLF DI TAVERNESE MIRKO
Alessandria, 15121, Italy

Email: [email protected]
Website: trylysa.com

By using Lysa, you acknowledge that you have read, understood, and agree to this Privacy Policy.