Privacy Policy

Effective date: October 29, 2025 • Jurisdiction: Texas, United States

1) Who we are & scope

Mosik AI provides AI calling agents that handle inbound and outbound phone calls, plus related dashboards and APIs (the “Services”). This Privacy Policy explains how we handle personal information of (a) signed-in business customers and (b) people who request a call or otherwise interact with our website or agents. By using the Services, you agree to this Policy.

2) Information we collect

Account data (customers): name, business name, email, password hash, phone, and settings such as assistant IDs and API secrets. We also store usage metrics (minutes allocated/used), purchase entries, and activity logs relevant to your account.
“Request a call” details (prospects): name, email, phone, company, and the message you submit so we can contact you.
Call data: call metadata (time, duration, routing) and, where enabled and legally permitted, call recordings and transcripts. You (and/or your organization) are responsible for providing any notices and obtaining required consent for recording or transcription.
Technical data: device, browser type, IP address, and cookie-based session data used for security, session continuity, and analytics.
Payment data: We do not collect or store payment card numbers. Payments are processed securely by our payment processor, Stripe. Stripe may provide us non-sensitive billing confirmations (e.g., amount, status) for accounting.

3) How we use information

Operate the Services: authenticate users, provide dashboards/APIs, place/receive calls, track minutes, and maintain service quality.
Communicate: send account notices, service updates, invoices, and customer support responses. With your consent where required, we may also send marketing communications. You can opt out at any time.
Improve & secure: troubleshoot, prevent abuse/fraud, and enhance voice accuracy and reliability using analytics and de-identified aggregates.
Compliance: meet legal, regulatory, and contractual obligations (including healthcare privacy obligations when applicable as described below).

4) SMS and email communications

When you create an account or request a call, you authorize Mosik AI to contact you via email and SMS about your requests, onboarding, account activity, and service updates. Where applicable, we may also send promotional messages; you can opt out of marketing at any time (see Section 10). Message and data rates may apply.

5) Voice data, recordings, and marketing snippets

Recordings/transcripts: used to provide features you request (searchable logs, QA, training of your agent), and to improve the Services. We do not use your recordings for third-party advertising.
Marketing samples: We may use de-identified or anonymized snippets (audio or transcript) to demonstrate product capabilities. Identifying details (names, numbers, addresses, unique IDs) are removed or altered. If you prefer to opt out of this use, email hello@mosikai.com and we will exclude your data.

6) HIPAA and healthcare use

For customers that process Protected Health Information (PHI), we implement administrative, physical, and technical safeguards aligned with HIPAA. Where required, we will execute a Business Associate Agreement (BAA). You are responsible for enabling HIPAA use cases in accordance with your own policies and providing any notices/consents to patients or callers.

7) Legal bases (where applicable)

Contract: we process data to deliver the Services you requested.
Consent: for recordings, marketing emails/SMS, and similar optional features.
Legitimate interests: to secure our platform, prevent fraud, and improve features in a way that does not override your privacy rights.

8) Sharing of information

Service providers: we share only what’s needed for them to perform services (e.g., hosting, analytics, communications). They must protect your data and cannot use it for their own marketing.
Payments: transactions are processed by Stripe; we receive limited billing confirmations. We do not store card numbers.
Legal & safety: we may disclose information to comply with law, enforce our terms, or protect rights, safety, and security.
Business transfers: in a merger, acquisition, or asset sale, your information may transfer subject to this Policy.

9) Data retention

Account data: kept while your account is active. On closure, we delete or anonymize within a reasonable period except where retention is legally required or necessary to resolve disputes.
Call recordings/transcripts: retained for service delivery and QA, then deleted or anonymized per our internal schedules or at your verified request (subject to legal holds).
Logs & billing records: retained as needed for security, audit, and tax/compliance requirements.

10) Your choices & rights

Access/Correction: request a copy of your data or ask us to correct inaccuracies.
Deletion: request deletion of personal data we hold about you. We will comply except where retention is required by law or for legitimate business needs (e.g., fraud prevention, tax).
Recording preferences: you may disable call recording where legally permissible or instruct us to delete specific recordings/transcripts.
Marketing opt-out: click “unsubscribe” in emails or contact hello@mosikai.com. For SMS, reply STOP to opt out.
Cookies: you can control cookies in your browser. Disabling essential cookies may limit functionality.

To exercise rights, email hello@mosikai.com. We may need to verify your identity and will respond within a reasonable period consistent with applicable laws.

11) Security

Transport-layer security (HTTPS) for dashboard/API traffic.
Password hashing (never stored in plain text) and scoped access controls.
Encryption for sensitive data at rest where applicable, continuous monitoring, and least-privilege access for staff.

No method is 100% secure, but we continuously improve our safeguards.

12) Children

Our Services are for business use and are not directed to individuals under 18. If we learn we collected data from a minor, we will delete it.

13) International users

We operate in the United States. If you access the Services from outside the U.S., you understand your data may be processed and stored in the U.S. and subject to U.S. law.

14) Changes to this Policy

We may update this Policy from time to time. We will post changes here and update the effective date above. Your continued use after changes means you accept the updated Policy.

15) Contact

Questions, requests, or complaints? Email hello@mosikai.com. Our mailing jurisdiction is the State of Texas, United States.