Privacy Policy

Last updated: March 24, 2026

1. Introduction

Signalzly ("we," "our," or "us") operates the Signalzly platform at signalzly.growzly.cloud. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered sales development platform.

2. Information We Collect

Account Information

  • Name, email address, and password (hashed)
  • Organization name and billing details
  • Role within your organization

Usage Data

  • Call recordings and transcripts (processed for AI analysis)
  • Contact information you import or create
  • Email and SMS content generated through the platform
  • Task, meeting, and opportunity data
  • Platform usage metrics and analytics

Technical Data

  • IP address and browser information
  • Device type and operating system
  • Cookies and similar tracking technologies

3. How We Use Your Information

  • Provide and maintain the Signalzly platform
  • Process call recordings through AI for transcription, analysis, and coaching
  • Generate AI-powered insights, summaries, and recommendations
  • Send automated follow-up emails and SMS on your behalf
  • Track lead scores, pipeline, and sales performance
  • Process payments and manage subscriptions
  • Communicate service updates and support
  • Improve our AI models and platform features

4. Third-Party Services

We use the following third-party services to operate the platform:

  • Twilio — Phone calls, SMS messaging, and call recording
  • OpenAI — AI transcription (Whisper), analysis (GPT), and embeddings
  • Stripe — Payment processing and subscription management
  • Supabase — Database hosting and storage
  • HubSpot — CRM integration (when connected by you)
  • Google — Email sending via Gmail OAuth (when connected by you)

Each third-party service has its own privacy policy. We encourage you to review them.

5. Data Storage and Security

  • All data is encrypted in transit (TLS/HTTPS) and at rest
  • Integration tokens (HubSpot, Google, Twilio) are encrypted with AES-256-GCM
  • Passwords are hashed using bcrypt
  • Multi-tenant isolation ensures organizations cannot access each other's data
  • Call recordings are retained for 90 days by default, configurable per organization
  • We use row-level security and org-scoped queries for all data access

6. Data Retention

  • Account data: retained while your account is active
  • Call recordings: 90 days (configurable)
  • Transcripts and AI analysis: retained while account is active
  • Audit logs: 2 years
  • Sync history: 12 months
  • After account deletion: data permanently removed within 30 days

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict processing
  • Data portability
  • Withdraw consent at any time

To exercise any of these rights, contact us at privacy@signalzly.com.

8. GDPR and CCPA Compliance

We comply with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We process data based on legitimate business interests, contractual necessity, and your consent. We do not sell your personal information.

9. Cookies

We use essential cookies for authentication and session management. We do not use third-party advertising cookies. You can manage cookie preferences in your browser settings.

10. Children's Privacy

Signalzly is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy, contact us at: