Privacy Policy for Brilyi.com

Last updated: April 28, 2025

Brilyi (“we”, “our”, or “us”) operates Brilyi.com (the “Service”), a platform that enables organizations to provision programmable phone numbers, assign real-time AI agents to those numbers, and configure those agents’ capabilities (e.g., SMS, email, calendar). This Privacy Policy describes what information we collect, how we use it, with whom we share it, and your rights.

---

1. Information We Collect

1.1. Account and Profile Information

• Registration Data: When you create an account, we collect your name, email address, organization name, and password.
• User Profiles: We maintain extended profile data (avatar, time zone, locale, preferences).

1.2. Organization and Subscription Data

• Organizations & Roles: We record your organization’s details and your role (owner, manager) for multi-tenant support.
• Subscription Plans: We store which subscription tier your organization has, including start and expiration dates.

1.3. Telephony and Call Data

• Phone Numbers: We store the Twilio phone numbers you purchase or assign to agents.
• Call Logs: For each inbound and outbound call, we record metadata such as call-SID, timestamps, duration, status, and recording URL.
• Call Transcripts: We capture the full AI–user transcript text (including both sides of the conversation) once a real-time session ends.
• Webhook Events: We audit-log every raw Twilio webhook payload for debugging and replay.

1.4. Tool Usage and Communication Logs

• SMS Logs: Every SMS sent or received via your agents is logged with message body, sender/recipient numbers, timestamps, and delivery status.
• Email Logs: Every email sent by your agents is logged with subject, body, sender/recipient addresses, timestamps, and delivery status.
• Tool Usage Events & Sessions: We record each AI session’s lifecycle (start/end, token usage, errors) and each tool invocation (SMS.send, calendar.create_event, email.send) for billing, analytics, and troubleshooting.

1.5. Third-Party Service Credentials

• Tool Instances: You may configure and store credentials for your Twilio account, Google Calendar (OAuth tokens), and email service providers. These credentials are encrypted at rest.

1.6. Cookies and Tracking

• We use cookies, local storage, and similar technologies to provide, secure, and improve the Service (e.g., session cookies, “remember me” tokens).
• Analytics tools (e.g., Google Analytics) help us understand usage patterns.

---

2. How We Use Your Information

• Provide the Service: To route calls through Twilio, orchestrate AI agent interactions, send SMS and email, and manage calendar events.
• Authentication & Authorization: To securely log you in, enforce roles, and protect your data.
• Billing & Subscriptions: To meter usage (calls, tokens, SMS/email volume) against your subscription plan and generate invoices.
• Support & Troubleshooting: To debug webhook failures, investigate delivery issues, and replay events.
• Analytics & Improvement: To analyze feature usage, optimize performance, and develop new capabilities.
• Legal Compliance & Safety: To enforce our Terms of Service and comply with legal obligations (e.g., responding to lawful requests).
  

---

2.1 SMS Marketing Policy

SMS Consent and Opt‑In
By providing your mobile phone number and opting in, you consent to receive SMS text messages from Brilyi regarding your account, product updates, and promotional offers. Message and data rates may apply, and message frequency may vary.

How We Use Your Phone Number
Your phone number will only be used for:

• Sending transactional and promotional text messages related to Brilyi products and services
• Providing reminders, updates, or offers that you have requested

We will not sell, rent, or share your phone number with unaffiliated third parties for their marketing purposes.

Opting Out
You can opt out of receiving SMS messages at any time by replying STOP to any message you receive from us. After you opt out, we will send one final confirmation message. No further SMS messages will be sent unless you opt in again.

Support and Help
For help or additional information, reply HELP to any message, or contact us at:
support@brilyi.com or (408) 780-0617

Carrier Disclaimer
Carriers are not liable for delayed or undelivered messages. Message and data rates may apply.

3. Information Sharing and Disclosure

• Service Providers:
  • Twilio: For call routing, SMS delivery, media recordings.
  • Google: For calendar integration and event creation.
  • Email Providers (e.g., SendGrid, SMTP): For dispatching agent-generated emails.
  • Hosting & Infrastructure (e.g., Microsoft Azure): For application runtime, databases, and storage.
• Legal Requests: We may disclose data to comply with court orders, subpoenas, or other legal processes.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, subject to confidentiality commitments.
• With Your Consent: When you explicitly authorize other integrations or data exports.

---

4. Data Retention

• We retain your account and organizational data for as long as your account is active or as needed to provide the Service.
• Telephony logs, transcripts, and tool-usage events are retained according to your subscription plan and for troubleshooting; you may request deletion (see Section 6).
• Audit logs (webhook payloads, error events) are kept for a minimum of 90 days for debugging, then purged unless otherwise required by law.

---

5. Security

• Encryption: All sensitive data (passwords, API credentials) are encrypted in transit (TLS) and at rest.
• Access Controls: Role-based access within your organization; strict separation between tenants.
• Monitoring & Auditing: We log access and changes to your data; abnormal activities trigger alerts.
• Best Practices: Regular security reviews, patch management, and vulnerability scanning.

---

6. Your Rights and Choices

• Access & Portability: You can export your organization’s data (call logs, transcripts, SMS/email logs) at any time from the dashboard.
• Correction: You may update your profile information, organizational details, and tool credentials.
• Deletion: You can request deletion of your account and associated data by contacting wow@brilyi.com; certain logs required for billing or legal compliance may be retained.
• Cookies: You can manage cookie preferences via your browser settings; disabling cookies may affect functionality.

---

7. Children’s Privacy

Brilyi.com is intended for business and organizational use only. We do not knowingly collect personal information from children under 18. If you believe we have inadvertently collected such data, please contact us to request deletion.

---

8. International Transfers

Your data may be processed and stored in the United States or other jurisdictions where our service providers operate. By using the Service, you consent to such transfers in compliance with applicable data protection laws.

---

9. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will post the revised version with an updated “Last updated” date and notify you via email or an in-app announcement when changes are material.

---

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy, please contact:

• Email: support@brilyi.com
• Address: Brilyi.com., 1968 S. Coast Hwy #408 Laguna Beach CA 92651

Thank you for trusting Brilyi with your real-time AI agent management needs. We are committed to protecting your privacy and securing your data.