Prefer a phone call? Call HARFT AI live at +1 (832) 847-7198

HARFTAI

Privacy Policy

How HARFT AI collects, uses, protects, and retains information when you use our website and AI automation services.

Last updated: June 1, 2026

Introduction

HARFT AI ("HARFT," "we," "us," or "our") provides AI receptionist, customer support, workflow automation, and enterprise integration services to businesses. This Privacy Policy describes how we collect, use, disclose, and protect information when you visit our website, engage with our sales and support teams, or use our services.

This policy applies to information HARFT AI collects as a business service provider. When we process personal information on behalf of a customer, we generally act as a service provider or processor, and the customer's privacy policy governs the end-user relationship. See our Data Processing Addendum for processor obligations.

By using our website or services, you acknowledge this Privacy Policy. If you do not agree, please do not use our services.

Information We Collect

We collect information necessary to deliver our services, support customers, maintain security, and improve our platform. The categories below describe the types of information we may collect.

Contact information

  • Name, email address, phone number, and job title
  • Company name, business address, and billing contact details
  • Information submitted through contact forms, demo requests, and consultation scheduling

Business information

  • Industry, company size, and service requirements
  • CRM, telephony, and integration configuration details provided during onboarding
  • Contract, statement of work, and account management records

Customer communications

  • Voice call recordings and transcripts from AI receptionist and support agents
  • Chat, SMS, and email content processed through HARFT workflows
  • Support tickets, account correspondence, and implementation notes

Website analytics

  • Pages visited, referral sources, and interaction events on harftai.com
  • Campaign attribution and conversion data from marketing activities
  • Aggregated usage trends used to improve site performance and content

Usage data

  • Feature usage within the HARFT platform and customer portal
  • Automation execution logs, agent session metadata, and workflow outcomes
  • Authentication events and role-based access activity

Technical metadata

  • IP address, browser type, device identifiers, and operating system
  • Cookies and similar technologies (see Cookie Disclosure below)
  • API request metadata, error logs, and security monitoring signals

How We Use Information

We use collected information for the following purposes:

  • Service delivery — operating AI agents, automations, integrations, and customer accounts
  • Customer support — responding to inquiries, troubleshooting, and account management
  • Security monitoring — detecting fraud, abuse, unauthorized access, and security incidents
  • Service improvement — analyzing aggregated usage to improve reliability, features, and performance
  • Legal obligations — complying with applicable law, responding to lawful requests, and enforcing our agreements
  • Marketing communications — sending product updates and resources where permitted (you may opt out of promotional emails)

AI Services Disclosure

HARFT AI may utilize approved AI providers, including OpenAI, to deliver automation, conversational AI, document processing, and workflow services.

Customer data submitted to AI services is processed only to deliver the requested service. HARFT AI does not intentionally use customer data to train public AI models. Where available, we configure provider settings to opt out of model training on customer content.

Access to customer data processed through AI services is restricted to authorized HARFT personnel with a legitimate business need, subject to role-based access controls, multi-factor authentication, and audit logging.

AI-generated outputs may contain errors. Customers are responsible for reviewing outputs used in regulated, financial, legal, or clinical contexts. See our Terms of Service for additional disclaimers regarding AI-generated content.

Telnyx Disclosure

HARFT utilizes Telnyx for voice communications, SMS communications, and telephony infrastructure that support AI receptionist and customer engagement services.

When you or your end users interact with HARFT-powered phone or SMS services, call metadata (such as phone numbers, call duration, timestamps, and routing information) and communication records (such as recordings and transcripts where enabled) may be processed as necessary to provide, monitor, and improve those services.

Telnyx processes data under its own terms and privacy policies as a subprocessors. A current subprocessor list is available in our Data Processing Addendum and Trust Center.

Cookie Disclosure

We use cookies and similar technologies on our website and platform. You can manage cookie preferences through your browser settings. Disabling certain cookies may affect site functionality.

Essential cookies

Required for authentication, session management, security, and core site functionality. These cookies cannot be disabled without impacting service operation.

Analytics cookies

Help us understand how visitors use our website (for example, via Google Analytics or PostHog when enabled). Data is used in aggregated form to measure performance and improve user experience.

Performance cookies

Support load balancing, error monitoring, and optimization of site speed and reliability.

Cookie notice

By continuing to use our website, you consent to our use of cookies as described in this policy. We may update this notice as our analytics and tooling change. For questions about cookies, contact privacy@harft.ai.

How We Share Information

HARFT AI does not sell personal information. We share information only as described below:

  • Service providers and subprocessors that help us deliver services (see our DPA for the current list)
  • Integration partners you authorize (CRM, calendar, telephony, and workflow tools)
  • Professional advisors (legal, accounting) under confidentiality obligations
  • Law enforcement or regulators when required by law or to protect rights and safety
  • Business transfers in connection with a merger, acquisition, or asset sale (with notice where required)

Data Retention

We retain information only as long as necessary for the purposes described in this policy, to comply with legal obligations, resolve disputes, and enforce agreements.

Default retention schedules are documented in our Data Retention Policy (available upon request and in our Trust Center). Examples include: voice recordings (per contract, default 90 days), transcripts and conversation logs (default 1 year), authentication logs (1 year), and audit logs (2 years).

Customers may request custom retention periods under enterprise agreements. Upon contract termination, we delete or return customer data per our DPA and agreed timelines.

Security Measures

HARFT AI implements security controls aligned with SOC 2 Trust Service Criteria as part of our SOC 2 Readiness Program. HARFT AI has not yet completed an independent SOC 2 audit.

Our security program includes:

  • Multi-factor authentication (MFA) for administrative and production access
  • Encryption in transit (TLS 1.2+) and encryption at rest (AES-256) for databases and storage
  • Role-based access control (RBAC) with organization-scoped tenant isolation
  • Audit logging of authentication events, administrative actions, and API access
  • Vendor security assessments and documented incident response procedures

Additional resources

For detailed security architecture, visit our Security page and Trust Center.

Your Rights and Choices

Depending on your location and relationship with HARFT AI, you may have rights to access, correct, delete, or export personal information, or to opt out of certain processing.

To submit a privacy request, contact privacy@harft.ai. We will verify your identity and respond within applicable legal timeframes (typically 30 days).

If you are an end user of a HARFT customer's AI service, please contact that business directly. HARFT will assist our customers in responding to such requests as required by our agreements.

Children's Privacy

HARFT AI services are directed to businesses and are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be posted on this page with an updated effective date. Continued use of our services after changes constitutes acceptance of the revised policy.

Contact Information

For privacy-related inquiries, data subject requests, or questions about this policy:

  • Privacy: privacy@harft.ai
  • Security: security@harft.ai
  • General: hello@harft.ai
  • Website: https://harftai.com/contact
Talk to Ali AIBook Strategy Call
Talk to Ali AI