1. Introduction
ReadySMS LLC ("ReadySMS," "we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, platform, APIs, and services (collectively, the "Services").
By accessing or using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not use our Services.
2. Information We Collect
2.1 Information You Provide to Us
We collect information that you voluntarily provide when you:
- Create an account: Name, email address, phone number, company name, billing address
- Use our Services: Message content, recipient phone numbers, contact lists, campaign configurations
- Register for A2P 10DLC: Business name, EIN/tax ID, business address, business type, website URL, use case descriptions
- Contact support: Any information you provide in support requests or communications with us
- Make payments: Payment card information, billing address (processed by our third-party payment processor)
2.2 Information Collected Automatically
When you access our Services, we may automatically collect:
- Usage data: Messages sent, delivery status, message timestamps, segment counts, API calls
- Device and browser information: IP address, browser type, operating system, device identifiers
- Log data: Access times, pages viewed, referring URLs, actions taken on our platform
- Cookies and similar technologies: Session cookies, analytics cookies, and similar tracking technologies
2.3 Information from Third Parties
We may receive information about you from third-party integrations you connect (such as GoHighLevel, HubSpot, or Zapier), including contact lists and campaign data that you authorize us to access.
3. How We Use Your Information
We use the information we collect to:
- Provide, operate, and maintain our Services
- Process and deliver your SMS and MMS messages
- Complete A2P 10DLC registration on your behalf
- Process payments and manage your account
- Send you service-related communications (account notifications, security alerts, billing information)
- Provide customer support and respond to your inquiries
- Monitor and analyze usage patterns to improve our Services
- Detect, prevent, and address fraud, abuse, and technical issues
- Comply with legal obligations and enforce our Terms of Service
- Generate anonymized, aggregated analytics and reporting
We do not sell your personal information to third parties. We do not use your message content for advertising purposes.
4. How We Share Your Information
We may share your information in the following circumstances:
| Recipient | Purpose |
|---|---|
| Carrier networks | To deliver your SMS/MMS messages (AT&T, T-Mobile, Verizon, etc.) |
| The Campaign Registry (TCR) | To register your brand and campaigns for A2P 10DLC compliance |
| Payment processors | To process your payments securely |
| Infrastructure providers | Cloud hosting and infrastructure services necessary to operate the platform |
| Third-party integrations | Services you connect (GHL, HubSpot, etc.) as authorized by you |
| Law enforcement | When required by law, subpoena, court order, or to protect our rights |
| Business transfers | In connection with a merger, acquisition, or sale of assets |
We require all third-party service providers to respect the security of your personal data and to treat it in accordance with applicable law.
5. Data Retention
We retain your information for as long as your account is active or as needed to provide you Services. Specifically:
- Account information: Retained for the duration of your account and for up to 12 months after account closure
- Message logs and delivery data: Retained for up to 12 months for analytics and compliance purposes
- Message content: We do not store the content of your messages after delivery, except as required for troubleshooting or compliance
- Billing records: Retained for up to 7 years as required by tax and accounting regulations
- Support communications: Retained for up to 24 months after resolution
After the applicable retention period, data is securely deleted or anonymized.
6. Data Security
We implement appropriate technical and organizational measures to protect your information, including:
- Encryption of data in transit (TLS/SSL) and at rest
- Access controls and authentication requirements for all systems
- Regular security assessments and monitoring
- Secure data centers with physical access controls
- Employee training on data protection and security practices
While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security, and you acknowledge that you bear sole responsibility for adequate security, protection, and backup of your own content.
7. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to operate and improve our Services. Types of cookies we use:
- Essential cookies: Required for the platform to function (authentication, session management)
- Analytics cookies: Help us understand how you use our platform so we can improve it
- Preference cookies: Remember your settings and preferences
You can control cookie settings through your browser preferences. Disabling certain cookies may limit your ability to use some features of our Services.
8. Your Rights and Choices
Depending on your location, you may have the following rights regarding your personal information:
- Access: Request a copy of the personal information we hold about you
- Correction: Request correction of inaccurate or incomplete information
- Deletion: Request deletion of your personal information, subject to legal retention requirements
- Portability: Request a copy of your data in a structured, machine-readable format
- Opt-out: Opt out of non-essential communications from us
- Restrict processing: Request that we limit how we use your data
- Withdraw consent: Where processing is based on consent, withdraw your consent at any time
To exercise any of these rights, please contact us at privacy@readysms.io. We will respond to your request within 30 days (or as required by applicable law).
9. California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):
- Right to know: What personal information we collect, use, disclose, and sell
- Right to delete: Request deletion of your personal information
- Right to opt-out: Opt out of the sale or sharing of your personal information. We do not sell your personal information.
- Right to non-discrimination: We will not discriminate against you for exercising your privacy rights
To make a request, contact us at privacy@readysms.io or through our platform. We may need to verify your identity before processing your request.
10. GDPR Rights (European Users)
If you are located in the European Economic Area (EEA) or the United Kingdom, you have rights under the General Data Protection Regulation (GDPR) and UK Data Protection Act 2018. In addition to the rights listed in Section 8:
- You have the right to lodge a complaint with your local data protection authority
- We process your data based on one or more of the following legal bases: performance of a contract, legitimate interests, compliance with legal obligations, or your consent
- For data transfers outside the EEA, we use appropriate safeguards including Standard Contractual Clauses
11. Canadian Privacy Rights
If you are a Canadian resident, your personal information is protected under the Personal Information Protection and Electronic Documents Act (PIPEDA) and Canada's Anti-Spam Legislation (CASL). You have the right to access, correct, and request deletion of your personal information. Contact us at privacy@readysms.io to exercise these rights.
12. Data Processing Role
ReadySMS acts as a data processor for subscriber and recipient data that you provide through our platform. You (our customer) remain the data controller and are responsible for:
- Ensuring you have a lawful basis (valid consent) for collecting and processing the personal data of your message recipients
- Providing appropriate privacy notices to your recipients
- Honoring data subject rights requests from your recipients
- Ensuring compliance with all applicable data protection laws for your business and customers
We process personal data only according to your instructions and as necessary to provide our Services.
13. Children's Privacy
Our Services are not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us at privacy@readysms.io.
14. Third-Party Links
Our Services may contain links to third-party websites or services that are not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We encourage you to review the privacy policies of any third-party sites you visit.
15. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we will provide additional notice (such as email notification) at least 30 days before the changes take effect.
Your continued use of the Services after any changes to this Privacy Policy constitutes your acceptance of the updated policy.
16. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
- Email: privacy@readysms.io
- General support: support@readysms.io
We will respond to all privacy-related inquiries within 30 days.
By using our Services, you acknowledge that you have read and understood this Privacy Policy.