Privacy Policy

1. Introduction

Neon Fox Inc. ("we," "our," or "us") operates multiple software applications and services, including Dialbox, Call Bodyguard, Wrapi, and our corporate website at neonfox.io (collectively, the "Services"). We are committed to protecting your privacy and handling your personal information with transparency and care.

This Privacy Policy explains how we collect, use, disclose, safeguard, and retain your information when you:

• Visit our websites
• Use our mobile or desktop applications
• Subscribe to our services
• Communicate with us

By using any of our Services, you consent to the data practices described in this policy. If you do not agree with our practices, please do not use our Services.

2. Information We Collect

We collect different types of information depending on which Service you use. This section describes the information we may collect across all Services.

2.1 Personal Information You Provide

Account Information:

• Full name (first and last name)
• Email address
• Phone numbers
• Username and password (encrypted and hashed)
• Company or organization name
• Billing and payment details (processed via Stripe)
• Account preferences and settings

Service-Specific Information:

Dialbox:

• Business contact information
• Call logs and document data
• Account usage information

Call Bodyguard:

• Phone numbers you choose to protect
• Contact names and phone numbers (synced from your device)
• Contact relationships and categories
• Call screening decisions and AI-generated reasoning

Wrapi:

• Event details (titles, descriptions, schedules)
• Attendee registration information
• Chat messages, Q&A submissions, poll responses, and survey data
• Support ticket conversations

General Communications:

• Information you provide when contacting customer support
• Newsletter subscriptions
• Marketing preferences
• Feedback and survey responses

2.2 Information Automatically Collected

Technical and Usage Data:

• IP addresses and general location information
• Device identifiers and fingerprints (for security)
• Browser type, version, and language settings
• Operating system and device information
• Time zone settings
• Usage patterns and analytics
• Pages viewed, features used, and time spent
• Error logs and diagnostic information
• Performance metrics

Call Data (Call Bodyguard only):

• Caller phone numbers and names (when available)
• Call timestamps and duration
• Contact Lists
• Call history and analytics

Event Data (Wrapi only):

• Attendance and participation metrics
• Engagement data from polls, chat, and Q&A
• Streaming analytics

2.3 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

• Maintain your login session
• Remember your preferences and settings
• Analyze website traffic and usage patterns
• Improve our Services and user experience
• Provide security features (e.g., device fingerprinting)
• Deliver relevant content

Types of Cookies:

• Essential Cookies: Required for the Services to function properly
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand how visitors interact with our Services (e.g., Google Analytics)
• Performance Cookies: Optimize loading times and user experience
• Marketing Cookies: Used to deliver relevant advertisements (with your consent)

You can control cookies through your browser settings. However, disabling cookies may affect the functionality of some Services. To learn more about Google Analytics privacy practices, visit https://policies.google.com/privacy.

2.4 Information from Third Parties

We may receive information about you from third-party services you connect to your account or from publicly available sources, including:

• Third-party apps you explicitly link to your account
• Payment processors
• Identity verification services
• Analytics providers

3. How We Use Your Information

We use your information for the following purposes:

3.1 Service Provision and Account Management

• Create, maintain, and secure your account
• Authenticate users and prevent unauthorized access
• Provide, deliver, and improve our Services
• Process transactions, billing, and payments
• Manage subscriptions and renewals
• Provide customer support and respond to inquiries

3.2 Service-Specific Functions

Dialbox:

• Create and manage your business account
• Process orders and payments
• Store call logs and document data
• Facilitate business communications

Call Bodyguard:

• Screen incoming calls using AI analysis
• Identify and block spam and scam calls
• Recognize emergency keywords and legitimate callers
• Auto-whitelist your contacts for instant connection
• Provide call history, analytics, and protection management tools
• Enable family protection features

Wrapi:

• Facilitate live streaming and webcasting
• Manage event registration and attendee information
• Enable attendee engagement tools (chat, polls, Q&A)
• Provide analytics and reporting features
• Deliver white-label branding capabilities

3.3 Communications

• Send transactional notifications about your account and Services
• Provide service updates, security alerts, and technical notices
• Send marketing communications and promotional materials (with your consent - you may opt out at any time)
• Respond to your questions, requests, and feedback

3.4 Analytics and Improvements

• Analyze usage patterns and user behavior
• Improve our Services and develop new features
• Understand how our Services are accessed and used
• Optimize system performance and user experience
• Conduct research and testing

3.5 Security and Fraud Prevention

• Detect, prevent, and address security issues
• Prevent fraud, abuse, and unauthorized activity
• Protect the rights, property, and safety of Neon Fox Inc., our users, and others
• Conduct security audits and vulnerability assessments

3.6 AI and Machine Learning (Call Bodyguard)

• Analyze call patterns to improve AI accuracy
• Identify new spam and scam tactics
• Develop and enhance conversational intelligence capabilities
• Optimize call screening decisions

3.7 Legal Compliance

• Comply with applicable laws, regulations, and legal processes
• Enforce our Terms of Service and other agreements
• Respond to lawful requests from government authorities
• Protect our legal rights and interests

4. How We Share Your Information

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following limited circumstances:

4.1 Service Providers and Business Partners

We share information with trusted third-party service providers who assist us in operating our Services:

Common Service Providers:

• Stripe: Payment processing and billing management
• Google Analytics: Website performance tracking and analytics
• Email service providers: Transactional and marketing email delivery

Service-Specific Providers:

Call Bodyguard:

• Voice infrastructure
• AI processing for call screening
• Speech recognition services

Wrapi:

• Video streaming and delivery infrastructure
• Hosting and deployment platform
• Real-time database and backend services
• Content delivery and DDoS protection
• Database services

Infrastructure:

• Cloud hosting and storage providers
• Content delivery networks (CDNs)
• Customer support tools
• Analytics and monitoring services
• Security and fraud prevention services

These service providers are contractually bound to protect your data and use it only for providing their specific services to us.

4.2 Third-Party Apps and Integrations

When you explicitly link third-party apps or services to your account, we may share data necessary for those integrations to function. You should review the privacy policies of these third-party services separately, as we are not responsible for their practices.

4.3 Legal Requirements and Protection of Rights

We may disclose your information when we believe in good faith that disclosure is necessary to:

• Comply with applicable laws, regulations, legal processes, or government requests
• Enforce our Terms of Service and other agreements
• Detect, prevent, or address fraud, security issues, or technical problems
• Protect the rights, property, or safety of Neon Fox Inc., our users, or the public
• Respond to emergency situations involving potential threats to physical safety

4.4 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. The acquiring entity will be bound by the same privacy commitments, and we will provide notice before your information is transferred and becomes subject to a different privacy policy.

4.5 With Your Consent

We may share your information for other purposes with your explicit consent or at your direction.

4.6 Aggregated and Anonymized Information

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you for research, marketing, analytics, or other business purposes.

5. Data Security

We implement industry-standard security measures to protect your information against unauthorized access, alteration, disclosure, or destruction.

5.1 Security Measures

Technical Safeguards:

• Encryption in transit using TLS/SSL
• Encryption at rest using AES-256 or equivalent
• Secure authentication mechanisms
• Multi-factor authentication options
• Device fingerprinting for security verification
• Firewalls and intrusion detection systems
• 24/7 security monitoring and incident response

Organizational Safeguards:

• Strict access controls on a need-to-know basis
• Employee background checks and privacy training
• Regular security audits and vulnerability assessments
• Incident response procedures
• Data breach notification protocols

Infrastructure Security:

• SOC 2 compliant cloud infrastructure (where applicable)
• Automated backups with point-in-time recovery
• Redundant systems and disaster recovery plans
• Canadian-based servers for Dialbox app data
• US-based secure data centers with appropriate safeguards

5.2 Important Security Notes

Call Bodyguard: We do not record or store audio from phone calls. Only text transcripts are maintained for service purposes.

Limitations: While we use commercially acceptable means to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

6.1 General Retention Periods

• Account Information: Retained until you delete your account
• Transactional Data: Retained for as long as necessary to provide Services and fulfill legal obligations
• Billing Records: Retained for 7 years for legal and tax compliance
• Support Communications: Retained for reasonable periods to provide ongoing support

6.2 Service-Specific Retention

Dialbox:

• Data retained until account deletion
• After deletion, residual data stored for 90 days for legal, fraud prevention, or backup purposes

Call Bodyguard:

• Account Information: Until account deletion
• Call Transcripts: 90 days for service improvement
• Call History: 2 years for analytics and support
• Contact Data: Until manually deleted or account closure

Wrapi:

• Event and attendee data retained for as long as necessary to provide services and comply with legal obligations
• Data deleted or anonymized within 90 days after account deletion, except where required by law

6.3 Deletion

When you delete your account or request deletion of your data:

• We will delete or anonymize your personal information within 90 days
• Some information may be retained in backup systems for a limited time
• We may retain information as required by law or for legitimate business purposes (e.g., fraud prevention, resolving disputes, enforcing agreements)

7. Your Privacy Rights

You have certain rights regarding your personal information, which may vary based on your location.

7.1 General Rights (All Users)

• Access: Request a copy of the personal information we hold about you
• Correction/Rectification: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (right to be forgotten)
• Data Portability: Receive your data in a machine-readable format or request transfer to another service provider
• Restriction: Request restriction or limitation of how we process your personal information
• Objection: Object to processing of your personal information for certain purposes
• Opt-Out: Unsubscribe from marketing communications at any time via your account dashboard, unsubscribe links in emails, or by contacting us

7.2 California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

• Right to Know: Request disclosure of what personal information we collect, use, disclose, and sell
• Right to Delete: Request deletion of personal information we have collected
• Right to Opt-Out: Opt-out of the sale or sharing of personal information (Note: We do not sell your personal information)
• Right to Correct: Request correction of inaccurate personal information
• Right to Limit: Limit the use and disclosure of sensitive personal information
• Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights

Shine the Light Law: California residents may request information about disclosures of personal information to third parties for direct marketing purposes.

7.3 European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation:

• Legal Basis for Processing: We process your data based on consent, contract performance, legal obligations, or legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
• Right to Object: Object to processing based on legitimate interests
• Right to Lodge a Complaint: File a complaint with your local data protection authority

EU Representative: For GDPR-related inquiries, contact us at the email address below.

7.4 Canadian Privacy Rights (PIPEDA)

Dialbox complies with Canada's Personal Information Protection and Electronic Documents Act (PIPEDA). Canadian users have rights to access, correct, and challenge the accuracy of their personal information.

7.5 Other Jurisdictions

We respect privacy rights under applicable laws in other jurisdictions. Contact us to exercise your rights or for questions about data protection laws in your region.

7.6 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

• Email: hello@neonfox.io
• Service-Specific Support:

You may also manage many settings directly through your account dashboard.

We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing your request.

8. International Data Transfers

Your information may be transferred to, stored, and processed in countries other than your own, including the United States and Canada, where data protection laws may differ from those in your jurisdiction.

8.1 Data Storage Locations

• Dialbox: App data stored exclusively in Canada; marketing website may be hosted on servers outside Canada (e.g., U.S./EU)
• Call Bodyguard: Data may be stored and processed in Canada and/or the United States through cloud service providers
• Wrapi: Data may be stored and processed in Canada and/or the United States through cloud service providers
• Neon Fox Corporate: Data may be stored in multiple jurisdictions including Canada and the United States

8.2 Safeguards for International Transfers

When we transfer data internationally, we ensure adequate protection through:

• Standard Contractual Clauses (SCCs): Approved by the European Commission for EU data transfers
• Adequacy Decisions: Where applicable, relying on adequacy decisions by relevant authorities
• Other Lawful Transfer Mechanisms: As required by applicable law
• Appropriate Technical and Organizational Measures: To protect data during transfer and storage

By using our Services, you consent to the transfer of your information to countries outside your jurisdiction in accordance with this Privacy Policy.

9. Children's Privacy

Our Services are not intended for, and we do not knowingly collect personal information from, children under the age specified below:

• General Policy: Our Services are not directed to individuals under 18 years of age
• Stricter Standards: We do not knowingly collect information from children under 13 (or 16 in some jurisdictions)
• Call Bodyguard: Children between 13-18 may use the service with parental consent where required by applicable law

If we learn that we have collected personal information from a child under the applicable age without proper consent, we will delete that information promptly. If you believe we may have collected information from a child, please contact us immediately at privacy@neonfox.io.

Important: If you use our Services to protect a family member who is a minor, you represent that you have the authority to provide their information and manage their account.

10. Third-Party Links and Services

Our Services may contain links to third-party websites, applications, or services that are not owned or controlled by Neon Fox Inc. This Privacy Policy does not apply to third-party services.

Our Responsibilities:

• We have no control over third-party content, privacy policies, or practices
• We are not responsible for the privacy or security practices of third-party services
• We do not endorse or assume responsibility for third-party services

Your Responsibilities:

• We strongly advise you to review the privacy policies and terms of any third-party services you access
• Exercise caution when providing information to third parties
• Understand that data shared with third-party integrations is subject to their privacy policies

Third-Party Service Providers: When we share data with service providers (as described in Section 4.1), those providers are contractually obligated to protect your data. The integrations and apps YOU choose to connect are separate and governed by their own policies.

11. Do Not Track Signals

Some web browsers have "Do Not Track" features. Currently, there is no uniform standard for how DNT signals should be interpreted. Our Services do not respond to Do Not Track signals. We will continue to monitor developments in DNT browser technology and industry standards.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, Services, legal requirements, or for other operational, legal, or regulatory reasons.

12.1 How We Notify You of Changes

When we make changes, we will:

• Update the "Last Updated" date at the top of this policy
• Post the updated policy on our websites and in our applications
• Notify you via email for material changes (to the email address associated with your account)
• Provide in-app notifications for significant changes
• Give reasonable advance notice before material changes take effect

12.2 Material Changes

For material changes that significantly affect your rights or how we handle your information, we will provide prominent notice and may request your consent where required by law.

12.3 Your Continued Use

Your continued use of our Services after changes become effective constitutes your acceptance of the updated Privacy Policy. If you do not agree with the changes, please discontinue use of our Services and contact us to close your account.

12.4 Review This Policy Regularly

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

13. Contact Us

If you have any questions, concerns, requests, or complaints regarding this Privacy Policy or our data practices, please contact us:

General Privacy Inquiries