Data Security Policy
Effective Date: April 1, 2025
AudienceIntent (“we,” “our,” “us”) is committed to protecting the confidentiality, integrity, and availability of the data entrusted to us. This Data Security Policy outlines how we safeguard client and consumer information, including lead data, CRM records, and communication details, across our platforms and services.
1. Scope
This policy applies to all personal, customer, and business data processed by AudienceIntent, including but not limited to:
Contact information (names, emails, phone numbers)
CRM and lead data provided by clients
SMS and email communication records
Analytical, behavioral, and campaign data
It covers data handled directly by AudienceIntent as well as through third-party platforms we use, including:
Go High Level (GHL) – CRM and marketing automation
Zapier – workflow and integration automation
OpenAI – AI-assisted content, messaging, and processing
2. Data Collection & Purpose
We collect and process data only as necessary to:
Provide lead reactivation, audience targeting, and marketing services
Deliver SMS and email communications (with consent)
Improve service performance through analytics and AI-powered tools
Maintain compliance with TCPA, CCPA, GDPR, and other regulations
We do not sell client or consumer data to third parties.
3. Data Storage & Protection
All data is stored on secure, encrypted servers managed by our technology partners (including GHL and Zapier).
Encryption: Data is encrypted in transit (TLS/SSL) and at rest (AES-256 or equivalent).
Access Controls: Access to client data is strictly limited to authorized AudienceIntent personnel with business need-to-know.
Authentication: We enforce secure login protocols, multi-factor authentication (MFA), and role-based permissions for all internal systems.
Data Segregation: Client accounts are logically separated to prevent cross-access.
4. Third-Party Vendors & Subprocessors
We partner only with reputable, compliant third-party providers.
GoHighLevel (GHL) – SOC 2 and GDPR-compliant CRM platform.
Zapier – SOC 2 Type II certified automation platform with encrypted connections.
OpenAI – processes data under strict privacy and security terms, including encryption and data minimization.
Each vendor maintains their own compliance certifications and security measures. AudienceIntent ensures contracts include data protection obligations.
5. Data Retention & Deletion
Data is retained only for as long as necessary to provide services or as required by law.
Upon termination of services or client request, data is securely deleted from our systems within a commercially reasonable timeframe.
Backup data is purged on a scheduled basis.
6. User Rights
Depending on your jurisdiction (GDPR, CCPA, etc.), you may have rights to:
Access a copy of your personal data
Request correction of inaccurate information
Request deletion of your data (“right to be forgotten”)
Restrict or object to processing of your data
Requests can be made at: support@audienceintent.ai
7. Incident Response
We maintain an incident response plan to address data breaches or unauthorized access.
In the event of a breach, affected clients will be notified in accordance with applicable law (typically within 72 hours for GDPR, and “without unreasonable delay” under U.S. laws).
We will document the incident, take corrective actions, and provide follow-up reports.
8. Compliance
AudienceIntent complies with:
TCPA and applicable state “Mini-TCPA” laws (SMS/telemarketing compliance)
GDPR (European Union) and UK GDPR where applicable
CCPA/CPRA (California Consumer Privacy Act/California Privacy Rights Act)
CAN-SPAM Act (for email marketing)
CTIA Messaging Principles (for SMS campaigns)
We continuously monitor regulatory updates to maintain compliance.
9. Employee & Contractor Responsibilities
All AudienceIntent personnel undergo data security and privacy training.
Employees and contractors must adhere to confidentiality agreements and internal access controls.
Violations of this policy may result in disciplinary action or termination.
10. Updates to Policy
We may update this Data Security Policy as technologies, legal requirements, or business practices evolve. Changes will be posted on this page with a revised “Effective Date.”
11. Contact Us
If you have questions regarding this Data Security Policy, please contact:
AudienceIntent
Email: support@audienceintent.ai
Data Security Policy
Effective Date: April 1, 2025
AudienceIntent (“we,” “our,” “us”) is committed to protecting the confidentiality, integrity, and availability of the data entrusted to us. This Data Security Policy outlines how we safeguard client and consumer information, including lead data, CRM records, and communication details, across our platforms and services.
1. Scope
This policy applies to all personal, customer, and business data processed by AudienceIntent, including but not limited to:
Contact information (names, emails, phone numbers)
CRM and lead data provided by clients
SMS and email communication records
Analytical, behavioral, and campaign data
It covers data handled directly by AudienceIntent as well as through third-party platforms we use, including:
Go High Level (GHL) – CRM and marketing automation
Zapier – workflow and integration automation
OpenAI – AI-assisted content, messaging, and processing
2. Data Collection & Purpose
We collect and process data only as necessary to:
Provide lead reactivation, audience targeting, and marketing services
Deliver SMS and email communications (with consent)
Improve service performance through analytics and AI-powered tools
Maintain compliance with TCPA, CCPA, GDPR, and other regulations
We do not sell client or consumer data to third parties.
3. Data Storage & Protection
All data is stored on secure, encrypted servers managed by our technology partners (including GHL and Zapier).
Encryption: Data is encrypted in transit (TLS/SSL) and at rest (AES-256 or equivalent).
Access Controls: Access to client data is strictly limited to authorized AudienceIntent personnel with business need-to-know.
Authentication: We enforce secure login protocols, multi-factor authentication (MFA), and role-based permissions for all internal systems.
Data Segregation: Client accounts are logically separated to prevent cross-access.
4. Third-Party Vendors & Subprocessors
We partner only with reputable, compliant third-party providers.
GoHighLevel (GHL) – SOC 2 and GDPR-compliant CRM platform.
Zapier – SOC 2 Type II certified automation platform with encrypted connections.
OpenAI – processes data under strict privacy and security terms, including encryption and data minimization.
Each vendor maintains their own compliance certifications and security measures. AudienceIntent ensures contracts include data protection obligations.
5. Data Retention & Deletion
Data is retained only for as long as necessary to provide services or as required by law.
Upon termination of services or client request, data is securely deleted from our systems within a commercially reasonable timeframe.
Backup data is purged on a scheduled basis.
6. User Rights
Depending on your jurisdiction (GDPR, CCPA, etc.), you may have rights to:
Access a copy of your personal data
Request correction of inaccurate information
Request deletion of your data (“right to be forgotten”)
Restrict or object to processing of your data
Requests can be made at: support@audienceintent.ai
7. Incident Response
We maintain an incident response plan to address data breaches or unauthorized access.
In the event of a breach, affected clients will be notified in accordance with applicable law (typically within 72 hours for GDPR, and “without unreasonable delay” under U.S. laws).
We will document the incident, take corrective actions, and provide follow-up reports.
8. Compliance
AudienceIntent complies with:
TCPA and applicable state “Mini-TCPA” laws (SMS/telemarketing compliance)
GDPR (European Union) and UK GDPR where applicable
CCPA/CPRA (California Consumer Privacy Act/California Privacy Rights Act)
CAN-SPAM Act (for email marketing)
CTIA Messaging Principles (for SMS campaigns)
We continuously monitor regulatory updates to maintain compliance.
9. Employee & Contractor Responsibilities
All AudienceIntent personnel undergo data security and privacy training.
Employees and contractors must adhere to confidentiality agreements and internal access controls.
Violations of this policy may result in disciplinary action or termination.
10. Updates to Policy
We may update this Data Security Policy as technologies, legal requirements, or business practices evolve. Changes will be posted on this page with a revised “Effective Date.”
11. Contact Us
If you have questions regarding this Data Security Policy, please contact:
AudienceIntent
Email: support@audienceintent.ai
Data Security Policy
Effective Date: April 1, 2025
AudienceIntent (“we,” “our,” “us”) is committed to protecting the confidentiality, integrity, and availability of the data entrusted to us. This Data Security Policy outlines how we safeguard client and consumer information, including lead data, CRM records, and communication details, across our platforms and services.
1. Scope
This policy applies to all personal, customer, and business data processed by AudienceIntent, including but not limited to:
Contact information (names, emails, phone numbers)
CRM and lead data provided by clients
SMS and email communication records
Analytical, behavioral, and campaign data
It covers data handled directly by AudienceIntent as well as through third-party platforms we use, including:
Go High Level (GHL) – CRM and marketing automation
Zapier – workflow and integration automation
OpenAI – AI-assisted content, messaging, and processing
2. Data Collection & Purpose
We collect and process data only as necessary to:
Provide lead reactivation, audience targeting, and marketing services
Deliver SMS and email communications (with consent)
Improve service performance through analytics and AI-powered tools
Maintain compliance with TCPA, CCPA, GDPR, and other regulations
We do not sell client or consumer data to third parties.
3. Data Storage & Protection
All data is stored on secure, encrypted servers managed by our technology partners (including GHL and Zapier).
Encryption: Data is encrypted in transit (TLS/SSL) and at rest (AES-256 or equivalent).
Access Controls: Access to client data is strictly limited to authorized AudienceIntent personnel with business need-to-know.
Authentication: We enforce secure login protocols, multi-factor authentication (MFA), and role-based permissions for all internal systems.
Data Segregation: Client accounts are logically separated to prevent cross-access.
4. Third-Party Vendors & Subprocessors
We partner only with reputable, compliant third-party providers.
GoHighLevel (GHL) – SOC 2 and GDPR-compliant CRM platform.
Zapier – SOC 2 Type II certified automation platform with encrypted connections.
OpenAI – processes data under strict privacy and security terms, including encryption and data minimization.
Each vendor maintains their own compliance certifications and security measures. AudienceIntent ensures contracts include data protection obligations.
5. Data Retention & Deletion
Data is retained only for as long as necessary to provide services or as required by law.
Upon termination of services or client request, data is securely deleted from our systems within a commercially reasonable timeframe.
Backup data is purged on a scheduled basis.
6. User Rights
Depending on your jurisdiction (GDPR, CCPA, etc.), you may have rights to:
Access a copy of your personal data
Request correction of inaccurate information
Request deletion of your data (“right to be forgotten”)
Restrict or object to processing of your data
Requests can be made at: support@audienceintent.ai
7. Incident Response
We maintain an incident response plan to address data breaches or unauthorized access.
In the event of a breach, affected clients will be notified in accordance with applicable law (typically within 72 hours for GDPR, and “without unreasonable delay” under U.S. laws).
We will document the incident, take corrective actions, and provide follow-up reports.
8. Compliance
AudienceIntent complies with:
TCPA and applicable state “Mini-TCPA” laws (SMS/telemarketing compliance)
GDPR (European Union) and UK GDPR where applicable
CCPA/CPRA (California Consumer Privacy Act/California Privacy Rights Act)
CAN-SPAM Act (for email marketing)
CTIA Messaging Principles (for SMS campaigns)
We continuously monitor regulatory updates to maintain compliance.
9. Employee & Contractor Responsibilities
All AudienceIntent personnel undergo data security and privacy training.
Employees and contractors must adhere to confidentiality agreements and internal access controls.
Violations of this policy may result in disciplinary action or termination.
10. Updates to Policy
We may update this Data Security Policy as technologies, legal requirements, or business practices evolve. Changes will be posted on this page with a revised “Effective Date.”
11. Contact Us
If you have questions regarding this Data Security Policy, please contact:
AudienceIntent
Email: support@audienceintent.ai