Privacy Policy ·
This Privacy Policy explains how DSYP Group ("we", "us", or "our"), the operator of Caliradi.ai (the "Service"), collects, uses, shares, and protects your personal information when you visit our website at caliradi.ai or use our products.
We are committed to protecting your privacy and complying with applicable data-protection laws including the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA / CPRA), and equivalent laws worldwide.
Quick summary: We collect only what we need to deliver the Service. We never sell your data. You can request access, correction, or deletion at any time by emailing support@ydygroup.com.
1. Information we collect
Information you provide directly
- Account & contact data: name, email address, phone number, company name, job title.
- Payment data: processed securely through Stripe. We do not store full credit-card numbers on our servers.
- Communications: messages you send to our chatbot Kaira, support emails, and form submissions.
Information collected automatically
- Usage data: pages visited, click events, time spent, language preference, referring URL.
- Device data: browser type, operating system, screen size, IP address (anonymized for analytics).
- Cookies and similar technologies: see Section 4 below and our Cookie Policy.
2. How we use your information
We use your personal information to:
- Provide, operate, and improve the Caliradi Service.
- Process payments and manage your subscription.
- Match you to the right plan via our AI assistant Kaira.
- Send transactional emails (welcome, receipts, security alerts).
- Send marketing communications, where you have opted in or where allowed by law (you can unsubscribe at any time).
- Detect, investigate, and prevent fraudulent or abusive activity.
- Comply with legal obligations.
- Power AI features (our assistant Kaira, content and outreach generation) by sending the necessary inputs to our AI providers — OpenAI and Anthropic — who process them under terms that prohibit training their models on your data. We do not train our own AI models on your personal information.
3. Legal bases for processing (GDPR)
If you are in the European Economic Area, United Kingdom, or Switzerland, we rely on these legal bases:
| Activity | Legal basis |
|---|---|
| Providing the Service to you | Performance of a contract (Art. 6(1)(b)) |
| Marketing emails & analytics cookies | Your consent (Art. 6(1)(a)) |
| Fraud prevention & security | Legitimate interests (Art. 6(1)(f)) |
| Tax and legal compliance | Legal obligation (Art. 6(1)(c)) |
4. Cookies and tracking
We use cookies and similar technologies for essential site functions, analytics, and advertising attribution. You can accept or reject non-essential cookies via the cookie banner shown on first visit, or change your preferences at any time.
Our third-party tracking services include:
- Meta Pixel (Facebook / Instagram) — for ad attribution and remarketing. Meta Privacy Policy
- Google Analytics 4 — for traffic analytics with IP anonymization. Google Privacy Policy
- Stripe — for payment processing and fraud prevention. Stripe Privacy Policy
See our full Cookie Policy for the complete list of cookies we use.
5. Sharing your information
We never sell your personal information. We share it only with:
- Service providers (sub-processors) who help us operate the platform: Railway and Vercel (hosting), Neon (database), Upstash (cache), Inngest (background jobs), GoHighLevel (CRM), OpenAI and Anthropic (AI), Stripe (payments), Resend (transactional email), Smartlead (email outreach), Ayrshare (social publishing), and HeyGen (video). Each processes personal information only to provide its service to us, under its data-processing terms. A current list of our sub-processors is available on request.
- Advertising partners (Meta, Google) — only event signals (e.g., "page viewed", "checkout started"), never your name, email, or phone.
- Legal authorities — when required by law, court order, or to protect rights, safety, or property.
- In a business transfer (merger, acquisition, sale of assets), with notice to you in advance.
SMS / text messaging data
No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. Information sharing to subcontractors in support services, such as customer service, is permitted. All other use case categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
6. International data transfers
Caliradi is operated from the United States. If you access the Service from outside the U.S., your information will be transferred to and processed in the U.S. We rely on the EU Standard Contractual Clauses (SCCs) and equivalent safeguards for cross-border data transfers.
Customers in China: our Service and infrastructure are hosted in the United States. If you are located in China and provide personal information — including personal information of contacts you source from within China — it will be transferred outside China to the U.S. We handle such transfers in accordance with China's Personal Information Protection Law (PIPL), including obtaining separate consent where required and, where applicable, entering into the CAC Standard Contract for the transfer. Personal information of individuals located outside China (for example, your U.S. prospects) is not subject to PIPL's cross-border-transfer rules.
7. Data retention
We keep your personal information only as long as needed for the purposes described in this Policy. Specifically:
- Account data: for the lifetime of your account, plus 12 months after closure for tax / audit purposes.
- Payment records: 7 years (legal requirement).
- Marketing emails: until you unsubscribe.
- Analytics data: 14 months (Meta & GA4 default).
- Chat transcripts with Kaira: 90 days, then anonymized.
8. Your rights
Depending on your location, you have the right to:
- Access the personal information we hold about you
- Correct inaccurate or incomplete information
- Delete your information (right to be forgotten)
- Restrict or object to certain processing
- Receive a copy of your data in a portable format
- Withdraw consent at any time
- Lodge a complaint with a supervisory authority
California residents (CCPA/CPRA): you also have the right to know what categories of personal information we collect, to opt out of the sale or sharing of personal information (we do not sell), and to non-discrimination for exercising your rights.
To exercise any right, email support@ydygroup.com. We respond within 30 days.
9. Children's privacy
Caliradi is a B2B service intended for use by businesses and adults aged 18 and older. We do not knowingly collect personal information from children under 13 (or 16 in the EU). If you believe a child has provided us information, contact us immediately and we will delete it.
10. Security
We implement industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest (through our database provider), database-level tenant isolation, role-based access controls, request-level access logging, and the ability to delete your data on request. We are working toward SOC-2 Type II certification. No system is 100% secure, but we work hard to protect your data.
11. Changes to this Policy
We may update this Policy from time to time. When we make material changes, we will post the new Policy here and update the "Last updated" date. For significant changes, we will notify you via email or a prominent site notice at least 14 days in advance.
12. Contact us
Questions, concerns, or requests about this Privacy Policy or your personal information:
DSYP Group (operator of Caliradi.ai)
Privacy email: support@ydygroup.com
General inquiries: support@ydygroup.com