Privacy Policy

Introduction

This website is operated by Taskflowify, LLC ("Assist Staff," "we," "us," or "Company"). We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services ("Services").

By using our Services, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this privacy policy, please do not access our Services.

Your Privacy Rights

Assist Staff is operated by Taskflowify, LLC, a Texas limited liability company. As a Texas-based business, we comply with the Texas Data Privacy and Security Act (TDPSA) and provide all users with the privacy protections required under Texas law.

Texas Data Privacy and Security Act (TDPSA): All users are afforded rights under the TDPSA, including the right to access, correct, delete, and port your data, and to opt out of targeted advertising or data sales. See full Texas Privacy Rights

California Residents (CCPA/CPRA): If you are a California resident, you have additional rights under California law. See California Privacy Rights

Do Not Sell My Personal Information: We do not sell your personal information. You may exercise your opt-out rights under the TDPSA or CCPA at any time. Learn more

SMS / Text Messages: We send SMS for account security (MFA) and service notifications, and we deliver tenant-initiated SMS on tenants' behalf. No mobile information is shared with third parties or affiliates for marketing. Reply STOP to opt out. See SMS / Text Message Communications

What Information Do We Collect?

1. Personal Information

We collect personal information that you provide directly:

• Account Information: Name, email address, password, phone number
• Profile Information: Organization name, job title, preferences
• Billing Information: Billing address, payment method (processed via Stripe)
• Communications: Messages, feedback, support requests
• Voice & Call Data: Call recordings, transcripts, and voice agent interaction logs
• SMS / Text Message Data: Mobile phone numbers, message content, delivery status, opt-in/opt-out state, and message metadata for SMS sent or received through the Services

2. Usage Data (Automatically Collected)

• IP address and geolocation
• Browser type, version, and device information
• Pages visited, time spent, navigation paths
• Referring/exit pages and URLs
• Click data and interaction patterns

3. Cookies and Tracking Technologies

We use cookies, web beacons, and similar technologies. See full Cookie Policy

Essential Service Providers

We only share your information with service providers that are essential to operating our Services. We do not share, sell, rent, or trade your information for marketing or advertising purposes.

Categories of essential service providers:

• Payment Processing: To process transactions and manage billing securely
• Intelligent Automation: To provide intelligent voice agents and call handling features
• Communication Services: To enable real-time voice and telephony interactions
• Cloud Infrastructure: To host and store your data securely
• Analytics: To understand usage patterns and improve our Services (anonymized data only)

Important: All service providers are contractually obligated to protect your data and use it only for providing services to us. They cannot use your data for their own purposes.

SMS / Text Message Communications

Assist Staff uses text messaging in a narrow, transactional way: to protect your account and to send short reminders and follow-ups tied to a call your tenant's voice agent has already had with the recipient. We do not run bulk marketing or promotional text campaigns. Texts are delivered by our messaging provider, SignalWire, over A2P 10DLC business numbers registered with The Campaign Registry as a conversational / low-volume use case.

Types of Texts We Send

• Account security (MFA): One-time verification codes when you sign in, if you have turned on SMS multi-factor authentication.
• Service notifications: Important account, billing, and provisioning alerts to tenants.
• Reminders and follow-ups: Short messages tied to an interaction the recipient has already had with the tenant — an appointment reminder, a callback confirmation after a missed call, or a brief post-call follow-up. These go only to recipients who gave the tenant their mobile number for that purpose.

We do not use text messaging for bulk marketing, promotional blasts, prospecting to numbers the recipient did not provide directly, lead-list outreach, or any SHAFT-DC content (sex, hate, alcohol, firearms, tobacco, drugs, cannabis).

Message Frequency, Carrier Charges, and Help

• How often: MFA texts arrive only when you sign in. Service notifications are rare. Reminder / follow-up texts depend on the tenant's interaction with the recipient.
• Carrier charges: Standard message and data rates from your wireless carrier may apply. We do not charge you to receive texts.
• Reply HELP to any message for support, or email [email protected].
• Reply STOP (or UNSUBSCRIBE, CANCEL, END, QUIT) to opt out. You will get one confirmation message and then no further texts from that sender until you opt back in. STOP does not affect email or in-app notifications. To turn off SMS-based MFA, change it in your account security settings.

Mobile Information and Consent Sharing

No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. Information sharing is limited to subcontractors that support the SMS service itself (for example, our SMS delivery provider, fraud-prevention tooling, and consent-management tooling), and only to the extent necessary to operate the Services. All such subcontractors are contractually prohibited from using mobile opt-in data, phone numbers, or message content for their own marketing or for resale.

Who is the Sender? Tenant Responsibilities

When a tenant uses the Services to send a reminder or follow-up text to their own customer:

• The tenant is the sender and is responsible for the recipient's mobile number and the message content.
• Assist Staff acts as a service provider that delivers the message on the tenant's behalf.
• The tenant must have received the recipient's number directly from the recipient for the purpose of receiving reminders or follow-ups, and the message must stay transactional. Sending marketing or promotional texts through the Services is not permitted.
• Assist Staff automatically processes STOP and HELP replies on registered 10DLC numbers and records opt-out status across the platform.

SMS Data Retention

Message content, delivery metadata, and opt-in/opt-out state are retained for the periods listed in "Data Retention Periods" above. Opt-out records are retained for the longer of (a) the lifetime of the tenant's account, or (b) four years after the last message to the recipient, in order to honor the recipient's opt-out indefinitely and to support recordkeeping required to defend against TCPA claims.

How We Use Your Information

• Provide, operate, and maintain our Services
• Process transactions and send related information
• Manage your account and provide customer support
• Send administrative information, updates, and security alerts
• Send marketing and promotional communications (with your consent)
• Personalize and improve user experience
• Monitor and analyze usage patterns and trends
• Detect, prevent, and address technical issues and fraud
• Comply with legal obligations
• Enforce our Terms of Service

Data Retention Periods

We retain your personal information only as long as necessary:

• Account Data: Duration of account plus 30 days after closure
• Transaction Records: 7 years (tax and legal requirements)
• Call Recordings & Transcripts: Configurable per organization, default 90 days
• SMS Messages & Delivery Metadata: Configurable per organization, default 12 months; opt-out records retained at least 4 years from last message
• Marketing Data: Until you opt-out or 2 years of inactivity
• Usage Logs: 90 days
• Service Desk: 3 years
• Legal Holds: Duration of legal requirement

How We Share Your Information

Our Commitment: We do NOT sell, rent, or trade your personal information. We only share data with essential service providers and as required by law.

We may share your information only in these limited situations:

• Essential Service Providers: Only providers necessary to operate our Services (payment processing, intelligent features, cloud hosting). All providers are contractually bound to protect your data and use it solely for providing services to us.
• Business Transfers: In connection with a merger, sale, or acquisition (you will be notified)
• Legal Requirements: When required by law, court order, or to protect rights, property, or safety
• With Your Explicit Consent: When you specifically authorize us to share information

We do NOT share your information for: Marketing purposes, advertising, data brokers, or any non-essential purposes.

Cookies and Tracking Technologies

Types of Cookies We Use

• Essential Cookies: Required for basic site functionality (cannot be disabled)
• Performance Cookies: Help us understand how visitors use our site
• Functionality Cookies: Remember your preferences and settings

Managing Cookies

You can control cookies through:

• Our cookie consent banner (first visit)
• Browser settings (may affect functionality)
• Privacy settings in your account

Texas Privacy Rights (TDPSA)

Taskflowify, LLC is incorporated and operates in the State of Texas. We comply with the Texas Data Privacy and Security Act (TDPSA), effective July 1, 2024 (Tex. Bus. & Com. Code Ch. 541). The TDPSA provides the following consumer rights:

• Right to Access: Confirm whether we are processing your personal data and access that data
• Right to Correct: Correct inaccuracies in your personal data
• Right to Delete: Delete personal data you have provided or we have obtained
• Right to Portability: Obtain a copy of your data in a portable, readily usable format
• Right to Opt-Out: Opt out of the processing of your data for targeted advertising, sale of personal data, or profiling that produces legal or similarly significant effects

How to Exercise Your Rights

To submit a verifiable consumer request, contact us at [email protected]. Per TDPSA requirements, we will acknowledge your request within 10 business days and respond substantively within 45 days. If we need additional time, we will notify you of a one-time 45-day extension. If we deny your request, you may appeal by replying to our response, and we will respond to the appeal within 60 days.

Sensitive Data

Under the TDPSA, we do not process sensitive personal data (including racial/ethnic origin, religious beliefs, health diagnosis, sexual orientation, citizenship/immigration status, genetic or biometric data, children's data, or precise geolocation) without obtaining your affirmative consent.

Data Protection Assessments

As required by the TDPSA, we conduct and document data protection assessments for processing activities that present a heightened risk of harm to consumers, including targeted advertising, profiling, and the sale of personal data.

Texas Attorney General

If you are not satisfied with our response to your request or appeal, you may file a complaint with the Texas Attorney General at texasattorneygeneral.gov.

Do Not Sell My Personal Information

We do NOT sell, rent, or trade your personal information. Period. This applies under both the Texas Data Privacy and Security Act (TDPSA) and the California Consumer Privacy Act (CCPA/CPRA).

We only share your information with essential service providers (payment processors, cloud hosting, intelligent services) necessary to provide our Services. These providers:

• Are contractually obligated to protect your data
• Cannot use your data for their own purposes
• Can only use data to provide services to us

To exercise your opt-out rights under the TDPSA or CCPA, contact: [email protected]

Additional Rights for California Residents (CCPA/CPRA)

If you are a California resident, you have the following additional rights under the California Consumer Privacy Act and California Privacy Rights Act:

• Right to Know: Request disclosure of personal information collected, used, and shared
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt out of the sale or sharing of personal information
• Right to Non-Discrimination: Not be discriminated against for exercising your rights
• Right to Correct: Request correction of inaccurate information
• Right to Limit Use: Limit use and disclosure of sensitive personal information

To exercise these rights, contact us at [email protected]. We will respond within 45 days as required by the CCPA.

Data Security

We implement industry-standard security measures:

• TLS/SSL encryption for data in transit
• AES-256 encryption for data at rest
• Regular security audits and penetration testing
• Access controls and authentication (MFA supported)
• Employee training on data protection
• Incident response procedures

However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Data Breach Notification

In the event of a data breach affecting your personal information, we will notify you within 72 hours via email and provide information about the breach, its impact, and steps you can take to protect yourself.

Children's Privacy

Our Services are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children under 16. If we learn we have collected such information, we will delete it immediately. If you believe we have collected information from a child under 16, please contact us.

Your Choices and Controls

• Account Settings: Update your profile and preferences anytime
• Email Preferences: Unsubscribe from marketing emails via the link in each email
• Cookie Settings: Manage cookies via our cookie banner or browser settings
• Data Access/Deletion: Request your data or account deletion via email
• Do Not Track: We honor Do Not Track (DNT) browser signals

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of changes by:

• Posting the new policy on this page with an updated "Last Updated" date
• Sending an email notification for material changes
• Displaying a prominent notice on our website

Your continued use of our Services after changes constitutes acceptance of the updated policy.