Comprehensive Privacy Policy

Echora Pulse | Effective Date: January 1, 2026

Echora Pulse | Contact: [email protected]

INTRODUCTION

Echora Pulse (“we,” “us,” “our”) provides AI Voice Agent and AI Chat Agent services for businesses. We collect phone numbers and emails only to schedule demos or respond to customer inquiries. We do not send unsolicited marketing messages. Any data collected is stored securely and used solely for providing the requested service. Customers may opt out of communications at any time.

Echora Pulse ("Company," "we," "us," or "our") is committed to protecting the privacy and security of the personal information of every individual who interacts with our business, our services, our website, and our AI-powered communication systems. This Privacy Policy explains how we collect, use, store, share, and protect your personal information, and describes your rights and choices with respect to that information.

This Privacy Policy applies to all services offered by Echora Pulse, including our AI Voice Agent systems, AI Chat Agent systems, lead capture tools, appointment booking systems, and all associated communication services delivered on behalf of our business clients.

By accessing our website, using our services, or interacting with any Echora Pulse-powered communication system, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy.

If you do not agree with the terms of this Privacy Policy, please discontinue use of our services immediately.

SECTION 1: INFORMATION WE COLLECT

1.1 Information You Provide Directly

We collect personal information that you voluntarily provide when you interact with Echora Pulse or any communication system powered by Echora Pulse technology.

This includes but is not limited to:

- Contact Information: Full name, home or business address, email address, and phone number.

- Service Information: Details about the services you are requesting, the nature of your inquiry, and any relevant information you share during a call, chat, or form submission.

Appointment & Booking Information: Preferred appointment dates and times, service addresses, and any special instructions or requirements provided during the booking process.

Account Information: Username, password, billing information, and preferences associated with any registered account you create with Echora Pulse or one of our business clients.

Payment Information: Billing name, address, and payment authorization details. Please note that full payment card numbers are never collected or stored by Echora Pulse systems. All payment processing is handled through secure, PCI-compliant third-party payment processors.

Communications: The content of any messages, emails, chat transcripts, or call recordings generated during your interactions with an Echora Pulse-powered system.

1.2 Information Collected Automatically

When you visit our website or interact with our AI communication systems, we may automatically collect certain technical information, including:

- Device & Browser Information: IP address, browser type and version, operating system, device type, and screen resolution.

- Usage Data: Pages visited, time spent on pages, links clicked, referral URLs, and navigation paths through our website.

- Call Data: Call duration, call time and date, caller phone number, call recordings, and call transcriptions where applicable and disclosed.

- Chat Data: Chat session duration, messages exchanged, response times, and session metadata.

- Cookies & Tracking Technologies: We use cookies, web beacons, and similar tracking technologies to enhance your experience on our website and to collect usage data. You may control cookie preferences through your browser settings. Disabling cookies may affect the functionality of certain features of our website.

1.3 Information Collected from Third Parties

We may receive personal information about you from third-party sources, including:

Business Clients: The businesses that deploy Echora Pulse communication systems may provide us with customer information necessary to deliver their services, including existing customer records, service histories, and contact details.

CRM & Scheduling Platforms: When integrated with third-party platforms such as GoHighLevel, ServiceTitan, Housecall Pro, Jobber, or similar field service management and CRM systems, we may receive and process data stored within those platforms.

Marketing & Analytics Partners: We may receive aggregated or anonymized data from marketing and analytics partners to improve our services and communications.

SECTION 2: HOW WE USE YOUR INFORMATION

Echora Pulse uses the personal information we collect for the following purposes:

2.1 Service Delivery

To provide, operate, and maintain our AI voice and chat communication systems on behalf of our business clients, including answering calls, responding to chat inquiries, qualifying leads, booking appointments, and routing communications to the appropriate parties.

2.2 Communication

To communicate with you regarding your service requests, appointments, account information, and any follow-up actions arising from your interactions with an Echora Pulse-powered system. This includes sending appointment confirmations, reminders, and service follow-up messages via phone call, SMS, or email.

2.3 SMS & Phone Communications - A2P Messaging

Where you have provided explicit consent, we may send you automated SMS messages for the following purposes: appointment confirmations and reminders, service follow-up notifications, promotional offers and service announcements from the business whose system you interacted with, and re-engagement communications for services you have previously inquired about or used.

Consent for SMS Communications: By providing your mobile phone number and checking the consent checkbox on any Echora Pulse-powered form, widget, or booking interface, you expressly consent to receive automated SMS text messages from Echora Pulse and/or the business client whose system you interacted with. Message and data rates may apply. Message frequency varies based on your interactions and service requests.

Opt-Out: You may opt out of SMS communications at any time by replying STOP to any SMS message you receive. Upon receipt of your STOP message, we will send one final confirmation message and immediately cease all further SMS communications to your number.

Your opt-out request will be processed within 24 hours and your number will be permanently added to our Do Not Contact list.

Help: For assistance with SMS communications, reply HELP to any message you receive or contact us directly at the contact information provided at the end of this Privacy Policy.

2.4 Business Operations

To manage our internal business operations, including billing, client account management, system performance monitoring, quality assurance, staff training, and service improvement.

2.5 Analytics & Improvement

To analyze usage patterns, call and chat performance data, booking conversion rates, and customer interaction quality in order to continuously improve our AI systems, scripts, workflows, and overall service quality.

2.6 Legal Compliance

To comply with applicable federal, state, and local laws and regulations, respond to lawful requests from government authorities, enforce our terms of service, and protect the rights, property, and safety of Echora Pulse, our clients, and the public.

2.7 Marketing Communications

With your explicit consent, to send you information about Echora Pulse products, services, updates, and promotional offers. You may opt out of marketing communications at any time by following the unsubscribe instructions included in any marketing email or by contacting us directly.

SECTION 3: SMS MESSAGING COMPLIANCE - A2P 10DLC

3.1 Our Commitment to A2P Compliance

Echora Pulse is fully committed to compliance with all applicable regulations governing Application-to-Person (A2P) messaging, including the requirements of The Campaign Registry (TCR), the Telephone Consumer Protection Act (TCPA), and the guidelines established by major US wireless carriers including AT&T, T-Mobile, and Verizon.

3.2 Brand & Campaign Registration

All SMS messaging conducted through Echora Pulse systems is registered under the A2P 10DLC framework. This includes complete brand registration with The Campaign Registry, campaign registration identifying the specific use case for each messaging campaign, and carrier vetting and approval prior to the commencement of any messaging campaign. Business clients deploying Echora Pulse systems are required to maintain their own valid A2P brand and campaign registrations for any SMS communications sent to their customers.

3.3 Consent Requirements

Echora Pulse requires that all SMS communications sent through our systems are based on properly obtained consumer consent. The following consent standards apply:

Express Written Consent: Required for all marketing and promotional SMS messages. Consent must be obtained through a clear and conspicuous opt-in mechanism, such as a checkbox on a web form, that specifically describes the type of messages the consumer will receive and is not pre-checked by default.

Express Consent: Required for all transactional and informational messages, including appointment reminders and service confirmations. Consent may be obtained verbally or in writing.

Consent Records: Echora Pulse maintains records of all consumer consents, including the date, time, method of consent, and the specific consent language presented to the consumer at the time of opt-in. These records are retained for a minimum of five years.

3.4 Required SMS Disclosure Language

All Echora Pulse-powered opt-in forms and booking interfaces that collect mobile phone numbers for SMS communications must include the following disclosure language, or a compliant equivalent approved by our legal team:

"By providing your mobile phone number and checking this box, you consent to receive automated SMS text messages from [Business Name] and/or Echora Pulse regarding your service requests, appointment confirmations, reminders, and promotional offers. Message and data rates may apply. Message frequency varies. Reply STOP to opt out at any time. Reply HELP for assistance. View our Privacy Policy at [URL] and Terms of Service at [URL]."

3.5 Prohibited Messaging Practices

Echora Pulse strictly prohibits the following messaging practices across all systems and client deployments:

- Sending SMS messages to consumers who have opted out or requested Do Not Contact status.

- Sending messages before 8:00 AM or after 9:00 PM in the recipient's local time zone.

- Sending messages that contain deceptive, misleading, or fraudulent content.

- Sending unsolicited promotional messages without prior express written consent.

- Harvesting phone numbers from third-party lists without verified consent documentation.

- Sharing or selling consumer phone numbers to unauthorized third parties.

- Sending messages that facilitate or promote illegal activities of any kind.

3.6 Do Not Contact List Management

Echora Pulse maintains a comprehensive Do Not Contact list that is updated in real time. All opt-out requests received via STOP reply, direct contact, or any other means are processed within 24 hours and the consumer's number is permanently added to the Do Not Contact list. This list is cross-referenced before any outbound SMS or automated call campaign is initiated. Business clients are required to honor all opt-out requests immediately and are prohibited from re-enrolling opted-out consumers without new, independently obtained consent.

SECTION 4: TELEPHONE CONSUMER PROTECTION ACT (TCPA) COMPLIANCE

4.1 Our TCPA Commitment

Echora Pulse operates in full compliance with the Telephone Consumer Protection Act (TCPA), 47 U.S.C. § 227, and all regulations promulgated thereunder by the Federal Communications Commission (FCC). The TCPA establishes strict rules governing automated telephone calls, prerecorded voice messages, and SMS text messages to consumers.

4.2 Automated Calls & AI Voice Communications

Echora Pulse's AI Voice Agent systems constitute automated telephone dialing systems under the TCPA. Accordingly, the following requirements apply to all AI voice communications conducted through our systems:

Prior express consent is required before placing any automated or AI-powered call to a consumer's cellular telephone number. Prior express written consent is required for any automated call that includes a marketing or promotional message. All outbound automated calls must identify the business on whose behalf the call is being made within the first few seconds of the call. All outbound automated calls must provide an automated opt-out mechanism allowing the consumer to request no further calls during the call itself. Calls to residential landlines using prerecorded messages require prior express consent. No automated calls may be placed before 8:00 AM or after 9:00 PM in the recipient's local time zone.

4.3 AI Disclosure

In compliance with applicable state and federal regulations and in alignment with best practices for ethical AI communication, Echora Pulse AI Voice Agents will disclose their AI nature to any consumer who sincerely and directly asks whether they are speaking with a human or an automated system. This disclosure will be made clearly, honestly, and without deception.

4.4 National Do Not Call Registry

Echora Pulse scrubs all outbound call lists against the National Do Not Call Registry maintained by the Federal Trade Commission (FTC) prior to initiating any outbound calling campaign. Numbers registered on the National Do Not Call Registry will not be contacted for marketing or promotional purposes without prior express written consent from the registered consumer.

SECTION 5: HOW WE SHARE YOUR INFORMATION

5.1 With Business Clients

When you interact with an Echora Pulse-powered communication system deployed by one of our business clients, your personal information and interaction data is shared with that business client for the purpose of fulfilling your service request, managing your appointment, and maintaining your customer relationship with that business.

5.2 With Service Providers & Technology Partners

We share personal information with carefully selected third-party service providers who assist us in operating our systems and delivering our services. These providers are contractually obligated to protect your information and may only use it for the specific purposes for which it was shared. Our key technology partners include telecommunication infrastructure providers, cloud hosting and storage providers, CRM and scheduling platform providers, payment processing providers, analytics and reporting providers, and SMS and email delivery providers.

5.3 With Regulatory & Legal Authorities

We may disclose your personal information to government authorities, law enforcement agencies, or regulatory bodies when required to do so by law, court order, or lawful regulatory request, or when we believe disclosure is necessary to protect the rights, property, or safety of Echora Pulse, our clients, or the public.

5.4 Business Transfers

In the event of a merger, acquisition, sale of assets, or other business transfer involving Echora Pulse, your personal information may be transferred to the acquiring entity as part of the transaction. We will notify you of any such transfer and any changes to this Privacy Policy that may result.

5.5 What We Do Not Do

Echora Pulse does not sell your personal information to third parties for their own marketing purposes. We do not share your personal information with unauthorized third parties. We do not use your personal information for purposes beyond those described in this Privacy Policy without your explicit consent.

No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. Information sharing to subcontractors in support services, such as customer service, is permitted. All other use case categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.

SECTION 6: DATA RETENTION

Echora Pulse retains personal information for as long as necessary to fulfill the purposes for which it was collected, to comply with our legal obligations, to resolve disputes, and to enforce our agreements. Specific retention periods are as follows:

Call Recordings & Transcriptions: Retained for a minimum of 12 months for quality assurance purposes and for a maximum of 5 years unless a longer retention period is required by law or requested by our business client.

Consent Records: Retained for a minimum of 5 years from the date of consent to demonstrate compliance with TCPA and A2P regulations.

Customer Interaction Data: Retained for the duration of the active customer relationship and for a minimum of 3 years following the conclusion of that relationship.

Do Not Contact Records: Retained indefinitely to ensure permanent compliance with opt-out requests.

Billing & Financial Records: Retained for a minimum of 7 years in compliance with applicable tax and financial regulations.

When personal information is no longer required for any of the above purposes it will be securely deleted or anonymized in accordance with our data destruction policy.

SECTION 7: DATA SECURITY

Echora Pulse implements comprehensive technical, administrative, and physical security measures to protect your personal information against unauthorized access, disclosure, alteration, loss, or destruction.

Our security measures include industry-standard encryption for data in transit and at rest, strict access controls limiting data access to authorized personnel only, regular security audits and vulnerability assessments, employee training on data privacy and security best practices, incident response procedures for the detection and management of data breaches, and secure data destruction procedures for information that is no longer required.

While we implement rigorous security measures, no system can guarantee absolute security. In the event of a data breach that affects your personal information, we will notify you and all applicable regulatory authorities in accordance with applicable breach notification laws.

SECTION 8: YOUR PRIVACY RIGHTS

8.1 General Rights

Depending on your location and applicable law, you may have the following rights with respect to your personal information:

Right to Access: The right to request a copy of the personal information we hold about you.

Right to Correction: The right to request correction of any inaccurate or incomplete personal information we hold about you.

Right to Deletion: The right to request deletion of your personal information, subject to our legal obligations and legitimate business needs.

Right to Opt-Out of SMS: The right to opt out of SMS communications at any time by replying STOP to any message.

Right to Opt-Out of Calls: The right to request that your number be added to our internal Do Not Call list at any time.

Right to Data Portability: The right to request your personal information in a structured, commonly used, and machine-readable format.

Right to Withdraw Consent: The right to withdraw consent for any processing activity based on your consent, at any time, without affecting the lawfulness of processing conducted prior to withdrawal.

8.2 California Residents — CCPA / CPRA Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), including the right to know what personal information is collected, used, shared, or sold, the right to delete personal information held by businesses, the right to opt out of the sale or sharing of personal information, the right to correct inaccurate personal information, the right to limit the use of sensitive personal information, and the right to non-discrimination for exercising your privacy rights.

To exercise your California privacy rights, please contact us using the information provided in Section 11 of this Privacy Policy. We will respond to verified requests within 45 days as required by law.

8.3 Other State Privacy Laws

Echora Pulse is committed to compliance with all applicable state privacy laws, including but not limited to the Virginia Consumer Data Protection Act (VCDPA), the Colorado Privacy Act (CPA), the Connecticut Data Privacy Act (CTDPA), and the Texas Data Privacy and Security Act (TDPSA). If you are a resident of a state with applicable privacy laws, you may have similar rights to those described above. Please contact us to exercise your rights.

SECTION 9: CHILDREN'S PRIVACY

Echora Pulse services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13 without verifiable parental consent, we will take immediate steps to delete that information from our systems. If you believe we may have inadvertently collected information from a child under 13, please contact us immediately using the information in Section 11.

SECTION 10: CHANGES TO THIS PRIVACY POLICY

Echora Pulse reserves the right to update or modify this Privacy Policy at any time to reflect changes in our practices, services, technology, legal requirements, or other factors.

When we make material changes to this Privacy Policy, we will notify you by updating the Effective Date at the top of this document, posting a prominent notice on our website, and where required by law, sending a direct notification to affected individuals via email or SMS.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our services following the posting of changes constitutes your acceptance of the updated Privacy Policy.

SECTION 11: CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy, your personal information, or your privacy rights, please contact us through any of the following channels:

Echora Pulse Privacy & Compliance Department Email: [email protected]

For SMS Opt-Out: Reply STOP to any SMS message

For SMS Assistance: Reply HELP to any SMS message

For Do Not Call Requests: Email [email protected]

We are committed to responding to all privacy-related inquiries within 5 business days and to resolving all verified consumer rights requests within the timeframes required by applicable law.

SECTION 12: GOVERNING LAW

This Privacy Policy and all matters relating to your privacy rights with respect to Echora Pulse services shall be governed by and construed in accordance with the laws of the United States and the state in which Echora Pulse is incorporated, without regard to conflict of law principles. Any disputes arising under this Privacy Policy shall be subject to the exclusive jurisdiction of the courts located in that state.

This Privacy Policy was last reviewed and updated on January 1, 2026. Echora Pulse recommends that all business clients deploying our AI communication systems maintain their own compliant Privacy Policy that accurately reflects their specific data collection and processing practices. This document is provided as a comprehensive template and should be reviewed by qualified legal counsel prior to publication to ensure full compliance with all applicable laws and regulations specific to your business and jurisdiction.

Document Classification: Public - Echora Pulse Privacy & Compliance Documentation

Maintained by: Echora Pulse Legal & Compliance Team