Privacy Policy
Effective date: May 15, 2026 · Last updated: May 15, 2026
AVSaaS ("AVSaaS," "we," "us," or "our") operates avsaas.io and all associated product subdomains (including guardian.avsaas.app, po-pilot.avsaas.app, and dundial.avsaas.app). This Privacy Policy explains how we collect, use, share, and protect information about users of our websites and services.
1. Information We Collect
Information you provide directly
When you create an account, connect a third-party platform, or contact us, we collect information you provide: your email address, name, company name, and any additional details you share. For paid plans, billing information is collected by our payment processor (Stripe) and not stored on our servers.
Information we collect automatically
When you visit our websites, we may collect your IP address, browser type, device type, pages visited, time on page, and referring URL through standard web analytics tools. This data is used only for product improvement and is not sold or shared with third parties for advertising purposes.
Information from connected platform accounts
When you connect a third-party account (e.g., HubSpot) to an AVSaaS product, we access only the data scopes required to deliver the service. For Guardian: read-only access to contact count data. We do not store full contact records — only aggregate counts and trend data. The specific data accessed for each product is documented in that product's connection consent screen.
2. How We Use Your Information
We use the information we collect to: operate and improve our products, send product alerts and notifications you have configured, respond to support requests, process payments, and comply with legal obligations. We do not use your data to train machine-learning models, sell advertising, or share with data brokers.
3. Data Retention
Account data is retained for the duration of your account plus 30 days after cancellation, then deleted. Snapshot and trend data collected from connected platforms is retained for 90 days. Archive CSV files are retained for 90 days from creation. You may request earlier deletion at any time by contacting [email protected].
4. Data Residency
For products that support data region selection (including Guardian), your data is stored in the region you select at onboarding — either EU-Central (Frankfurt) or US-East (Virginia). Data does not leave your selected region except as required by applicable law.
5. Sharing Your Information
We do not sell personal information. We share data only with: (a) service providers necessary to operate our products (hosting, email delivery, payment processing), under data processing agreements; (b) law enforcement or regulators when required by applicable law; (c) a successor entity in the event of a merger or acquisition, with notice to you in advance.
6. Your Rights
Depending on your jurisdiction, you may have rights to access, correct, delete, or export your data. To exercise these rights, email [email protected]. We will respond within 30 days. If you are an EU resident, you have the right to lodge a complaint with your local supervisory authority.
7. Cookies
We use only functional cookies necessary to operate the service (authentication session cookies). We do not use third-party advertising cookies or tracking pixels. Analytics data is collected via a privacy-respecting tool that does not set persistent cross-site tracking cookies.
8. Security
We use industry-standard security practices: TLS in transit, encryption at rest, row-level security and tenant isolation at the database level, and time-limited presigned URLs for file downloads. No security measure is perfect — if you discover a vulnerability, please report it to [email protected].
9. Children
Our products are not directed at children under 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, contact us and we will delete it.
10. Changes to This Policy
We will post any changes to this policy on this page with an updated effective date. For material changes, we will notify account holders by email at least 30 days before the change takes effect.
11. Contact
Questions about this policy: [email protected] · AVSaaS · avsaas.io