Privacy Policy

01 · Who we are

Birddog Operations LLC, Lexington, Kentucky. One operator, one kennel of AI agents, and a stubborn belief that small business deserves software that earns its keep. We process data on behalf of the contractors and home-services businesses who pay us to handle their lead and reputation response.

02 · What we collect

From you (the account owner):

• Email, hashed password, company name, billing details.
• Credentials for the services you connect — Twilio, ServiceTitan, Angi, eLocal, Modernize, Google Business, Facebook, Instagram, etc. Stored encrypted at rest. Used only to act on your behalf.
• The brand-voice settings, scripts, and qualification rules you configure.
• Usage telemetry — what screens you visit, what actions you take. We use this to find bugs and decide what to build next, not to build a profile of you.

About your leads and customers:

• Name, phone, email, address, and the content of the conversations Birddog runs on your behalf (SMS, chat, review responses).
• Photos a customer sends through SMS or the chat widget, when they send one (e.g. a broken AC unit).
• Metadata about the job — source, urgency, scope, scheduled time, and the booking we created in your ServiceTitan account.

03 · How we use it

• To respond to leads on your behalf, qualify them, and book the job in your ServiceTitan account.
• To monitor your reviews and social mentions and draft responses for your approval.
• To talk to you — billing, product updates, security notices, the occasional dog photo.
• To improve the platform — debug, monitor performance, fix what breaks. Aggregated and anonymized only when we look at usage trends.

We do not sell your data. We do not share your data with other Birddog accounts. We do not train third-party AI models on your conversations.

04 · AI processing

Birddog uses large language models (currently OpenAI) to draft replies, score lead quality, and analyze customer photos. Conversation content is sent to those models only at the moment we need to generate a response. OpenAI is contractually prohibited from training on inputs to its API, and we send only what's necessary for the task at hand.

We log every model call (timestamp, prompt, response) inside your own tenant for your records and ours. You can export or purge those logs from Settings.

05 · SMS & TCPA

Birddog sends SMS to your leads and customers using your Twilio credentials and your registered business number. You are the message sender on the wire; we're the tool.

We honor STOP, UNSUBSCRIBE, QUIT, CANCEL, and END automatically and forever — once a phone number opts out of your messaging, Birddog won't text it again from your account. Reply HELP for help. Message and data rates may apply. We never text people who haven't first contacted your business through one of your lead sources.

06 · Retention & export

We keep your data as long as your account is active. If you cancel, you have 30 days to export leads, conversations, and settings from the Settings panel. After 30 days we destroy the data on our servers and remove it from backups within 90 days.

You can request earlier deletion at any time by emailing logan@birddog.marketing or texting 859-466-3339. We'll process the request within five business days.

07 · Cookies & tracking

The marketing site uses a single first-party session cookie and no third-party trackers. The signed-in dashboard uses a session cookie (birddog.sid) so we know it's you between pages — that's it. No Facebook Pixel. No ad networks. No session-replay scripts watching you click.

08 · Security

Passwords are stored as bcrypt hashes — we cannot see your plaintext password and never need to. Third-party credentials (Twilio, ServiceTitan, OpenAI keys, etc.) are encrypted at rest with per-tenant keys. Traffic is TLS-only. Sessions expire after seven days of inactivity and on logout.

If something goes wrong — a breach, a leak, a vendor incident that touches your data — you'll hear from us by email within 72 hours, with what we know and what we're doing about it.

09 · Your rights

You can: access the data we hold about your account, correct anything that's wrong, export it, or have it deleted. Send the request to logan@birddog.marketing. We'll get back to you within five business days. We don't make you fill out a form.

California residents have additional rights under CCPA (right to know, right to delete, right not to be sold — the last one is easy, we don't sell anything). Everyone else: same in spirit.

10 · Changes

When we update this policy, we'll bump the "Effective" date at the top and email account owners about material changes at least 14 days before they take effect. Continued use means you accept the new version.