Privacy Policy

Introduction & Scope

1.1 Policy Overview

This Privacy Policy explains how Agent Pro ("Company," "we," "us," or "our") collects, uses, discloses, and safeguards information when you use our Service, including our website (agent-pro.agency), web application, mobile application, and related services (collectively, the "Service").

1.2 Applicability

This Privacy Policy applies to all users of Agent Pro, including:

• Business owners/operators who subscribe to our Service
• Affiliates and sales representatives
• End customers who scan QR codes and interact with forms

1.3 Service Description

Agent Pro is a SaaS platform that enables local businesses to:

• Collect customer contact information via QR codes
• Automatically generate and post Google reviews
• Run SMS-based repeat customer campaigns
• Track customer engagement and reviews

Information We Collect

2.1 Information You Provide Directly

2.1.1 Account Registration Information

When you sign up for Agent Pro, we collect:

• Business name
• Business owner/contact name
• Email address
• Phone number
• Business address
• Payment information (card number, billing address)
• Industry/business type
• Company size

2.1.2 Customer Information (From Your Customers)

When customers interact with your Agent Pro QR codes, we collect:

• Phone number
• Review rating (5-star, 4-star, etc.)
• Review date/timestamp
• Location visited
• UTM source data

2.1.3 User-Generated Content

• Customer reviews and ratings
• Custom SMS messages you create
• Business information you provide
• Customer contact lists
• Campaign preferences

2.2 Information Collected Automatically

2.2.1 Device & Access Information

• IP address
• Device type and model
• Operating system
• Browser type
• Login timestamps
• Account access history

2.2.2 Service Usage Data

• Features used and frequency
• QR code scans and timestamps
• Form submission data
• SMS send/delivery data
• Email interactions
• Support tickets and communications

2.2.3 Cookies & Tracking Technologies

• Session cookies (maintain login)
• Persistent cookies (remember preferences)
• Google Analytics tracking
• Conversion tracking pixels
• Affiliate referral cookies (30-day duration)

How We Use Your Information

3.1 Service Delivery

We use your information to:

• Operate and maintain the Service
• Create and manage your account
• Process payments and billing
• Deliver automated SMS campaigns
• Post reviews to Google My Business
• Generate QR codes and tracking data
• Generate performance reports and analytics

3.2 Communications

• Account notifications and updates
• Service status alerts
• Billing and invoice emails
• Support responses
• Marketing emails (with opt-out option)
• Important policy updates

3.3 Business Operations

• Fraud detection and prevention
• Compliance with legal obligations
• Dispute resolution
• Account verification and security
• Risk assessment and management

3.4 Analytics & Improvements

• Analyze trends and user behavior
• Improve Service performance
• Develop new features
• Conduct research
• Aggregate/anonymized reporting

How We Share Your Information

4.1 Third-Party Service Providers

4.1.1 Payment Processors

Stripe or PayPal: Payment processing, fraud detection

Data shared: Billing name, email, card information, transaction history

4.1.2 Communication Services

Twilio or SMS Provider: SMS delivery

Data shared: Phone numbers, message content, delivery logs

4.1.3 Analytics & Tracking

Google Analytics: Service analytics

Data shared: Anonymized usage data, traffic sources, device information

4.1.4 Google Integration

Google My Business API: Review posting and business data

Data shared: Business location ID, review content, ratings

4.2 Legal Requirements

We may disclose information when:

• Required by law, court order, or government request
• Necessary to protect our rights, privacy, or safety
• Required to prevent fraud or illegal activity
• With your explicit consent

4.3 DO NOT SHARE

We do NOT sell, rent, or trade your personal information to third parties for marketing purposes.

Data Retention & Deletion

5.1 Active Account Data

While your account is active, we retain:

• All customer contact information
• Review history and ratings
• Campaign data and analytics
• Payment information
• Account settings and preferences

5.2 After Account Cancellation

After you cancel your subscription:

• 30-day retention: We keep your data for 30 days to allow account recovery
• After 30 days: All personal data is deleted from our systems
• Exceptions: We may retain data longer if required by law or for legal disputes
• Backups: Data may exist in backups for up to 90 days before permanent deletion

5.3 Data Export

Before cancellation, you can:

• Export your customer contact list as CSV
• Download all historical review data
• Access all campaign reports
• Export via your account dashboard or by requesting from support

Data Security

6.1 Security Measures

We implement:

• SSL/TLS encryption for all data in transit
• AES-256 encryption for data at rest
• Secure password hashing (bcrypt)
• Role-based access controls
• Two-factor authentication (2FA) available
• Regular security audits
• Intrusion detection and monitoring

6.2 Payment Card Data

• PCI DSS Level 1 compliance
• Card data handled by Stripe/PayPal (not stored on our servers)
• Never stored in plain text
• Tokenization for recurring payments

6.3 Limitations

While we implement reasonable security:

• No system is 100% secure
• You acknowledge risks of data breach
• We are not liable for unauthorized access due to user negligence (weak passwords, shared credentials)
• You are responsible for maintaining account confidentiality

International Data Transfers & Compliance

7.1 Data Location

• Your data is stored in United States servers
• Google API data is processed per Google's data policies
• SMS data is processed through Twilio/SMS provider servers (USA-based)

7.2 GDPR Compliance (European Users)

If you're in the European Union:

• You have rights to access, correct, delete, and port your data
• You can object to processing and request restriction
• We maintain a Data Processing Agreement
• You have the right to lodge complaints with your data protection authority

GDPR Contact: [email protected]

7.3 CCPA Compliance (California Users)

If you're in California:

• You have the right to know what personal data we collect and how we use it
• You have the right to delete personal data (with limited exceptions)
• You have the right to opt-out of data sales (we don't sell data)
• You have the right to non-discrimination for exercising CCPA rights

CCPA Contact: [email protected]

7.4 TCPA Compliance (SMS Laws)

For SMS communications:

• We obtain explicit opt-in consent before sending SMS
• We maintain opt-in records for 7 years
• Customers can reply "STOP" to unsubscribe
• We honor opt-out requests immediately
• We include business identification in all messages

Your Privacy Rights & Choices

8.1 Access Your Data

You can:

• Log into your account to view all data
• Request a data export at any time
• Download customer lists and reports
• Contact us for additional information

8.2 Correct Your Data

You can:

• Update your business information in Account Settings
• Correct contact information
• Update payment method
• Modify customer data under your control

8.3 Delete Your Data

You can:

• Delete individual customer records (if applicable)
• Cancel your account (triggers 30-day deletion timeline)
• Request immediate deletion of specific data
• Use data export to remove data from Service

8.4 How to Submit Requests

Email: [email protected]

Include:

• Your name and account email
• Specific request (access, correction, deletion, export)
• Any relevant account details

Response time: 30 days maximum (per GDPR/CCPA)

Children's Privacy

9.1 Age Requirement

Agent Pro is intended for business owners and adults only.

• Minimum age: 18 years
• We do not knowingly collect data from children under 13
• If we become aware of data collection from children, we will delete it immediately

9.2 Parental Controls

If your child accesses our Service:

• You are responsible for supervising their access
• You are liable for their account activity
• Contact us immediately to remove their data

Third-Party Links & Services

10.1 External Links

Our website contains links to third-party sites:

• We are not responsible for third-party privacy practices
• This Privacy Policy only applies to Agent Pro Service
• Review their privacy policies before submitting information

10.2 Third-Party Integrations

• Google My Business API - Google's privacy policy applies
• Stripe/PayPal - Their privacy policies apply
• Twilio SMS - Twilio's privacy policy applies
• These parties have separate privacy policies and practices

Policy Updates & Changes

11.1 Changes to This Policy

We may update this Privacy Policy:

• Material changes will be announced via email
• Material changes will require your acceptance
• You can review changes at any time on our website
• Continued use after changes constitutes acceptance

11.2 Notification

• Email notice for material changes
• In-app notification for policy updates
• Effective date will be updated at the top

11.3 Your Right to Object

If you disagree with policy changes:

• You may request account cancellation
• 30-day grace period to accept or cancel
• Your data will be deleted per our deletion policy

Regulatory Compliance Summary

Regulation	Compliance
GDPR (EU)	✓ Compliant - data rights, DPA, lawful basis
CCPA (California)	✓ Compliant - opt-out, deletion, transparency
TCPA (SMS)	✓ Compliant - opt-in, consent, DNRC screening
PCI DSS	✓ Compliant - payment data via Stripe/PayPal