everopen.ai

Privacy Policy for everopen.ai

Last Updated: February 23, 2026
Effective Date: February 23, 2026

everopen.ai is operated by Sunzal Tech Labs Inc, a corporation registered in British Columbia, Canada ("everopen.ai", "we", "us", or "our").

This Privacy Policy describes how we collect, use, disclose, and protect personal information when you access or use our website, platform, APIs, messaging integrations, AI systems, and related services (collectively, the "Services").

This Policy applies to:

  • Visitors to our website
  • Business customers using our platform ("Customers")
  • End users interacting with AI systems deployed by our Customers through the Services

1. Our Role

Depending on context, everopen.ai acts as:

  • Data Controller for personal information we collect directly from Customers (e.g., account registration, billing, support, website usage).
  • Data Processor when processing data on behalf of Customers (e.g., conversations, uploaded knowledge bases, appointment data, store/product data, and end-user messages).

Customers are responsible for ensuring they have appropriate legal grounds to collect and share personal data with everopen.ai.

2. Information We Collect

A. Information Collected from Customers

When a Customer registers or uses the Services, we may collect:

  • Name
  • Business name
  • Email address
  • Phone number
  • Billing and payment information
  • Login credentials
  • Account configuration data
  • Usage data and activity logs

B. Information Processed on Behalf of Customers

Customers may upload, transmit, or generate data within the Services, including:

  • Messaging conversations (e.g., WhatsApp or other messaging platforms)
  • Voice call recordings and transcripts (where enabled and with appropriate consent)
  • Appointment and scheduling information
  • Lead qualification responses
  • Product, store, and inventory data
  • Knowledge base documents and uploaded files
  • End-user contact details
  • AI-generated outputs
  • Workflow and automation data

everopen.ai processes this information solely to provide the Services to Customers.

C. Voice Recordings

If voice functionality is enabled by a Customer, voice calls may be recorded and stored with appropriate consent for purposes such as:

  • Business review
  • Workflow optimization
  • Quality assurance
  • Training and improvement of Customer workflows

Customers are responsible for ensuring required call recording disclosures and consents are obtained in their jurisdiction.

D. Automatically Collected Information

We may automatically collect:

  • IP address
  • Device identifiers
  • Browser type and version
  • Operating system
  • Referring URLs
  • Platform usage data
  • Error logs and diagnostics
  • Cookies and similar tracking technologies

3. How We Use Information

We use information to:

  • Provide, operate, and maintain the Services
  • Enable AI-powered processing, retrieval, and automation
  • Authenticate users and secure accounts
  • Process billing and subscriptions
  • Monitor performance and detect abuse
  • Provide support and respond to inquiries
  • Improve product features and functionality
  • Comply with legal obligations
  • Enforce our Terms of Service

We do not sell personal information.

We do not use Customer data to train publicly available AI models unless explicitly agreed in writing.

4. AI Processing and Automated Systems

The Services include AI-powered systems that may:

  • Generate automated responses
  • Perform natural language processing
  • Create embeddings or vector representations of uploaded data
  • Trigger automated workflows
  • Classify, summarize, or extract information

AI-generated outputs may be inaccurate, incomplete, or inappropriate. Customers are responsible for reviewing and validating outputs before relying on them.

We do not guarantee the accuracy, reliability, or suitability of AI outputs.

everopen.ai does not use Customer Data to train publicly available or shared foundation models without explicit written agreement.

Any internal system improvements derived from Customer Data are limited to aggregated, anonymized, or de-identified data.

5. Analytics and Cookies

We use analytics tools and similar technologies to:

  • Understand platform usage
  • Improve performance and reliability
  • Monitor traffic and engagement
  • Detect misuse or fraud

Cookies may be used for session management, authentication, analytics, and functional improvements.

Users may control cookies through browser settings where applicable.

6. Sharing and Disclosure of Information

A. Service Providers (Subprocessors)

We use third-party service providers to support infrastructure and operations, including:

  • Cloud hosting providers
  • AI and machine learning infrastructure providers
  • Messaging and communications providers
  • Voice and telephony providers
  • Payment processors
  • Analytics providers
  • Security and monitoring providers

All subprocessors are contractually required to implement appropriate data protection safeguards.

B. Legal Requirements

We may disclose information if required to:

  • Comply with applicable law or regulation
  • Respond to lawful requests from authorities
  • Enforce our agreements
  • Protect rights, property, or safety

C. Business Transfers

If Sunzal Tech Labs Inc undergoes a merger, acquisition, financing, restructuring, or sale of assets, personal information may be transferred as part of that transaction.

7. Data Retention

We retain:

  • Account and billing information for as long as the Customer maintains an active account and as required for legal or accounting purposes.
  • Customer Data processed on behalf of Customers for the duration of the Customer relationship.

Upon termination:

  • Customer Data will be deleted within a commercially reasonable period, generally not exceeding ninety (90) days, unless otherwise required by law.
  • Backup copies may persist temporarily in secure archives consistent with disaster recovery practices.
  • Aggregated and anonymized data that cannot reasonably identify a person may be retained for analytics, product improvement, and statistical purposes.

8. International Data Transfers

everopen.ai operates from Canada but may process data in other jurisdictions depending on infrastructure and service providers.

Where required, we implement safeguards such as:

  • Contractual data protection agreements
  • Standard contractual clauses where applicable
  • Access controls and encryption

By using the Services, you acknowledge that data may be transferred and processed outside your country of residence.

9. Security

We implement reasonable administrative, technical, and organizational safeguards, including:

  • Encryption in transit
  • Role-based access controls
  • Authentication protections
  • Tenant data separation
  • Monitoring and logging

However, no system can guarantee absolute security.

10. Data Security Incident Notification

In the event of a confirmed data security incident affecting Customer Data, everopen.ai will:

  • Promptly investigate the incident;
  • Take reasonable steps to mitigate harm;
  • Notify affected Customers without undue delay where required by applicable law;
  • Provide relevant information reasonably necessary for Customers to meet their own legal obligations.

Customers are responsible for notifying their own end users where required by law.

11. Customer Responsibilities

Customers are responsible for:

  • Providing legally required privacy notices to their end users
  • Obtaining necessary consents
  • Ensuring lawful data collection and use
  • Complying with messaging platform rules (e.g., WhatsApp policies)
  • Not uploading unlawful, harmful, or prohibited content

everopen.ai is not responsible for the actions of Customers or their end users.

12. Individual Rights

Depending on your jurisdiction, you may have rights to:

  • Access personal information
  • Correct inaccuracies
  • Request deletion
  • Restrict or object to processing
  • Request data portability

If you are an end user interacting with a Customer's AI system, please contact the relevant Customer directly.

Requests may also be directed to: contact@everopen.ai

13. Children's Privacy

The Services are not directed to children under 13 (or the minimum legal age in your jurisdiction). We do not knowingly collect personal information from children.

14. Do Not Sell or Share Personal Information

We do not sell personal information.

We do not share personal information for cross-context behavioral advertising.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

Material changes may be communicated through:

  • Website notice
  • Email notification
  • Platform alerts

Continued use of the Services after changes become effective constitutes acceptance of the updated Privacy Policy.

16. Contact Information

Sunzal Tech Labs Inc
British Columbia, Canada
Email: contact@everopen.ai

For privacy-related inquiries, please contact: contact@everopen.ai