Privacy Policy

Wyzion ("Wyzion", "we", "us", or "our") is a B2B Revenue Activation Platform headquartered in Bengaluru, Karnataka, India. We are committed to protecting the privacy and security of the personal data we process in the course of operating our platform and services.

This Privacy Policy explains what information we collect, how we use and share it, and the choices you have in relation to your data. It applies to our website at https://wyzion.ai, our web application, APIs, and all related services (collectively, the "Services").

By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy. If you are accessing the Services on behalf of a company or other legal entity, you represent that you have the authority to bind that entity to this policy.

We collect information in three ways: information you provide directly, information collected automatically, and information received from third parties.

Information you provide directly:

• Account and contact information: Name, business email address, job title, company name, phone number, and billing address when you register for an account, request a pilot, or contact us.
• Communications: Content of messages, emails, and form submissions when you contact our sales or support teams.
• Assessment responses: Responses to our Readiness Assessment questionnaire, which we use to scope your pilot engagement.

Information collected automatically:

• Usage data: Pages visited, features accessed, time spent, click paths, and session duration within our Services.
• Device and technical data: IP address, browser type and version, operating system, referral source, and device identifiers.
• Cookies and similar technologies: As described in Section 5 below.

Information from third parties:

• CRM and integration data: When you connect our platform to your existing CRM, CCaaS, or conversational AI systems, we process the data streams you authorise us to access under a separately agreed Data Processing Agreement (DPA).
• Marketing data: Firmographic data from data enrichment providers (such as company size, industry, and revenue range) to help us tailor our outreach.

We use the information we collect for the following purposes:

• Providing and improving our Services: To operate, maintain, and enhance the Revenue Activation Platform, including training and improving our AI models on anonymised and aggregated data.
• Account management and onboarding: To create and manage your account, provision access, and guide you through the pilot programme.
• Communications: To respond to your enquiries, send administrative notices, and provide product updates relevant to your use of the Services.
• Marketing and business development: To send you information about our Services, research, and events where you have consented or where we have a legitimate business interest. You may opt out at any time.
• Analytics and research: To understand how our Services are used, measure the effectiveness of our features, and conduct internal research and development.
• Security and fraud prevention: To detect, investigate, and prevent fraudulent transactions, abuse, and other illegal activities.
• Legal compliance: To comply with applicable laws and regulations, respond to lawful requests from government authorities, and enforce our Terms of Service.

Wyzion does not sell, rent, or trade your personal data. We share information only in the following circumstances:

• Service providers and sub-processors: We engage trusted third-party vendors to help us operate our Services (e.g., cloud hosting, email delivery, analytics, and CRM). These parties process data only on our instructions and under appropriate data processing agreements.
• Business transfers: If Wyzion is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any such change in ownership.
• Legal requirements: We may disclose your information if required to do so by law or in the good-faith belief that such action is necessary to comply with a legal obligation, protect and defend the rights or property of Wyzion, or protect the safety of users or the public.
• With your consent: We may share your information for any other purpose with your explicit consent.

When we share data with third-party sub-processors, we ensure appropriate contractual safeguards are in place consistent with applicable data protection law.

We use cookies and similar tracking technologies to operate and improve our Services, understand usage patterns, and deliver relevant content.

Types of cookies we use:

• Strictly necessary cookies: Essential for the operation of our Services, including session management and security. These cannot be disabled.
• Analytics cookies: We use Google Analytics to understand how visitors interact with our website. Data is aggregated and anonymised. You can opt out via Google's opt-out tool.
• Marketing cookies: Used to track the effectiveness of our marketing campaigns. These are only set with your consent.
• HubSpot: We use HubSpot to manage prospect communications. HubSpot may set cookies to track interactions with our website.

You can control cookie preferences through your browser settings. Note that disabling certain cookies may affect the functionality of our Services.

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption in transit (TLS) and at rest, access controls, regular security assessments, and employee training on data handling practices.

Wyzion's platform architecture implements a Financial Firewall that governs all autonomous agent actions — no financial commitment or transaction data is processed without explicit human Principal approval.

While we take data security seriously and employ industry-standard safeguards, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security and encourage you to take appropriate steps to protect your own information.

We retain personal data for as long as necessary to fulfil the purposes described in this Privacy Policy, including satisfying any legal, accounting, or reporting obligations.

For active customer accounts, we retain account data for the duration of the contractual relationship and for a period of up to five (5) years thereafter, unless a shorter period is required by applicable law or requested by you. Marketing contact data is retained for up to three (3) years from last engagement, after which it is reviewed and purged or refreshed.

When we no longer have a legitimate basis to retain your personal data, we will delete or anonymise it. If deletion is not immediately possible (for example, because the data is stored in backup archives), we will securely isolate the data and protect it from further processing until deletion is achievable.

For enterprise client data processed under a Data Processing Agreement, retention terms are governed by the individual DPA and our Terms of Service.

Subject to applicable law, you may have the following rights with respect to your personal data:

• Access: The right to request a copy of the personal data we hold about you.
• Correction: The right to request that we correct inaccurate or incomplete information.
• Deletion: The right to request deletion of your personal data, subject to our legal obligations and legitimate business interests.
• Restriction: The right to request that we restrict the processing of your data in certain circumstances.
• Portability: The right to receive your data in a structured, commonly used, machine-readable format.
• Objection: The right to object to processing based on legitimate interests or for direct marketing purposes.
• Withdrawal of consent: Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.

To exercise any of these rights, please contact us at privacy@wyzion.ai. We will respond to your request within 30 days. We may need to verify your identity before processing your request.

If you are not satisfied with our response, you have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.

Our Services may contain links to third-party websites, platforms, or integrations that are not operated by us. This Privacy Policy does not apply to those third parties. We strongly encourage you to review the privacy policies of any third-party services you access via our platform.

When you connect Wyzion to third-party systems (CRM, CCaaS, conversational AI platforms), your use of those systems is governed by the privacy policies and terms of the respective third-party providers. Wyzion acts as a data processor in respect of customer data flows governed by a DPA; the enterprise client remains the data controller.

We are not responsible for the privacy practices or content of any third-party services.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by updating the "Last Updated" date at the top of this page and, where appropriate, by sending you an email notification.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: