Privacy Policy

digitaldawn.ai (“Digital Dawn”, “we”, “us”, or “our”) is an AI-powered platform that helps small businesses respond to leads and automate client communication, including Digital Dawn Respond, Digital Dawn CRM, and Digital Dawn Studio (collectively, the “Service”).

This Privacy Policy describes how we collect, use, store, and disclose information when you use the Service. By using the Service, you agree to the practices described here. If you use the Service on behalf of a business, you accept this policy on behalf of that business.

We are based in Kentucky, United States. Questions? Email us at hello@digitaldawn.ai

Information you provide:

• Account information — name, email address, business name, and industry when you create an account
• Business configuration — service area, hours, pricing rules, AI voice settings, and other data you enter to customize the Service
• Customer and lead data — names, email addresses, phone numbers, messages, and other information about your customers and leads
• CRM data — contacts, companies, deals, tasks, notes, email content, campaign content, and custom field values you create within Digital Dawn CRM
• Design assets — images, prompts, and generated design files created through Digital Dawn Studio
• Payment information — billing details collected and processed by Stripe; we do not store your full credit card number
• Support communications — messages you send us for support or feedback

Information collected automatically:

• Usage data: pages visited, features used, actions taken, timestamps
• Device and browser data: IP address, browser type, operating system
• Email engagement data: whether emails sent through the Service were opened, clicked, bounced, or marked as spam
• Log data: server access times, error logs, and API request metadata

Information from third parties:

• OAuth data— if you connect a Google account for Gmail integration within the CRM, we receive your email address and a limited access token. We do not access your full Gmail inbox — only emails sent and received through the Service's email connection feature.

We use the information we collect to:

• Provide the Service — generate AI responses, manage CRM data, send emails on your behalf, execute automations, and generate design assets
• Process AI content — transmit your business configuration and lead data to AI providers (Anthropic and OpenAI) to generate responses and content
• Process payments — manage subscriptions and billing through Stripe
• Send service communications — magic link authentication, billing receipts, usage alerts, and account notifications
• Improve the Service — analyze usage patterns in aggregate to improve features and fix issues
• Detect and prevent fraud, abuse, or violations of our Terms of Service

We do not:

• Sell your personal information or your customers' data to third parties
• Use your customer or lead data to market to your customers directly
• Use your data to train AI models
• Share your data with other Digital Dawn customers

Your data is stored on Microsoft Azure infrastructure located in the Canada Central region. This includes:

• Azure PostgreSQL — account data, CRM data, lead data, configuration, and activity logs
• Azure Blob Storage — uploaded files and generated design assets

We implement the following security measures:

• Encryption in transit (TLS 1.2+) for all data transmitted to and from the Service
• Encryption at rest for all data stored in Azure PostgreSQL and Azure Blob Storage
• API keys hashed using SHA-256 before storage — we never store plaintext API keys
• Magic link authentication with time-limited, single-use tokens
• Multi-tenant data isolation at the database level

• Active accounts — data retained for the duration of your account
• Canceled accounts — data retained for 30 days after cancellation to allow reactivation or export, then permanently deleted within 30 days; backups may retain data for an additional 60 days before automatic deletion
• Email engagement data — retained for 12 months, then aggregated into anonymized metrics
• Server logs — retained for 90 days, then deleted
• Activity logs (agent events, approvals) — retained for 1 year, then purged

You may request early deletion of your data at any time by contacting us.

AI service providers:

• Anthropic (Claude)— receives your business configuration and lead message content to generate email responses and AI features. Anthropic's API terms prohibit using API inputs to train models.
• OpenAI— receives prompts and configuration for Digital Dawn Studio to generate design assets. OpenAI's API terms prohibit using API inputs to train models.

Data transmitted to AI providers includes: lead names, email content, your business description, AI voice configuration, and constraints. We transmit the minimum data necessary.

Other service providers:

• Stripe — payment processing (name, email, payment method, billing address)
• Resend — email delivery (recipient addresses, email content)
• Inngest — background job processing (job metadata)
• remove.bg — background removal for Studio (uploaded images)
• Vectorizer.ai — SVG vectorization for Studio (uploaded images)
• Microsoft Azure — infrastructure hosting (all data, as hosting provider)

We may also disclose your information if required by law, court order, or governmental request, and will notify you when legally permitted to do so.

We use a single session cookie to keep you logged in to the portal. This cookie is strictly necessary for the Service to function and is set only after you log in.

Our public marketing pages do not set any cookies. We do not use advertising cookies, cross-site tracking, or third-party analytics services that identify individuals.

You can access and update your account information and business configuration at any time through the Service. To request a complete data export or deletion of your account, email hello@digitaldawn.ai. We will process requests within 30 days.

You can opt out of non-essential emails (product updates, marketing) via the unsubscribe link in those emails. You cannot opt out of transactional emails related to your account (authentication, billing, security alerts).

Your customers' rights:

You are the data controller for your customers' and leads' data and are responsible for responding to their data requests. We provide tools within the Service to help you fulfill these requests, including the ability to delete individual contacts and leads.

U.S. state privacy rights:

Residents of states with consumer privacy legislation (including California, Virginia, Colorado, Connecticut, and others) may have additional rights including the right to know, correct, delete, and opt out of the sale of personal information. We do not sell personal information. To exercise these rights, email hello@digitaldawn.ai.

The Service is designed for business use and is not directed at individuals under 18. We do not knowingly collect personal information from children. If we learn we have collected information from a child under 18, we will delete it promptly.

If you submitted a form on a website powered by digitaldawn.ai, your information was received by the business whose form you completed. digitaldawn.ai processes that information on their behalf to generate an AI response and send follow-up emails.

To request deletion of your data, contact the business directly, or email us at hello@digitaldawn.ai and we will forward your request to the appropriate client.

In the event of a data breach that affects your personal information or your customers' data, we will investigate and contain the breach promptly, notify affected account holders by email within 72 hours of confirming the breach, and notify relevant authorities as required by applicable law.

We may update this Privacy Policy from time to time. We will notify clients by email at least 15 days before material changes take effect and post the updated policy with a revised “Last Updated” date.

Privacy questions or requests: hello@digitaldawn.ai

digitaldawn.ai — Kentucky, United States