1. Introduction
Pipeline Labs LLC ("Pipeline Labs," "we," "us," or "our") respects your privacy and is committed to handling personal information responsibly and in accordance with applicable U.S. privacy laws. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the rights and choices available to you.
This Policy applies to:
- Visitors to www.pipeline-labs.com (the "Site");
- Prospective and current clients of Pipeline Labs (each, a "Client"); and
- Recipients of communications sent by or through our services, to the extent that we process personal information about them.
Pipeline Labs offers AI-powered marketing and communications tools for businesses, including the Database Reactivation Bot, Speed to Lead AI Bot, Out of Hours AI Bot, and Google Reviews AI Bot (collectively, the "Services"). For clarity:
- We act as a "controller" (sometimes called a "business" under California law) with respect to information we collect directly from Site visitors, prospects, and Clients in connection with our own marketing, sales, and account administration.
- We act as a "processor" (a "service provider" under California law) with respect to lead, customer, or contact data that our Clients upload, import, or otherwise provide to us so that we may deliver the Services on their behalf ("Client Data"). Our processing of Client Data is governed by our agreement with the applicable Client, and by this Policy only where the two are not inconsistent.
If you are a consumer whose information has been provided to us by a Pipeline Labs Client, we encourage you to also review the privacy policy of that Client, which is the party primarily responsible for your data.
2. Information We Collect
2.1 Information You Provide to Us
We collect information you give us directly when you:
- Visit the Site or complete a form (for example, to book a free strategy call, request a demo, or contact us);
- Sign up for, evaluate, or use the Services;
- Communicate with us by email, phone, SMS, or chat;
- Subscribe to marketing communications; or
- Submit testimonials, reviews, or feedback.
This information typically includes your name, business name, email address, phone number, role/title, website URL, the contents of your message, and any other details you choose to provide.
2.2 Information Collected Automatically
When you visit the Site, we and our service providers may automatically collect:
- Device and connection information, such as IP address, browser type and version, operating system, device identifiers, and language preferences;
- Usage information, such as pages viewed, links clicked, referring/exit pages, time spent, and other browsing actions; and
- Cookies and similar tracking technologies (see Section 7).
2.3 Information From Third Parties
We may receive information about you from:
- Advertising and analytics platforms (for example, attribution data from ad networks);
- Public sources and lead-enrichment providers (for example, business contact data);
- Our Clients, who may identify you as a point of contact within their organization; and
- Our sub-processors (see Section 5) in the course of providing the Services.
2.4 Client Data (Processed on Behalf of Clients)
When our Clients use the Services, they upload, sync, or otherwise make available to us information about their own leads, prospects, customers, or contacts. Client Data typically includes name, mobile phone number, email address, conversation history, prior purchase or inquiry information, opt-in/opt-out status, and similar marketing and CRM fields.
We process Client Data only on the documented instructions of the relevant Client and for the purposes of providing, securing, and improving the Services. We do not use Client Data for our own marketing or to build profiles outside the scope of the Client's account, and we do not sell Client Data.
2.5 Sensitive Information
We do not request or knowingly collect government identification numbers, financial account credentials, health information, biometric data, precise geolocation, or other categories of "sensitive" personal information as defined under U.S. state privacy laws. Please do not submit such information to us.
3. How We Use Information
We use the information described above to:
- Provide, operate, maintain, and improve the Site and the Services;
- Communicate with you about your inquiries, account, transactions, and support requests;
- Send marketing and promotional communications about our Services (subject to your right to opt out);
- Personalize content and measure the effectiveness of our marketing;
- Analyze use of the Site and the Services in order to understand and improve performance;
- Detect, investigate, and prevent fraud, abuse, security incidents, and violations of our Terms of Service;
- Comply with applicable legal obligations, respond to lawful requests, and enforce our agreements; and
- Carry out any other purpose disclosed at the point of collection or to which you have consented.
When acting as a processor of Client Data, we use that data solely to perform the Services for the Client, including delivering SMS, email, and other communications; managing replies and bookings; generating AI-assisted responses; and producing reporting and analytics for the Client.
4. How We Share Information
We do not sell personal information for money. We may share information in the following circumstances:
- With service providers and sub-processors who perform services on our behalf and are contractually bound to protect the information (see Section 5).
- With our Clients, when you are a contact, lead, or end customer of that Client.
- For legal and safety reasons, including to comply with applicable law, regulation, legal process, or governmental request; to enforce our Terms of Service or other agreements; or to protect the rights, property, or safety of Pipeline Labs, our Clients, you, or others.
- In connection with a business transaction, such as a merger, acquisition, financing, reorganization, or sale of all or part of our business or assets, in which case personal information may be transferred as part of that transaction.
- With your consent or at your direction, including when you ask us to share information with a third party.
In aggregated or de-identified form, which cannot reasonably be used to identify you.
"Sharing" and "selling" under U.S. state laws. Some U.S. state privacy laws define "sharing" or "selling" broadly to include disclosures of personal information for cross-context behavioral advertising or for monetary or other valuable consideration. To the extent that our use of advertising or analytics cookies constitutes "sharing" or "selling" under those laws, you may opt out as described in Section 9.
5. Sub-Processors and Service Providers
We rely on a small number of trusted third-party providers to deliver the Services. Each is bound by written terms requiring them to safeguard personal information and use it only for the purposes we authorize. Our current categories of sub-processors include:
- Communications and telephony, including Twilio, Inc., used to send and receive SMS, MMS, and related messaging on behalf of our Clients;
- CRM and marketing automation platforms, including providers such as HighLevel and HubSpot, used to store and orchestrate Client Data and conversations;
- AI model providers, including providers such as OpenAI and Anthropic, used to generate AI-assisted conversation drafts and replies; and
- Cloud hosting, analytics, and operational tools that support the Site and Services (for example, web hosting, error monitoring, payment processing, and business analytics).
We do not authorize AI model providers to train foundation models on Client Data, and we configure our integrations to disable model-training use of inputs and outputs where that option is available from the provider.
A current list of material sub-processors used in the Services is available on request by emailing [Legal Email].
6. SMS, Calls, and TCPA Compliance
Our Services include sending SMS messages and, in some cases, initiating or facilitating phone outreach on behalf of our Clients. With respect to such messaging:
- Our Clients are responsible for ensuring that they have obtained any consent required under the Telephone Consumer Protection Act ("TCPA"), the CAN-SPAM Act, FCC and FTC regulations, the CTIA Messaging Principles and Best Practices, and applicable state laws before any message is sent through the Services.
- Recipients may opt out of receiving further SMS messages at any time by replying STOP (or a similar keyword) to any message, or by replying HELP for assistance. Standard message and data rates may apply.
- We honor opt-out requests through automated suppression and propagate them across the relevant Client's campaigns.
- If you receive a message you believe was sent in error or without your consent, please contact us at [Legal Email] and identify the sending business so that we can route your request appropriately.
If you communicate with Pipeline Labs directly by SMS (for example, by texting our business line), you consent to receive transactional and customer-care messages from us at the number you provided, and you may opt out at any time as described above.
7. Cookies and Tracking Technologies
We and our service providers use cookies, pixels, tags, local storage, and similar technologies on the Site to:
- Operate and secure the Site;
- Remember your preferences;
- Understand how the Site is used;
- Measure the effectiveness of our marketing campaigns; and
- Deliver and measure advertising on our behalf, including across other sites.
You can control cookies through your browser settings and, where available, through our cookie banner or preferences center. Most browsers also allow you to refuse or delete cookies. If you disable cookies, some features of the Site may not function properly.
Global Privacy Control (GPC). We recognize the GPC browser signal as a valid opt-out of "sale" and "sharing" of personal information for purposes of cross-context behavioral advertising, where required by applicable law.
Do Not Track. Our Site does not currently respond to "Do Not Track" browser signals.
8. Data Retention
We retain personal information for as long as needed to fulfill the purposes described in this Policy, including to provide the Services, comply with our legal obligations, resolve disputes, and enforce our agreements. Retention periods are determined based on the type of information, the nature of the relationship, and applicable legal requirements.
For Client Data, our retention obligations are governed by our agreement with the relevant Client. When that agreement ends, we will delete or return Client Data within a reasonable period, except where retention is required by law or for limited backup and audit purposes.
9. Your Privacy Rights
Depending on where you live, you may have certain rights regarding personal information that we hold about you. These rights may include:
- The right to know or access the personal information we have collected about you, including the categories, sources, purposes, and third parties with which it - has been shared;
- The right to correct inaccurate personal information;
- The right to delete personal information, subject to certain exceptions;
- The right to opt out of the sale or sharing of personal information, and of certain targeted-advertising activities;
- The right to opt out of certain profiling that produces legal or similarly significant effects;
- The right to data portability, where applicable; and
- The right to appeal a denial of a privacy request, where applicable.
We will not discriminate against you for exercising these rights.
9.1 How to Submit a Request
You may submit a privacy request by emailing [Legal Email] with the subject line "Privacy Request" and a description of the right you wish to exercise. We will verify your request using information already in our possession, or by asking you for additional information reasonably necessary to confirm your identity. An authorized agent may submit a request on your behalf with written authorization.
We will respond within the timeframes required by applicable law (generally 45 days, extendable once where permitted).
9.2 If You Are an End Consumer of a Pipeline Labs Client
If your personal information was provided to us by one of our Clients and we are processing it on that Client's behalf, we will forward your request to the relevant Client and assist them in responding. You may also wish to contact the Client directly, as they are typically the party best able to action your request.
9.3 Colorado Residents (Colorado Privacy Act)
If you are a Colorado resident, you have the rights described above, including the rights to access, correct, delete, port, and opt out of (i) targeted advertising, (ii) the sale of personal data, and (iii) profiling in furtherance of decisions that produce legal or similarly significant effects. You also have the right to appeal a denial of a privacy request by replying to our response or emailing [Legal Email] with the subject line "Privacy Appeal." If you are not satisfied with the outcome of your appeal, you may contact the Colorado Attorney General at coag.gov/file-complaint.
9.4 California Residents (CCPA/CPRA)
If you are a California resident, the California Consumer Privacy Act, as amended ("CCPA"), provides you with the rights described above. The categories of personal information we have collected, the sources of that information, the business purposes for which it is collected, and the categories of recipients with whom it is shared are described in Sections 2, 3, 4, and 5 of this Policy.
- We have not sold personal information for monetary consideration in the preceding 12 months.
- To the extent that our use of advertising cookies and similar technologies constitutes "sharing" for cross-context behavioral advertising under the CCPA, you may opt out by emailing [Legal Email] or by enabling the Global Privacy Control signal.
- We do not knowingly sell or share the personal information of consumers under 16 years of age.
9.5 Other U.S. States
Residents of Virginia, Connecticut, Utah, Texas, Oregon, Montana, and other states with comprehensive consumer privacy laws also have rights similar to those described above. To exercise any such right, please follow the process in Section 9.1.
10. Security
We implement and maintain commercially reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These include encryption in transit, access controls, logging, and vendor due diligence. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.
11. Children's Privacy
The Site and the Services are intended for use by businesses and adults. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child, please contact us at [Legal Email] and we will take steps to delete it.
12. International Users
The Site is operated from, and the Services are provided from, the United States. Our Services are intended for U.S.-based Clients and U.S.-based recipients. If you access the Site from outside the United States, you understand that your information will be transferred to, processed, and stored in the United States, which may have data protection laws different from those of your country.
13. Third-Party Websites and Services
The Site and our communications may contain links to third-party websites or services that are not operated by Pipeline Labs. This Policy does not apply to those third-party properties, and we are not responsible for their content or privacy practices. We encourage you to review the privacy policies of every site you visit.
14. Changes to This Policy
We may update this Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last Updated" date above and, where appropriate, provide additional notice (for example, by email or a notice on the Site). Your continued use of the Site or the Services after the effective date of any change constitutes your acceptance of the updated Policy.
15. Contact Us
If you have any questions, concerns, or requests regarding this Policy or our privacy practices, please contact us at:
Pipeline Labs LLC Email: [Legal Email]