Privacy Policy

Pingal Data Privacy Policy

Last Updated: October 15, 2025
Effective Date: October 15, 2025

1. Introduction

Pingal (“we,” “our,” or “us”) is committed to protecting your privacy and the security of the data you entrust to us.
Our platform helps organizations capture, organize, and analyze real-world engagement data—such as event interactions, text or voice notes, and contact details—into their CRM or analytics tools.

This Privacy Policy explains how we collect, use, share, and protect your information when you use our services, including our website, SMS and WhatsApp communication channels, integrations (such as HubSpot, Airtable, Make, and Voiceflow), and related applications (collectively, the “Services”).

By using Pingal, you agree to this Policy. If you do not agree, please discontinue use of our Services.

2. Information We Collect

We collect the following categories of data, depending on how you use Pingal:

a. Information You Provide

  • Contact Data: Name, phone number, email, company, and title submitted through intake forms or text interactions.

  • Engagement Notes: Free-text, images, or voice memos sent to our Twilio numbers.

  • Event Metadata: Time, location, and context of your interaction, if included in messages or forms.

  • Account Data: Organization name, team members, billing contact, and subscription tier.

b. Automatically Collected Data

  • Communication Logs: Message timestamps, delivery status, and sender/receiver IDs.

  • Device & Usage Data: IP address, browser type, and usage metrics collected via web analytics or integrated tools.

  • Integration Data: When you connect a CRM (like HubSpot), we may access limited fields (e.g., contact name, company, lifecycle stage) for synchronization.

3. How We Use Your Information

We use your data to:

  1. Deliver, operate, and improve our Services.

  2. Sync and enrich your organization’s records with event data.

  3. Send confirmations, reminders, and service updates.

  4. Provide customer support and resolve technical issues.

  5. Maintain compliance with legal and contractual obligations.

  6. Analyze anonymized usage trends to enhance product experience.

We do not sell your personal information.

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process data under the following lawful bases:

  • Performance of a contract — to deliver the Services you request.

  • Legitimate interests — to operate and improve our platform.

  • Consent — when you opt in to communications or integrations.

  • Legal obligation — to comply with applicable regulations.

5. Data Sharing and Transfers

We may share data with:

  • Service Providers such as Twilio (for messaging), Make (automation), Airtable (data storage), Voiceflow (voice processing), and HubSpot (CRM sync).
    These vendors act as data processors under contractual confidentiality and security terms.

  • Business Partners only when authorized by your organization.

  • Authorities or Regulators when legally required.

We may transfer data internationally, ensuring protection through standard contractual clauses or equivalent safeguards.

6. Data Retention

We retain your information only as long as necessary to:

  • Fulfill the purposes described above.

  • Comply with applicable laws or auditing requirements.

  • Maintain accurate system records for service delivery.

SMS and WhatsApp message logs are automatically deleted after 180 days, unless your organization’s retention settings specify otherwise.

7. Data Security

We employ industry-standard technical and organizational safeguards, including:

  • Encryption in transit (TLS) and at rest.

  • Access controls with least-privilege principles.

  • API token and credential isolation per organization.

  • Continuous monitoring and audit logging.

If a data breach occurs, we will notify affected users and relevant authorities in accordance with applicable law.

8. Your Rights

Depending on your location, you may have the right to:

  • Access a copy of your personal data.

  • Request correction, deletion, or restriction of processing.

  • Withdraw consent for communications at any time (“STOP” or “HELP” for SMS).

  • Export your data in a machine-readable format.

To exercise these rights, contact daniel@pingal.me.

9. Children’s Privacy

Our Services are not intended for individuals under 16. We do not knowingly collect personal data from minors. If we become aware of such data, it will be deleted immediately.

10. Changes to This Policy

We may update this Policy from time to time. Changes will be posted on our website with a revised effective date. Continued use of Pingal after updates constitutes acceptance.

11. Contact Us

If you have questions, concerns, or requests regarding this Policy, please contact our leadership at: daniel@pingal.me.