Privacy Policy

Effective Date: April 1, 2026

This Privacy Policy explains how Sendara ("Sendara," "we," "us," or "our") collects, uses, stores, and shares information when you use our platform, APIs, integrations, and related services (collectively, the "Services"). It also explains your rights regarding your personal data.

By using the Services, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Services immediately.

This policy applies to information collected through our website (sendara.io), our web application, our Chrome extension, and any other interactions you have with us. It does not apply to third-party websites or services that may be linked from our platform.

1. Who This Policy Applies To

This Privacy Policy applies to two categories of users:

  • Business Customers: Businesses and individuals who sign up for and use Sendara's Services to send iMessages and make FaceTime calls through their CRM workflows.
  • End Users: Individuals (such as leads, prospects, or contacts) who receive communications sent through the Sendara platform by Business Customers.

Business Customers are responsible for how they collect and use data about their End Users through the Services. Sendara acts as a data processor on behalf of Business Customers for communications data. End Users with questions about how their data is handled should contact the Business Customer that sent them a message.

2. Information We Collect

2.1 Information You Provide

When you create an account or use the Services, we may collect:

  • Name, email address, phone number, and other contact details
  • Business name, CRM type, and integration preferences
  • Payment information (processed securely by our payment provider — we do not store card details)
  • Communications with our support team, including emails and chat messages

2.2 Information Collected Automatically

When you access the Services, we automatically collect:

  • Usage data: pages visited, features used, actions taken, session duration
  • Device and browser information: IP address, browser type, operating system, device identifiers
  • Log data: timestamps, error logs, API request/response logs

2.3 Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Maintain your session and keep you logged in
  • Understand how the platform is being used so we can improve it
  • Remember your preferences

You can configure your browser to block or delete cookies, though this may affect the functionality of the Services.

2.4 Communications Data

When you use Sendara to send iMessages or initiate FaceTime calls, we process the content and metadata of those communications (such as recipient identifiers, timestamps, and delivery status) in order to deliver the Services. This data is processed on behalf of the Business Customer and in accordance with their instructions.

2.5 CRM Integration Data

When you connect a CRM (such as HubSpot, GoHighLevel, Close, Salesforce, or Pipedrive), we access the contact and workflow data necessary to deliver messages and sync activity back to your CRM. We do not store CRM data beyond what is needed to operate the Services.

3. How We Use Your Information

We use the information we collect to:

  • Provision, operate, and maintain the Services
  • Process payments and manage your subscription
  • Deliver iMessages and FaceTime calls through your CRM workflows
  • Sync message activity and delivery status back to your CRM
  • Provide onboarding support and customer service
  • Send you service-related communications, including account updates and security alerts
  • Improve and develop the Services based on usage patterns and feedback
  • Detect and prevent fraud, abuse, and security incidents
  • Comply with applicable legal obligations

We do not sell your personal information to third parties. We do not use your data to serve you advertising.

4. How We Share Your Information

We may share your information in the following circumstances:

4.1 Service Providers

We share information with third-party vendors and service providers who assist us in delivering the Services, including cloud hosting providers, payment processors, CRM integration partners, and customer support tools. These providers are contractually required to handle data securely and only for the purposes for which it was shared.

4.2 Legal Requirements

We may disclose your information if required to do so by law, court order, or government authority, or if we believe in good faith that disclosure is necessary to protect the rights, property, or safety of Sendara, our users, or the public.

4.3 Business Transfers

If Sendara is involved in a merger, acquisition, asset sale, or similar corporate transaction, your information may be transferred as part of that transaction. We will notify you via email or a prominent notice on our website before your information is transferred and becomes subject to a different privacy policy.

4.4 With Your Consent

We may share your information with additional third parties when you have given us explicit consent to do so.

4.5 Aggregated or De-Identified Data

We may share aggregated or de-identified data that cannot reasonably be used to identify you for analytics, research, or product improvement purposes.

5. Business Customer Responsibilities

If you are a Business Customer using Sendara to send messages to your contacts, you are the data controller for those communications. You are responsible for:

  • Obtaining all necessary consents from your contacts before messaging them through the Services
  • Complying with all applicable laws governing electronic communications, including TCPA, CAN-SPAM, GDPR, and CCPA as applicable
  • Honoring opt-out and unsubscribe requests from your contacts promptly
  • Providing your contacts with clear information about how their data is used
  • Notifying Sendara and affected individuals promptly in the event of a data breach involving data processed through the Services

Sendara acts as a data processor on your behalf for communications data. We process that data according to your instructions and the terms of our agreement with you. You are solely responsible for the legality of the messages you send through the Services.

6. Data Retention

We retain your account data for as long as your account is active or as needed to provide the Services. If you cancel your account, we will retain your data for a reasonable period to allow for account reactivation, after which it will be deleted or anonymized in accordance with our data retention schedule.

Communications data (message content and metadata) is retained for the period necessary to deliver the Services and sync activity to your CRM, after which it may be deleted or anonymized.

We may retain certain data longer if required by law or for legitimate business purposes such as dispute resolution or fraud prevention.

7. Data Security

We implement appropriate technical and organizational measures to protect your information against unauthorized access, loss, destruction, or alteration. These measures include encryption of data in transit, access controls, and regular security reviews.

However, no security system is impenetrable. We cannot guarantee the absolute security of your data. If you believe your account has been compromised, please contact us immediately at deepak@sendara.io.

8. Your Privacy Rights

8.1 All Users

Regardless of your location, you may:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data, subject to legal retention requirements
  • Opt out of non-essential communications from us

8.2 EU and UK Residents (GDPR)

If you are located in the European Union or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR), including:

  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing, including for direct marketing

To exercise these rights, contact us at deepak@sendara.io. We will respond within the timeframe required by applicable law.

8.3 California Residents (CCPA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information we have collected, used, disclosed, or sold about you in the past 12 months
  • Right to request deletion of your personal information
  • Right to opt out of the sale of your personal information (note: Sendara does not sell personal information)
  • Right to non-discrimination for exercising your CCPA rights

To submit a CCPA request, email us at deepak@sendara.io. We will process your request within the timeframe required by California law.

9. Children's Privacy

The Services are not directed at individuals under the age of 13, and we do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at deepak@sendara.io and we will promptly delete it.

10. Third-Party Links and Integrations

The Services may contain links to third-party websites or integrate with third-party platforms such as CRMs, Zapier, and n8n. This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party services you connect to through Sendara.

Sendara is not responsible for the privacy practices or content of third-party services.

11. International Data Transfers

Sendara is based in the United States. If you are accessing the Services from outside the United States, your information may be transferred to and processed in the United States, which may have different data protection laws than your country.

By using the Services, you consent to the transfer of your information to the United States. Where required by applicable law, we implement appropriate safeguards for international data transfers.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by posting the updated policy on our website with a revised effective date and, where appropriate, by sending you an email notification.

Your continued use of the Services after the effective date of any changes constitutes your acceptance of the updated Privacy Policy.

13. Contact Us

If you have questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about how your data is being handled, please contact us:

Email: deepak@sendara.io
Website: www.sendara.io

We are committed to resolving privacy concerns promptly and transparently.