Legal

Privacy policy

This policy explains how Heyatron handles information when businesses use the platform to manage calls, customers, and bookings.

Effective 11 July 2026

What we collect

We process the information needed to provide Heyatron: account and workspace details, business configuration, contacts supplied by a workspace, call and conversation metadata, transcripts when enabled, appointments and reservations, integration identifiers, and service usage and security logs. Audio recording is disabled by default and is processed only when a location enables it with its required disclosure and retention settings.

How we use information

We use information to authenticate users, answer and route calls, manage bookings, synchronize connected calendars, provide customer support, secure and improve the service, investigate failures, and meet legal obligations. We do not use customer contact data to build unrelated advertising profiles or sell it to data brokers.

Workspace responsibilities

The business operating a Heyatron workspace decides which customer information is entered, which calls are handled, which knowledge is published, and whether transcripts or recordings are retained. That business is responsible for giving callers and customers any notices and choices required by its local laws.

Service providers and transfers

Heyatron relies on infrastructure and specialist providers for cloud hosting, AI processing, telephony, email or messaging, analytics, and optional calendar synchronization. We share only the information required for those providers to perform the requested service and apply contractual and technical safeguards appropriate to the integration.

Google Calendar data

When a workspace connects Google Calendar, Heyatron requests permission to view calendar availability and create or update calendar events. OAuth refresh tokens are encrypted with Google Cloud KMS. Calendar data is used only to provide scheduling and synchronization requested by the workspace. Access can be revoked from Heyatron or the connected Google Account.

Retention and security

We retain information for as long as needed to provide the service, meet configured workspace retention periods, resolve disputes, and protect the platform. Access is workspace-scoped, sensitive credentials are stored outside the source code, and recorded media uses restricted access and short-lived delivery links when recording is enabled. No internet service can guarantee absolute security.

Your choices and rights

Depending on where you live, you may have rights to access, correct, delete, restrict, or export personal information, or object to certain processing. Workspace customers should normally contact the business they called or booked with first. Account holders can contact Heyatron directly for workspace and account requests.

Contact and updates

Questions or privacy requests can be sent to dev@omegax.health. We may update this policy as the product and its providers change. Material updates will be reflected on this page with a revised effective date.