Privacy Policy
Last updated July 18, 2026
1. What this covers
This policy explains what data NextSequence (the “Service”) processes, why, and how it is handled. It applies to the reps and admins who use the Service and to the lead data they bring into it.
2. Data we process
- Account data — your name, email, and phone, used to authenticate you (passwordless sign-in) and to send from the correct rep identity.
- Lead data you provide or generate — lead names, emails, phone numbers, call transcripts, notes, and the email and SMS content produced for them.
- Connected-account credentials — API keys and OAuth tokens for the providers you connect (email, CRM, call-recording, messaging). These are stored encrypted.
- Operational logs — send events, delivery results, replies, and error logs needed to run and troubleshoot the Service.
3. How we use it
We use this data only to operate the Service for you: to generate sequences grounded in your calls, quality-check them, schedule them at lead-local times, send them from your connected accounts, detect replies and bookings, and show you the results. We do not sell your data or your leads’ data, and we do not use it to advertise to you.
4. Processors and sub-processors
The Service relies on infrastructure and provider services to function. At your direction and on your behalf it processes data through:
- Supabase — the application database and authentication.
- Vercel — application hosting.
- Anthropic — the model used to draft and quality-check copy.
- Gmail / Google — sending email and detecting replies, using the account you connect.
- Close, SendBlue, GoHighLevel — CRM and messaging, using the accounts you connect.
- Attention, Fathom and similar — call recordings and transcripts you choose to pull in.
Your data flows to these providers only as needed to deliver the feature you use. Each has its own privacy terms governing its handling.
5. Consent, email, and SMS
Messages are sent as you, the rep. The Service enforces safeguards on your behalf: consent checks before texting, quiet hours, spaced cadence, unsubscribe links on email, and STOP handling on SMS that marks a contact opted out and prevents further messaging. You are responsible for having a lawful basis to contact each recipient and for honoring opt-outs; the Service is built to help you do so, consistent with CAN-SPAM and TCPA expectations.
6. Security
Connected-account secrets are encrypted at rest. Access to the application enforces per-rep ownership so a rep only reaches their own leads. We aim to follow reasonable, industry-standard safeguards, though no system can be guaranteed perfectly secure.
7. Retention and your choices
We keep data for as long as your account is active or as needed to run the Service. You can request an export or deletion of your data by contacting us. Disconnecting a provider stops further processing through it.
8. Changes and contact
We may update this policy; material changes will be posted here with a new date. Privacy questions can be sent to admin@nextsequence.ai.