Last updated (effective date): July 8, 2026
Applies to: (i) order/onboarding flows used to purchase or set up our services (including the "Core Agent Order" form), (ii) our customer portal and authenticated product experiences (including app.bluecollarvoice.ai, when available), and (iii) our AI voice agent services and related support (the "Services").
This Customer & Service Privacy Notice does not replace our separate marketing-site Privacy Policy, which applies to the public marketing website at bluecollarvoice.aiand any public demo experiences ("Demos").
1) Quick summary
- We provide AI voice agent services for U.S.-based trade businesses (commercial/business use only).
- We do not run third-party ads in the customer portal.
- We do not sell personal information.
- We do not share personal information for cross-context behavioral advertising (targeted advertising).
- Payments are processed by Stripe. We do not receive your full payment card number.
- When you connect QuickBooks Online, we use Intuit OAuth 2.0 and request the QuickBooks Online Accounting scope (com.intuit.quickbooks.accounting) to support customer and invoice sync, accounting workflow support, reconciliation, diagnostics, and support.
- We do not request the QuickBooks Payments API scope and do not process payments through Intuit Payments.
- We do not sell QuickBooks Online data or use it for targeted advertising.
- When you submit onboarding info, we email you (and our team) a PDF summary of what you submitted for confirmation and setup.
- We may send operational/service notifications and account notices by email and, where enabled, SMS/text, to customer-designated business contacts or other configured notification destinations.
- Email delivery for operational/service notifications and account notices is processed through Resend.
- If/when SMS/text notifications are enabled, we expect to use Twilio for that channel.
- Product analytics for the customer portal and authenticated product experience are processed through PostHog.
- Our current PostHog setup is focused on product-usage analytics such as sign-ins, organization-level usage, feature adoption, and workflow events. We do not currently use PostHog for targeted advertising.
- Our current PostHog setup does not enable broad autocapture or session replay by default.
- These communications may include new lead notifications, urgent service request notifications, notifications related to voice-agent activity, daily summary emails, weekly report emails, and account, billing, security, and service-availability notices.
- Operational/service notifications and account notices are different from marketing communications.
- Where SMS/text notifications are enabled, message frequency varies. Message and data rates may apply.
- We do not share mobile numbers or SMS consent data with third parties or affiliates for their own marketing or promotional purposes.
- We do not promise real-time or guaranteed delivery of notifications.
- Notifications are not emergency services and should not be relied on for life-safety situations.
- Recording retention (current default): If call/audio recording is enabled and you consent, audio recordings are deleted from our voice platform provider (Vapi / "VAPI") after 7 days. Transcripts may be retained longer as described below.
2) Who we are
Blue Collar Voice LLC ("Blue Collar Voice," "we," "us") is responsible for this Notice.
Privacy contact: privacy@bluecollarvoice.ai
Legal contact: legal@bluecollarvoice.ai
Mailing address:
ZenBusiness Inc
2520 Venture Oaks Way Suite 120
Sacramento, CA 95833
3) What this Notice covers (and what it does not)
This Notice covers information we collect when you:
- place an order or submit onboarding information for our Services
- pay for our Services (including through Stripe Payment Links)
- use our customer portal (when available)
- use our Services (including calls handled by our AI voice agent)
- connect third-party integrations, including QuickBooks Online, to the Services
- contact support or otherwise communicate with us about the Services
This Notice does not cover:
- the public marketing website and public Demos (those are covered by our marketing-site Privacy Policy)
- third-party sites/services you use in connection with the Services (for example, your own CRM, calendar, telephony provider accounts, or other tools), which are governed by their own policies
4) Information we collect
A) Information you provide during order/onboarding
Depending on the product tier and your configuration, we may collect:
- business details (agreement info): legal business name, DBA/trade name, entity type, state of formation
- business address (registered) and related address fields
- authorized signer / business representative details: name, title, email, phone (optional)
- billing address details (if collected in the onboarding flow)
- setup details: website URL, lead alert emails, live transfer phone (optional), business phone (optional), and other customer-designated business contact details or configured notification destinations, including notification recipient email addresses and, where enabled, notification phone numbers
- call-handling preferences: timezone, business hours schedule, emergency-call preferences and emergency-hours description, service area type and service area list
- notification preferences you configure or request, such as preferred channels, event types, routing preferences, summary/report preferences, and related operational settings
- optional notes: pricing notes, extra setup notes, and other configuration details
- add-on preferences (for example, interest in an AI website chatbot) and scheduling contact email (optional)
Important: Do not enter payment card or bank account numbers in our onboarding form(s). Payments are collected through Stripe.
B) Payment and transaction information (via Stripe and our records)
When you pay through Stripe, we (and/or Stripe) may process:
- purchaser name and email
- business name
- billing address (if provided/collected)
- transaction details such as product tier, subscription status, invoice history, payment status, and receipts
Payment method details (such as full card number) are processed by Stripe. We may receive limited information such as payment confirmation, payment method type, last four digits, or a payment method token, depending on Stripe configuration.
C) Account and portal information (app.bluecollarvoice.ai, when available)
If/when you create and use a portal account, we may collect:
- account identifiers (name, email)
- authentication information (such as passwords, SSO identifiers, or session tokens) handled through our auth system/providers
- user profile information, roles/permissions, settings, and notification preferences
- audit logs and security logs related to account access, notification-configuration changes, and administrative actions
D) Service data (calls, leads, transcripts, and related content)
When our AI voice agent handles calls for you, and when we operate related workflows and notifications, we may process:
- call metadata (time, duration, routing, and phone numbers or other identifiers)
- call content (what callers say) and agent outputs
- transcripts generated from audio
- call recordings, if enabled and the caller/user consents
- lead details captured during calls (such as caller contact info, scheduling details, and service-request context), depending on how your agent is configured
- notification-related information we generate or receive to operate the Services, such as alert type, event type, channel, destination, timestamp, send or delivery status, bounces, failures, provider responses, and related logs
- information that may appear in operational/service notifications or account notices, depending on configuration and availability, such as caller details, service-request context, urgency indicators, call or lead summaries, transcript excerpts or links, voice-agent activity, routing outcomes, and account, billing, security, or service-status information
- service, job, customer, and business address information used to suggest tax rates, tax jurisdictions, and line-item taxability defaults
- tax-assist metadata such as suggested rate, jurisdiction, source, lookup date, address used for the lookup, and whether a user accepted or overrode the suggestion
Recording/consent note: Call recording and automated communications laws vary by state. Customers are responsible for ensuring required notices/consents are provided to their callers, and for configuring their call flows appropriately.
Biometric note (Illinois): We do not intentionally collect or use "voiceprints" or other biometric identifiers to uniquely identify individuals. Audio may be processed to provide the Services (for example, to generate transcripts), but it is not used by us to uniquely identify a person.
E) Tax assist data
If tax-assist features are enabled, we may use business, customer, job, or service address information to suggest tax rates or tax jurisdictions. Some lookups may use internally cached public/government datasets. If live external lookup or geocoding is enabled, address or location data may be sent to government, mapping, geocoding, or tax-rate services to return a suggested rate or jurisdiction. We may store lookup metadata for audit history, troubleshooting, and document records, including source, rate, jurisdiction, lookup date, address, and whether the suggestion was accepted or overridden.
F) QuickBooks Online integration data
If you connect QuickBooks Online, we use Intuit OAuth 2.0 to connect your QuickBooks Online company. We request the QuickBooks Online Accounting scope (com.intuit.quickbooks.accounting). We do not request the QuickBooks Payments API scope and do not process payments through Intuit Payments.
Depending on your configuration, sync activity, diagnostics, and support needs, we may collect or receive:
- QuickBooks company/realm identity, realm identifiers, company profile information, and connection status
- QuickBooks preferences and accounting settings needed to create or sync records correctly
- customer records, invoice records, invoice/payment/accounting metadata, document numbers, sync tokens, entity IDs, balances, payment references, and related accounting identifiers
- webhook events and related event metadata
- OAuth tokens, refresh-token status, token expiration metadata, and related connection secrets
- sync status, reconciliation warnings, diagnostics, audit logs, support notes, error messages, request identifiers, and security logs related to the integration
We may also read QuickBooks Online item, service-item, and account metadata needed to create invoices correctly, including income-account information used for invoice line items. If needed to support invoice sync, we may create or use a default QuickBooks Online service item named "Blue Collar Voice Services." We use this only for QuickBooks invoice sync and related reconciliation, diagnostics, audit logs, security, and support.
We may read from and write to QuickBooks customer and invoice records as needed to sync customers and invoices, refresh metadata, reconcile records, diagnose and fix errors, support you, maintain audit and security logs, and prevent duplicate or unsafe sync activity.
OAuth tokens, realm identifiers, and related connection secrets are stored using encryption and access controls designed to protect them.
G) Communications and support
If you email us or contact support, we collect:
- your contact information
- the contents of your message and any information you choose to provide
- troubleshooting logs or screenshots you send us (if any)
H) Information collected automatically
Like most online services, we and our infrastructure providers may automatically collect:
- IP address
- device and browser information
- approximate location (derived from IP, such as city/state)
- access logs, security signals, and performance/reliability data
- event logs related to usage of the portal or onboarding flow
- portal and authenticated product analytics events, pseudonymous identifiers, organization-level usage signals, and related cookie/local-storage based measurement data processed through PostHog
5) Cookies, web beacons, and similar technologies
We (and our providers) use cookies, scripts, and similar technologies primarily for:
- security and fraud prevention
- authentication/session management (for logged-in portal use)
- performance and reliability (including measuring errors and uptime)
- product analytics and feature-usage measurement through PostHog for the authenticated product experience
We do not use cookies or similar technologies for targeted advertising.
Our current product analytics configuration is focused on event-based measurement. We do not currently enable broad autocapture or session replay by default in PostHog.
Your choices: You can control cookies through your browser settings. If you disable certain cookies, parts of the portal or onboarding experience may not work correctly.
6) How we use information
We use information to:
- process orders, onboard customers, and set up accounts
- provide, operate, and maintain the Services
- configure and run your AI voice agent according to your business rules and preferences
- generate, send, route, and log operational/service notifications and account notices, including new lead notifications, urgent service request notifications, notifications related to voice-agent activity, daily summary emails, weekly report emails, and account, billing, security, service-availability, and similar operational notices
- manage notification recipients, destinations, and channel/event preferences
- connect to QuickBooks Online when you choose to enable the integration
- sync customer and invoice records with QuickBooks Online, support accounting workflows, reconcile records, troubleshoot errors, maintain audit logs, prevent duplicate or unsafe sync activity, and secure the integration
- provide customer support and respond to requests
- secure the Services, prevent abuse, and monitor reliability/performance
- analyze feature usage, workflow completion, and organization-level product adoption in the portal through PostHog
- comply with legal obligations and enforce our agreements
- improve the Services (including using de-identified or aggregated data derived from Customer Data, as permitted by our agreements)
We use QuickBooks Online data only for the QuickBooks integration purposes described in this Notice and our agreements.
We do not use QuickBooks Online data to train general AI models or to improve unrelated products. Any de-identified or aggregated use of QuickBooks Online data is limited to operating, securing, troubleshooting, supporting, and improving the QuickBooks Online integration. We process QuickBooks Online data to provide Blue Collar Voice's services at your direction; we do not process QuickBooks Online data on Intuit's behalf.
7) How we share information
We share information only as needed to operate the Services and for the purposes above.
A) With our team
We share information with employees and contractors who need it to onboard customers, provide support, and operate the Services, under confidentiality obligations.
B) With service providers (processors)
We use vendors to help run the Services. Depending on configuration, these may include:
- Payments: Stripe
- Email delivery for operational/service notifications and account notices: Resend
- SMS/text delivery for operational/service notifications and account notices, if/when enabled: Twilio
- Product analytics for the authenticated customer portal and product experience: PostHog
- Workflow automation/integrations and webhooks: n8n
- Hosting/infrastructure: Vercel
- Security and performance: Cloudflare
- CRM/recordkeeping (current): Google Sheets
- Voice and AI communications platform: Vapi (VAPI) and its subprocessors
- Customer portal/database (when available): Supabase
- Document storage (if/when enabled): Google Drive
AI model/provider flexibility: The Services may rely on third-party AI models and speech-to-text systems (directly or through vendors like Vapi). These underlying providers may change over time based on availability, cost, and capability. We design our vendor relationships to protect information through contractual and technical safeguards.
These providers process information on our behalf under contractual limits.
For example, PostHog processes portal and authenticated product analytics events, pseudonymous identifiers, device/browser data, and organization-level usage metadata for product analytics. Our current configuration does not enable broad autocapture or session replay by default.
C) With you and your organization
We share Service outputs with you based on your configuration, such as sending operational/service notifications and account notices to customer-designated business contacts or other configured notification destinations by email and, where enabled, SMS/text. Depending on configuration and availability, those communications may include call summaries, new lead details, service-request context, urgency indicators, transcript excerpts or links, notifications related to voice-agent activity, daily summaries, weekly reports, and onboarding/order summaries, as well as account, billing, security, or service-status information.
D) Integrations you choose
If you connect third-party integrations (for example, calendars, CRMs, scheduling tools, QuickBooks Online, or other systems), we may share and receive information with/from those services as needed to provide the integration. Those third parties' privacy practices are governed by their own policies.
For QuickBooks Online, this means we may send customer and invoice information from Blue Collar Voice to QuickBooks Online/Intuit and may receive QuickBooks company, customer, invoice, invoice/payment/accounting metadata, webhook event, and related identifier data from QuickBooks Online/Intuit as needed to provide and support the integration.
We do not sell QuickBooks Online data or share it with unrelated third parties. We may share QuickBooks Online data with service providers that help us operate the Services, but only as needed for hosting, database, security, support, logging, diagnostics, and similar operational purposes and under contractual limits.
E) Legal and safety
We may share information if we believe it's necessary to:
- comply with law or legal process
- protect rights, safety, and security of Blue Collar Voice, our customers, callers, or others
- prevent fraud, abuse, or security incidents
F) Business transfers
If we're involved in a merger, acquisition, financing, or sale of assets, information may be transferred as part of that transaction.
8) What we do not do
- No sale of personal information: We do not sell personal information.
- No targeted advertising sharing: We do not share personal information for cross-context behavioral advertising (targeted advertising).
- No third-party ads in the portal: We do not run third-party advertising in the customer portal.
- No sharing of mobile numbers or SMS consent data for third-party marketing: We do not share mobile numbers or SMS consent data with third parties or affiliates for their own marketing or promotional purposes.
- No sale of QuickBooks Online data: We do not sell QuickBooks Online data.
- No targeted advertising from QuickBooks Online data: We do not use QuickBooks Online data for targeted advertising.
- No Intuit Payments processing: We do not request the QuickBooks Payments API scope and do not process payments through Intuit Payments.
- No marketing texts from onboarding data today: We do not currently send marketing SMS/text messages based on onboarding submissions. This does not prevent us from sending operational/service notifications or account notices by SMS/text where that channel is enabled and legally permitted.
- No newsletter-style mass marketing emails today: We do not run newsletter-style mass email marketing today. Operational/service notifications and account notices are different from marketing communications. They may include onboarding confirmations, receipts, new lead notifications, urgent service request notifications, notifications related to voice-agent activity, daily summary emails, weekly report emails, security notices, billing notices, and other service-related communications needed to operate and support the Services.
9) Data retention
We keep information only as long as needed for the purposes described above, including operating the Services, providing support, maintaining business records, preventing fraud/abuse, resolving disputes, and complying with law.
Retention depends on the type of data and why we collected it. We may delete or de-identify information earlier, and we may keep some information longer if required by law or for legitimate business needs.
Current operational defaults and examples:
- Audio recordings (if enabled and consented): Opted-in audio recordings are stored by our voice platform provider (Vapi / "VAPI") and are deleted from Vapi after 7 days (subject to limited exceptions such as security incident investigation or legal requirements).
- Transcripts: Transcripts are currently retained within our voice platform provider (Vapi). We may also export or store transcripts and related service data in our systems (for example, Google Sheets today and, in the future, Google Drive and/or our Supabase-backed portal) as needed to operate and support the Services, maintain records, and help with dispute resolution and security.
- Onboarding/order records and PDF summaries: We retain onboarding submissions and related order records (including PDF summaries sent by email) for account setup, operational needs, recordkeeping, and dispute protection.
- Billing and payment records: We retain billing/payment status and related records as needed for accounting, reconciliation, and dispute handling. Stripe also retains certain payment records under its own policies.
- QuickBooks Online integration data: If you disconnect QuickBooks Online, sync stops and we stop using the connection to access QuickBooks Online. We may retain limited copied records, accounting identifiers, sync metadata, reconciliation warnings, support notes, audit logs, and security logs as needed for audit, security, support, legal/accounting obligations, recordkeeping, reconciliation, dispute handling, and duplicate or unsafe sync prevention.
- Security logs: We retain certain logs for security monitoring, fraud prevention, and troubleshooting.
- Notification recipient details, preferences, consent status, HELP/STOP and suppression records, delivery and failure logs, and related notification metadata: We may retain this information as needed to operate the Services, troubleshoot delivery issues, maintain records, investigate security or abuse, support customers, and resolve disputes.
Deletion requests / termination: You can request deletion of certain information (see Section 11). If your relationship with us ends, we may delete or de-identify Customer Data in our active systems within a commercially reasonable time (consistent with our agreements), while retaining de-identified/aggregated data and limited records where required for legal, accounting, security, or dispute purposes.
10) Security
We use reasonable administrative, technical, and organizational measures designed to protect information. No system can be 100% secure.
For connected integrations such as QuickBooks Online, we limit access to connection data to systems and personnel with a business need. OAuth tokens and related connection secrets are stored using encryption and access controls designed to protect them. We also use logging and operational controls designed to help detect and troubleshoot unauthorized or unsafe access.
11) Your choices and rights
A) Access, correction, deletion, and portability
You can request that we:
- provide access to certain information we have about you
- correct inaccurate information
- delete certain information
- provide a portable copy of certain information (when reasonably feasible)
Email: privacy@bluecollarvoice.ai
We may need to verify your request before we act on it.
Where SMS/text notifications are enabled, recipients may opt out of non-mandatory SMS/text notifications by replying STOP. Reply HELP for help. Opting out of SMS/text notifications does not prevent us from sending service-related notices by email or other channels.
B) Recording choices
Where we provide an opt-in/out choice for recording (for example, via a call notice or configuration setting), you can choose not to be recorded. Transcripts may still be generated to operate the Service.
C) QuickBooks Online connection choices
If you connect QuickBooks Online, an authorized user can disconnect it from app settings. After disconnect, QuickBooks sync stops. We may retain limited records and logs as described in Section 9.
D) California privacy rights
If you are a California resident, you may have rights under California privacy laws, including the right to:
- know what personal information we collect, use, and share
- request deletion of personal information
- correct inaccurate personal information
- opt out of "sale" or "sharing" (we do not sell personal information, and we do not share personal information for targeted advertising)
- not be discriminated against for exercising your rights
You (or an authorized agent) can submit requests at privacy@bluecollarvoice.ai.
E) California notice at collection (summary)
We may collect:
- identifiers (name, email, phone; business contact details; notification recipient details)
- customer records/business contact info (business name, address, signer info, account configuration details)
- commercial information (transaction/subscription status, invoices/receipts, payment status)
- internet/network activity (IP address, device info, logs)
- audio/electronic information (call recordings and transcripts, notification preferences, notification logs, and related service metadata, if enabled/used)
- QuickBooks Online/accounting integration information (company/realm identifiers, customer and invoice records, invoice/payment/accounting metadata, connection status, webhook events, sync metadata, diagnostics, and related logs, if connected)
We use this information to provide and secure the Services, process orders and payments, communicate with customers, generate and send operational/service notifications and account notices, provide support, and improve the Services. For retention, see Section 9. We do not sell personal information. We do not share personal information for targeted advertising.
F) Appeals
If we deny your request, you can appeal our decision by replying to our response email or emailing privacy@bluecollarvoice.aiwith the subject line "Privacy Appeal."
G) Do Not Track and Global Privacy Control (GPC)
Some browsers send "Do Not Track" signals, and some browsers or extensions send "Global Privacy Control" (GPC) signals. We do not sell personal information and we do not share personal information for targeted advertising.
12) Children
Our Services are intended for adults (18+) acting for businesses. We do not knowingly collect personal information from children under 13.
13) U.S.-only focus
The Services are intended for users in the United States. Information may be processed in the United States and other locations where our service providers operate.
14) Changes to this Notice
We may update this Notice from time to time. We will post an updated version with a new "Last updated" date.
15) Contact us
Privacy: privacy@bluecollarvoice.ai
Legal: legal@bluecollarvoice.ai
Mail:
ZenBusiness Inc
2520 Venture Oaks Way Suite 120
Sacramento, CA 95833