Skip to main content
CCendaro
Book a Demo
Legal

Privacy Policy

This Privacy Policy explains how Cendaro collects, uses, discloses, retains, and protects personal information when you use our website, request a demo, create a workspace, communicate with us, or use the Cendaro platform.

Effective date: May 25, 2026Last updated: May 25, 2026Version: 2026-05-25

Privacy at a glance

Cendaro handles business account information, lead and customer records, customer profile records, communications history, bookings, consent and message event logs, import and export records, AI-assisted workflow data, billing records, legal acceptance records, and privacy request records to operate the service responsibly for business customers in Canada.

This page may be updated from time to time to reflect changes to the Service, vendors, compliance requirements, or operational practices.
This page is provided for transparency and does not create rights beyond those required by applicable law or a written agreement. If there is a conflict between this page and a signed agreement with Cendaro, the signed agreement will control to the extent permitted by law.

1. Scope of this Policy

This Privacy Policy applies to personal information handled by Cendaro through the Cendaro website, demo requests, contact forms, trial signup, account access, workspace use, customer support, billing, AI-assisted features, messaging workflows, and related services. This Policy does not apply to websites, tools, or services operated by third parties that Cendaro does not control.

2. Personal information we collect

We may collect personal information that you provide directly, including name, business name, business email, phone number, role or job title, login or account details, demo request information, trial signup information, billing and subscription details, support messages, workspace settings, preferred language, and other information you choose to provide.

3. Information processed through the platform

When a business uses Cendaro, the platform may process information about leads, customers, bookings, communications, and business workflows, including customer names, phone numbers, email addresses, preferred language, service requests, quote or booking details, intake responses, customer profile records, SMS and email message history, missed call records, voicemail or transcript data if enabled, lead source, assigned owner or team member, follow-up activity, internal notes, won and lost outcomes, revenue estimates, consent logs, message event logs, AI-generated summaries, AI-suggested replies, booking handoff links, public booking management links, duplicate review decisions, import payloads, export artifacts, legal acceptance records, and privacy request records.

4. How we use personal information

Cendaro uses personal information to provide and operate the platform, create and manage accounts, create and manage workspaces, process demo and trial requests, support lead capture and follow-up workflows, link repeat contacts into customer profiles, support SMS and email communications, create bookings and reminders, support secure booking confirmation, rescheduling, and cancellation links, track won and lost outcomes, generate reporting, import previews, committed imports, and operational exports, provide AI-assisted replies, summaries, and recommendations, manage billing and subscriptions, provide customer support, detect, prevent, and investigate misuse or security issues, maintain legal, consent, audit, and compliance records, and comply with applicable legal obligations.

6. SMS, email, and customer communications

Cendaro may help workspaces send or manage SMS, email, booking reminders, quote follow-ups, service messages, and customer communications. If a workspace uses Cendaro to send SMS, email, or other electronic messages, the workspace owner is responsible for ensuring those communications comply with applicable consent, identification, unsubscribe, and customer communication requirements. Cendaro may provide tools to record consent, process STOP and START unsubscribe keywords, block certain messages, and log communication events. These tools do not replace the workspace owner's responsibility for lawful messaging practices.

7. AI-assisted features

Cendaro may provide AI-assisted features, including suggested replies, lead summaries, follow-up recommendations, workflow suggestions, AI Help Assistant answers, and reporting support. AI-assisted features may process lead details, message context, service requests, notes, booking information, workspace settings, and related operational data. AI output may be incomplete, inaccurate, or unsuitable for a specific situation. Users should review AI-assisted output before relying on it or sending it to customers. Users should not enter sensitive medical, legal, tax, banking, SIN, identity, or confidential customer information into AI features unless the feature is designed for that use, the user has permission, and appropriate safeguards are in place.

8. Sensitive information warning

Cendaro is not intended to be used as a secure document portal for sensitive medical, legal, tax, banking, SIN, payroll, or financial documents. For sensitive industries such as clinics, accounting firms, legal intake firms, mortgage brokers, insurance brokers, and healthcare-related businesses, users should avoid asking customers to send sensitive details by SMS. Cendaro may display industry-specific warnings such as: For privacy, please do not send medical details by SMS. For security, please do not send SINs, tax slips, banking information, or tax documents by SMS. Please do not send confidential legal details by SMS.

9. Cookies, analytics, and website data

Cendaro may use cookies and similar technologies to operate the website and platform, remember preferences, support login and security, measure site usage, improve the product, and understand how businesses discover Cendaro. Essential cookies are required for the website and platform to work. Analytics, marketing, and preference cookies are optional unless needed for basic operation or legal or user-preference records. Non-essential cookies should not load before the user gives consent through the Cookie Preferences tool.

10. How we share information

Cendaro does not sell personal information. Cendaro may share information with service providers that help operate, secure, support, and improve the platform. As of the current launch configuration, these may include Supabase for database, authentication, and storage services; Vercel for hosting and deployment infrastructure; Stripe for payment processing and billing workflows; Resend for email delivery; Telnyx for phone, voice, and SMS communications; and OpenAI for AI-assisted features. Cendaro may also use supporting providers for analytics, error monitoring, customer support, and security operations.

11. Cross-border processing

Cendaro and its service providers may process or store personal information in Canada, the United States, or other jurisdictions where service providers operate. Information processed outside your province, territory, state, or country may be subject to the laws of that jurisdiction. Cendaro maintains internal records of service providers and the purposes for which they process information.

12. Retention and deletion

Cendaro retains personal information only as long as reasonably necessary for the purposes described in this Policy, including providing the Service, maintaining business records, supporting security, resolving disputes, enforcing agreements, supporting billing, import and export traceability, secure booking workflows, and meeting legal obligations. Some records may be retained after account closure where required for legal, billing, tax, security, audit, dispute, backup, booking, import, export, or compliance reasons.

13. Safeguards

Cendaro uses reasonable administrative, technical, and organizational safeguards designed to protect personal information against unauthorized access, use, disclosure, alteration, or loss. No system can be guaranteed completely secure. Users are responsible for maintaining the confidentiality of their login credentials and for assigning appropriate workspace roles.

14. Privacy incidents

If Cendaro identifies a privacy or security incident involving personal information, Cendaro will assess the incident and take steps required by applicable law. This may include notifying affected workspace owners, affected individuals, regulators, or service providers where legally required or operationally appropriate.

15. Your rights and choices

Depending on your location and relationship with Cendaro, you may have rights to request access to, correction of, deletion review of, or information about personal information. Some requests may need to be directed to the workspace owner that controls the information. Cendaro may need to verify identity and request scope before responding.

16. Privacy requests

You may submit a privacy request using Cendaro's privacy request form. Depending on the request, Cendaro may review customer profiles, consent evidence, booking links, public booking management records, import records, export artifacts, and related audit history. A request does not automatically delete all information immediately. Certain records may need to be preserved for legal, billing, security, audit, dispute, booking, quote, operational, or compliance reasons.

17. Marketing communications

If Cendaro sends marketing communications, recipients may opt out using the unsubscribe mechanism provided or by contacting Cendaro. Service-related communications, security notices, account messages, billing messages, and transactional communications may still be sent where necessary to provide the Service.

18. Children's privacy

Cendaro is designed for business use and is not directed to children. Cendaro does not knowingly collect personal information from children through the website.

19. Changes to this Policy

Cendaro may update this Privacy Policy from time to time. Updated versions will be posted on this page with a revised effective date. Where required, Cendaro may provide additional notice of material changes.

20. Contact

Privacy Officer. Cendaro. privacy@cendaro.ca. For privacy questions, access requests, correction requests, deletion reviews, or questions about how Cendaro handles personal information, contact Cendaro's privacy contact.

Contact

For privacy questions, access requests, correction requests, deletion reviews, or questions about how Cendaro handles personal information, contact Cendaro's privacy contact.

Privacy Officer

Cendaro

privacy@cendaro.ca

Privacy requests

Need help with your personal information?

Submit a request or check the status of an existing request using the secure public workflows.

Submit a privacy requestCheck request status