Privacy Policy

Fat Tailed Solutions ("FTS", "we", "us") is the controller for APS. This policy applies to APS and the websites and services that link to it.

We collect personal information to provide and secure the APS service. The categories below describe what we collect and why we collect it.

Retention criteria: account and access records are kept for the life of the account and then for a limited period to meet legal and audit obligations; call metadata, transcripts, and summaries are kept per your tenant configuration; billing records are retained as required by law. Security logs are retained to investigate incidents and enforce safeguards.

We do not sell or share personal information as defined by the California Consumer Privacy Act (CCPA/CPRA).

• Provide the APS service, onboarding, and customer support.
• Detect fraud, enforce security controls, and investigate incidents.
• Improve performance and reliability, including quality review.
• Comply with legal obligations and enforce our terms.

• Contract: to provide APS and deliver requested services.
• Legitimate interests: security monitoring, fraud prevention, and service improvement.
• Consent: for optional communications where required by law.
• Legal obligations: compliance with applicable laws and regulatory requests.

We share information with service providers who help us operate APS (cloud hosting, communications, payment processing, and email delivery). These providers are limited to performing services on our behalf and are required to protect the data.

We may also share information to comply with law, enforce our terms, or protect the rights and safety of our customers and the public.

APS is operated from the United States. If personal data is transferred from the EEA/UK, we rely on appropriate transfer mechanisms (such as standard contractual clauses) and apply safeguards consistent with applicable law.

We use essential cookies to keep you signed in, protect against CSRF, and secure sessions. We do not use third-party advertising cookies.

Global Privacy Control (GPC): because we do not sell or share personal information, GPC signals do not change how APS operates, but we honor the intent of GPC by avoiding cross-site tracking.

We retain personal information only as long as necessary to provide the service, meet legal requirements, and resolve disputes. Retention periods vary by data type and tenant configuration. You can request deletion or export of data subject to contractual and legal constraints.

We use administrative, technical, and physical safeguards to protect data. No security system is perfect; if a breach occurs, we will notify affected customers as required by law and contract.

• Right to access, correct, or delete personal data.
• Right to restrict or object to processing.
• Right to data portability where applicable.
• Right to withdraw consent when processing is based on consent.
• Right to lodge a complaint with a supervisory authority.

• Right to know what personal information we collect and how we use it.
• Right to access, delete, or correct certain personal information.
• Right to opt out of sale or sharing (we do not sell or share).
• Right to limit use of sensitive information (we use it only to provide the service).

To exercise these rights, contact us at support@fattailed.ai. We will verify your request and respond as required by law.

APS uses automation to route calls, generate summaries, and surface operational signals. These tools are designed to assist human operators. If a decision has a significant impact, you may request human review.

APS is not intended for children under 16 and we do not knowingly collect their personal information.

We may update this policy as the service changes. We will update the "Last updated" date above.

Questions about this policy? Email support@fattailed.ai.