← Back to home

Privacy Policy

Relay by 17576528 Canada Inc.

Last updated: March 3, 2026

1. Introduction

17576528 Canada Inc. ("Company," "we," "us") operates Relay, a lead response management platform. This Privacy Policy explains how we collect, use, store, and protect information when you use our Service.

2. Information We Collect

Account Information

When you register for the Service, we collect: name, email address, phone number, organization name, role within the organization, and billing information.

Lead and Contact Data

You and your team members upload or receive contact information through the Service, including: names, phone numbers, email addresses, vehicle or property interests, lead source information, and any notes or tags you add.

This data is provided by you and your lead sources. We process it on your behalf to deliver the Service.

Communication Records

The Service processes and stores records of SMS messages and voice calls made through the platform, including: message content, timestamps, sender and recipient information, call duration, and call status.

Usage Data

We automatically collect information about how you interact with the Service, including: login times, features used, pages viewed, device type, browser type, and IP address.

Cookies and Similar Technologies

Our web application uses essential cookies required for authentication and session management. We do not use advertising or third-party tracking cookies.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Process and route leads to appropriate team members
  • Send and receive SMS messages and voice calls on your behalf
  • Generate analytics and performance reports for your team
  • Process payments and manage billing
  • Send service-related notifications (system updates, security alerts, billing notices)
  • Provide customer support
  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal obligations

We do not use your lead or contact data for our own marketing purposes. We do not sell your data to third parties.

4. How We Share Your Information

We share information only in the following circumstances:

Service Providers

We use third-party services to operate the platform:

  • Twilio: Provides SMS messaging and voice call infrastructure. Twilio processes phone numbers, message content, and call data as needed to deliver communications. Twilio's privacy policy applies to their processing of this data.
  • Supabase: Provides database hosting and real-time infrastructure. Data is stored on Supabase's cloud infrastructure.
  • Vercel: Hosts our web application.
  • Stripe: Processes subscription payments and wallet transactions. Stripe receives billing information necessary to process payments.

Within Your Organization

Lead data, conversation records, and performance metrics are visible to other members of your organization based on their assigned role and permissions. Managers and owners have broader visibility than sales representatives.

Legal Requirements

We may disclose information if required by law, regulation, legal process, or governmental request, or to protect the rights, safety, or property of our users, the public, or 17576528 Canada Inc..

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

5. Data Storage and Security

Your data is stored on servers located in North America, hosted by our infrastructure providers (Supabase and Vercel). We implement industry-standard security measures including:

  • Encryption of data in transit (TLS/SSL)
  • Encryption of data at rest
  • Role-based access controls
  • Regular security assessments
  • Isolated tenant data (your data is separated from other organizations)

Phone number privacy controls are built into the Service. Sales representatives see redacted phone numbers by default, with full numbers accessible only to managers and owners based on your organization's configuration.

No method of transmission or storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security.

6. Data Retention

We retain your data for as long as your account is active and as needed to provide the Service. Communication records (SMS messages and call logs) are retained for the duration of your subscription.

Upon account termination:

  • You may request a data export within 30 days
  • After 30 days, your data will be permanently deleted from our active systems
  • Backup copies may persist for up to 90 days before being purged
  • We may retain anonymized, aggregated data for analytics purposes

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Request deletion of your personal information
  • Export your data in a portable format
  • Withdraw consent for specific processing activities
  • Object to processing of your personal information

To exercise any of these rights, contact us at privacy@userelay.ca. We will respond within 30 days.

PIPEDA Compliance

For Canadian users, we comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy legislation, including British Columbia's Personal Information Protection Act (PIPA). You may file a complaint with the Office of the Privacy Commissioner of Canada if you believe your privacy rights have been violated.

8. SMS and Voice Communication Privacy

Messages sent and received through the Service are stored as part of your conversation records. We do not monitor the content of your messages for advertising or profiling purposes.

Opt-out requests (e.g., "STOP" messages) are processed automatically and the contact's opt-out status is recorded to prevent future communications. You must not override or circumvent opt-out preferences.

Voice calls placed through the Service are routed through Twilio's network. If call recording is enabled by your organization, recordings are stored securely and accessible only to authorized members of your organization.

9. AI-Powered Features

Where AI-powered features are available (such as automated lead reactivation campaigns), the AI processes lead data and conversation history to generate responses and qualify interest. AI-generated messages are sent on behalf of your organization and are subject to the same compliance and consent requirements as manually sent messages.

We do not use your lead data or conversation content to train AI models. AI processing occurs in real-time and is limited to delivering the requested functionality.

10. Children's Privacy

The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or through the Service at least 30 days before taking effect. The "Last updated" date at the top of this page indicates when the policy was last revised.

12. Contact Us

For questions or concerns about this Privacy Policy or our data practices:

17576528 Canada Inc.

Email: privacy@userelay.ca