Privacy Policy

Name: QuiroAds (operator of CAi and QuiroHiro)

Contact: info@quirohiro.io

Website: quirohiro.io

QuiroAds is the entity responsible for processing the personal data collected through the CAi and QuiroHiro platforms, as well as the associated websites.

We process personal data for the following purposes:

• Provision of the CAi voice assistant service (call management, appointment booking, reminders)
• Waitlist management and onboarding process
• Integration with clinic management software (PracticeHub, Google Calendar, etc.)
• Billing and management of the contractual relationship
• Sending commercial communications related to our services (with prior consent)
• Continuous service improvement, including AI model training
• Compliance with legal obligations

• Performance of a contract: Processing is necessary for the provision of the contracted service (Art. 6.1.b GDPR).
• Consent: For sending commercial communications and participation in demos (Art. 6.1.a GDPR).
• Legitimate interest: For service improvement and fraud prevention (Art. 6.1.f GDPR).
• Legal obligation: For compliance with tax and accounting obligations (Art. 6.1.c GDPR).

Data may be shared with:

• Cloud infrastructure providers (servers in the EU)
• Voice and telecommunications service providers for call functionality
• Messaging providers (WhatsApp Business API, SMS)
• Clinic management software, where integration has been authorised by the user (PracticeHub, etc.)
• Competent authorities where required by applicable law

We do not sell or transfer personal data to third parties for commercial purposes.

Data is processed and stored on servers located within the European Union. If any service provider is located outside the European Economic Area, we ensure that appropriate safeguards exist in accordance with the GDPR (Standard Contractual Clauses, adequacy decisions, etc.).

• Active client data: for the duration of the contractual relationship.
• Billing data: for the legally required period (minimum 5 years).
• Call recordings: maximum 90 days, unless required by law or requested by the client.
• Waitlist data: until the user registers as a client or requests deletion.
• Demo data: maximum 30 days after the demo takes place.

Under the GDPR, you have the right to:

• Access: Know what personal data we process about you.
• Rectification: Correct inaccurate or incomplete data.
• Erasure: Request the deletion of your data ("right to be forgotten").
• Restriction: Request restriction of processing in certain circumstances.
• Portability: Receive your data in a structured, commonly used format.
• Objection: Object to the processing of your data in certain cases.

To exercise any of these rights, contact us at info@quirohiro.io. We will respond within a maximum of 30 days.

If you consider that your rights have not been duly addressed, you may file a complaint with your national data protection supervisory authority.

Our website uses technical cookies necessary for the functioning of the service and analytical cookies to understand how users interact with the site. We do not use advertising or third-party tracking cookies.

You can manage your cookie preferences at any time through your browser settings.

We implement appropriate technical and organisational measures to protect personal data, including:

• Encryption of data in transit and at rest
• Role-based access control
• Continuous security monitoring
• Regular security audits
• Incident response plans

For any queries relating to this privacy policy or the processing of your personal data, please contact us at:

info@quirohiro.io