Privacy policies

Last updated: April 23, 2026 | Next scheduled review: April 2027

1. Who We Are and Who This Policy Applies To

VIRSI is an AI-powered appointment management platform developed and operated by Operations Optimization Corp., a company incorporated under the laws of the state of Florida, United States.

Address: 941 West Morse Boulevard, Suite 100, Winter Park, Florida 32789, USA
Contact email: [email protected]
Website: www.virsi.ai

This Policy describes how we collect, use, and protect the information of:

VIRSI’s direct clients: businesses, professionals, and their teams who subscribe to the platform.
End users: individuals who interact with VIRSI-powered businesses through WhatsApp.
Website visitors: people who browse www.virsi.ai.

This Policy does not apply to third-party websites or services linked from our pages.

2. Information We Collect

2.1 Information You Provide Directly

When you sign up for VIRSI or create an account:

Name and surname of the account holder or business representative
Business name
Email address
Phone number (for WhatsApp line setup)
Billing information: payments are processed by Stripe. We store the payment authorization reference (Stripe customer ID and payment method ID) but never your raw card number, CVV, or full banking details.

2.2 Information Generated Through Use of the Service

During the normal operation of VIRSI, the following data is generated and processed:

WhatsApp conversations: messages exchanged between the business’s end clients and the VIRSI assistant, used to detect appointment requests, cancellations, and inquiries.
Appointment data: date, time, service, assigned professional, and appointment status.
End-client contact data: name and WhatsApp phone number of individuals who interact with the assistant.
Google Calendar events: when a business connects their calendar, we access only the primary calendar to read availability and write appointments.

2.3 Technical Website Information

Our servers automatically log standard information when you visit www.virsi.ai:

IP address
Browser type and version
Internet Service Provider (ISP)
Pages visited and time spent
Date and time of access

This information is used solely for performance analysis and site security. It is not used to identify you individually.

3. How We Use Your Information

We use the information we collect for the following purposes:

Providing the automated appointment scheduling service (WhatsApp conversations, appointment data, Google Calendar)
Managing your account and business relationship
Sending service notifications (confirmations, reminders)
Improving and debugging the platform
Detecting and preventing fraud or abuse
Complying with legal obligations

We do not sell your personal information to third parties. We do not use WhatsApp conversation data to train AI models without prior authorization from the subscribing business.

4. Artificial Intelligence and Automated Processing

VIRSI uses conversational artificial intelligence models to analyze WhatsApp messages and identify appointment requests, cancellations, and inquiries. This process is automated: no VIRSI employee reads your clients’ conversations during the normal operation of the service.

The AI interprets the natural language of each message and performs actions on the business’s calendar (schedule, confirm, cancel) based on the configuration set by the subscribing business.

If you wish to have an automated action reviewed or corrected, please contact the service provider directly or reach us at [email protected].

5. Third-Party Integrations

5.1 WhatsApp (Meta Platforms, Inc.)

VIRSI operates through the Official WhatsApp Business API provided by Meta Platforms, Inc. Messages processed by VIRSI are also subject to the WhatsApp Business Terms of Service. VIRSI does not store the full conversation history beyond the period needed for appointment management, unless specifically configured by the business.

5.2 Google (Integration)

With the business’s authorization via OAuth 2.0, VIRSI accesses the Google permissions requested by the application during the integration process. These permissions may include access to Google services necessary for the operation of the Services, such as reading availability and writing appointments in Google Calendar.

Data obtained through the Google integration is deleted from our servers within 30 days of disconnecting the integration. Our use of Google data complies with the Google API Services User Data Policy, including the Limited Use requirements.

5.3 Google Analytics

We use Google Analytics to understand how visitors navigate our site. Google Analytics may place cookies in your browser. You can opt out by installing the Google Analytics opt-out browser add-on.

5.4 Stripe (Payment Processor)

Payments are processed through Stripe, Inc., a PCI-DSS certified payment processor. Stripe handles the capture and storage of card data directly; Operations Optimization Corp. only receives and stores the Stripe customer ID and the payment method reference (tokens), which allow us to manage recurring charges and billing without VIRSI ever having access to your card number, CVV, or full banking details.

Stripe’s use of your information is governed by its own Privacy Policy.

6. Cookies

We use cookies for site functionality and usage analysis. You may configure your browser to reject cookies, though some site features may be affected. The cookies we use include:

Session cookies: required for the site to function correctly. Deleted when you close the browser.
Analytics cookies: Google Analytics — help us understand traffic and improve the site.
Preference cookies: remember settings such as selected language.

7. Children’s Privacy (COPPA)

VIRSI is not directed to children under 13 years of age, and we do not knowingly collect personal information from children under 13, in compliance with the Children’s Online Privacy Protection Act (COPPA).

If you are a parent or guardian and believe a child has provided us with personal information, please contact us at [email protected] and we will promptly delete such information.

8. Information Security

We implement reasonable technical and administrative measures to protect the information we process:

Data encryption in transit (TLS)
Role-based internal data access controls
Regular backups
Administrative access controls

In the event of a security breach affecting your personal information, we will notify affected parties in accordance with the Florida Information Protection Act (FIPA), within no more than 30 days of detecting the incident.

No security system is infallible. If you detect any vulnerability or incident, please contact us immediately at [email protected].

9. Your Choices About Your Information

While U.S. law does not impose a universal catalog of data rights, we offer the following options to our users and clients:

Access: you may request a copy of the information we hold about your account by writing to [email protected].
Correction: if any account data is incorrect, you may update it from your profile or contact us.
Deletion: you may request deletion of your account and associated data. We will delete your information within a reasonable time, unless we are required to retain it by law or to defend against claims.
Marketing opt-out: you may unsubscribe from our commercial emails at any time using the unsubscribe link in each email (CAN-SPAM compliance).

For any request: [email protected] | Response time: up to 30 business days.

10. Data Retention

We retain information for as long as necessary to provide the service and meet our legal obligations:

Active account data: for as long as the account is active and for a reasonable period after cancellation to resolve disputes.
Google Calendar data: deleted within 30 days of disconnecting the integration.
Billing records: for the period required by applicable tax law.
Technical site data: no more than 12 months.

11. Data Transfers

Operations Optimization Corp. operates from the United States. If you are located in another country, your data will be transferred to and processed in the U.S. By using our service, you consent to this transfer. We take reasonable measures to protect your information during transfer.

12. Changes to This Policy

We may update this Policy periodically. When we do, we will update the “Last updated” date at the top of this document. If the changes are material, we will notify you by email or through a prominent notice on the site. Your continued use of the service after notification constitutes your acceptance of the changes.

13. Contact Us

Operations Optimization Corp. — VIRSI
941 West Morse Boulevard, Suite 100
Winter Park, Florida 32789, USA

📧 [email protected]
📞 +593 99 062 1189
🌐 www.virsi.ai