This Privacy Policy describes how Pacific Sol LLC, doing business as Kona Peak Solutions ("Provider," "we," "us," or "our"), collects, uses, shares, and protects information in connection with our operational consulting and automation Services and our website at konapeaksolutions.com. This policy applies to our Clients (business owners who subscribe to our Services), their customers who may interact with our automated systems, and visitors to our website.
Please also review our Terms of Service.
From Clients: Business contact information (name, email, phone, address), business operational details (service area, hours, pricing, staff information), payment and billing information (processed and stored by our PCI-compliant third-party payment processor), CRM and scheduling system access credentials, and all communications with Provider.
From Clients' Customers: Where our Services include automated customer-facing systems (e.g., AI phone agents, chatbots): voice recordings of calls handled by automated systems, caller phone numbers and call metadata (duration, time, date, geographic data), all information voluntarily provided during interactions (name, address, service request details, appointment preferences), and SMS/text messages sent and received through the system.
From Website Visitors and Prospects: Name, email address, phone number, and company information submitted through contact forms or consultation booking; IP address, browser type, device information, and browsing behavior on konapeaksolutions.com; and any information provided during phone or text message communications with us.
Automatically: Server and system logs, website usage data and browsing behavior, error and diagnostic data, and usage patterns and feature utilization metrics.
Provider uses collected information to: provide, configure, operate, maintain, and optimize the Services; process payments and manage billing; handle calls, book appointments, and manage leads on Client's behalf; send appointment confirmations, reminders, follow-ups, and review requests via phone call, SMS, or email; schedule and confirm consultations with prospective Clients; send our AI agent's contact information to prospects who request it; generate call analytics, performance reports, and business insights for Client; train, improve, and develop Provider's AI models, voice technology, and algorithms; create anonymized benchmarks; monitor for fraud, abuse, security threats, and Terms violations; comply with legal obligations and respond to lawful requests; communicate with Client about the Services, including updates, maintenance, and new features; and for any other purpose disclosed at the time of collection or with Client's consent.
Pacific Sol LLC dba Kona Peak Solutions may send SMS/text messages in connection with our Services. By providing your phone number through our website, contact form, during a phone inquiry, or by texting us, you consent to receive text messages from us. Messages may include:
Message frequency varies. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages.
To opt out: Reply STOP to any text message to unsubscribe from future messages. After opting out, you will receive a one-time confirmation message. You will no longer receive text messages from us unless you opt back in.
To get help: Reply HELP to any text message, or contact us at .
Supported carriers: Major US carriers are supported. Provider is not responsible for messages that are delayed or not delivered due to carrier issues.
We do not sell your phone number or personal information to third parties for marketing purposes. Your information will only be shared as described in Section 4 below.
By consenting to receive text messages, you confirm that you are the owner or authorized user of the mobile device and phone number provided, and that you are authorized to agree to receive text messages at this number. Communications may be initiated by automated systems, including AI-powered assistants.
Provider does not sell personal information. Provider may share information with: technology and infrastructure subcontractors who assist in delivering the Services (including cloud hosting, AI/ML platforms, telephony providers, SMS carriers, and payment processors), all of whom are bound by confidentiality obligations; Client's designated CRM, scheduling, or business systems as directed by Client through integrations; law enforcement, government authorities, or other third parties when required by law, subpoena, court order, or to protect the safety, rights, or property of Provider or others; professional advisors including attorneys, accountants, and auditors under duties of confidentiality; and a successor entity in connection with a merger, acquisition, bankruptcy, reorganization, or sale of all or substantially all assets, in which case Client data may be transferred as part of the transaction. Provider may also share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify Client or any individual with any third party for any purpose.
Provider implements commercially reasonable technical and organizational security measures including: TLS 1.2+ encryption for data in transit; AES-256 encryption for data at rest; role-based access controls and multi-factor authentication; regular security assessments and vulnerability scanning; employee access restricted to personnel with a legitimate business need; and incident response procedures. Notwithstanding the foregoing, no method of transmission or storage is 100% secure, and Provider cannot guarantee absolute security. Provider shall not be liable for any unauthorized access, data breach, or security incident except to the extent caused by Provider's gross negligence or willful misconduct.
Call recordings (where applicable) are retained for ninety (90) days from the date of recording unless a longer period is agreed upon. Client may request modified retention periods in writing, subject to Provider's approval. After the applicable retention period, recordings are permanently deleted. Business records, account information, and billing data are retained for the duration of the account and for up to five (5) years after termination for legal, regulatory, tax, and compliance purposes. Anonymized and aggregated data derived from Client's use of the Services is retained indefinitely and is not subject to deletion requests. Upon account termination, Client has thirty (30) days to request export of their data; after this window, Provider may delete all Client data without further notice.
Clients may access and export their account data during the active term of the Agreement. Data export requests after termination must be made within thirty (30) days per the Terms of Service. Provider will respond to verified data requests within thirty (30) business days. California residents have additional rights under the CCPA/CPRA, including the right to know, delete, and opt out of the sale of personal information. Provider does not sell personal information. Callers who interact with our automated systems may direct privacy inquiries to Client (as the business they contacted) or to Provider at the contact information below. Our Services are not directed to individuals under the age of 18, and we do not knowingly collect personal information from minors.
Our website may use cookies, local storage, and similar technologies to maintain session state, identify returning visitors, and improve functionality. Client is responsible for updating its own website privacy policy and cookie disclosures if Provider deploys any tracking technologies (e.g., chatbot widgets) on Client's website. Provider may collect analytics data from website interactions as described in Section 1.
The Services are operated from and data is stored in the United States. By using the Services, Client consents to the transfer, processing, and storage of data in the United States. Provider does not represent compliance with GDPR or other international privacy frameworks unless separately agreed in writing.
Provider may update this Privacy Policy at any time. Material changes will be communicated to Client via email at least thirty (30) days in advance. Continued use of the Services after the effective date of changes constitutes acceptance. If Client does not agree to changes, Client's sole remedy is to terminate the Agreement per the Terms of Service.
For questions about this Privacy Policy, or to exercise any rights described herein, contact:
← Return to Homepage