← sotto.us

Privacy Policy

Last updated: March 22, 2026

1. What We Collect

When you use sotto, we collect:

• Account data: name, phone number, email address, Telegram ID
• Conversations: messages you send to sotto and sotto's replies
• Memories: preferences, relationships, and facts sotto learns from your conversations
• Calendar data: events and availability from your connected Google Calendar
• Email data: emails accessed through your connected Gmail account
• Contacts: names and contact information you provide for coordination
• Voice data: voice messages you send, which are transcribed to text
• Photos: images you send for sotto to analyze
• Location: city-level location if you choose to share it

2. How We Use Your Data

We use your data to:

• Provide and personalize the sotto AI agent service
• Remember your preferences and relationships across conversations
• Coordinate with other users' sotto agents on your behalf
• Send you proactive reminders and notifications
• Make phone calls on your behalf when requested
• Improve the service

3. Agent-to-Agent Data Sharing

sotto's core feature is agent-to-agent coordination. When your sotto coordinates with another person's sotto, limited data is shared between agents:

• Your name and general availability
• Relevant preferences (e.g., dietary preferences for restaurant coordination)
• Calendar availability for scheduling

Your full conversation history, emails, and private memories are never shared with other users' agents. You can control what data your agent shares through your trust settings.

4. Third-Party Services

sotto uses the following third-party services to operate:

• OpenRouter / Anthropic: AI language model for conversations
• Google: Calendar and Gmail integration
• Telegram: Messaging platform
• Twilio: SMS messaging
• Bland.ai: AI phone calls
• OpenAI: Voice transcription (Whisper) and text-to-speech
• AWS: Server hosting in the United States

Each service processes data according to their own privacy policies. We share only the minimum data necessary for each service to function.

5. SMS / Text Messaging

If you interact with sotto via SMS:

• Message frequency varies based on your usage
• Message and data rates may apply
• Reply STOP to opt out of SMS messages at any time
• Reply HELP for assistance
• No mobile information will be shared with third parties or affiliates for marketing or promotional purposes.

6. Data Retention

We retain your data for as long as your account is active. You may request deletion of your data at any time by contacting us. Upon deletion request, we will remove your personal data within 30 days.

7. Data Security

We protect your data using encryption in transit (HTTPS/TLS) and restrict access to authorized personnel only. Our servers are hosted on AWS in the United States.

8. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Opt out of SMS communications (reply STOP)
• Opt out of data sharing for agent-to-agent coordination

California residents have additional rights under the CCPA/CPRA, including the right to know what data is collected, the right to delete, and the right to opt out of the sale or sharing of personal information. We do not sell your personal information.

9. Children's Privacy

sotto is not intended for users under 13 years of age. We do not knowingly collect data from children under 13.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes through the service.

11. Contact

Questions about this policy? Contact us at sotto@sotto.us