Leilani Documentation Open app
Reference Terms of Service

Terms of Service

terms-of-service.md

Feeney Technologies, LLC
Effective Date: March 10, 2026

1. Agreement to Terms

These Terms of Service ("Terms") govern access to and use of Leilani (the "Service"), operated by Feeney Technologies, LLC ("Company," "we," "us," or "our").

By creating an account or using the Service, you ("Customer," "you") agree to these Terms.

If you are using the Service on behalf of an organization, you represent that you have authority to bind that organization.

2. The Service

Leilani is a voice automation and AI-powered communications platform that processes live calls, generates AI responses, produces transcripts and summaries, and delivers outputs to customers.

3. Account Registration & Security

You agree to:

  • Provide accurate account information
  • Maintain confidentiality of credentials
  • Promptly notify us of unauthorized access

You are responsible for all activity under your account.

4. Data Processing & Privacy

Our collection and processing of data is governed by our Privacy Policy.

Where Customer data is subject to applicable data protection laws (including GDPR or UK GDPR), the Data Processing Addendum attached as Appendix A forms part of these Terms and is incorporated by reference.

Key service characteristics:

  • Live call audio is processed in real time and is not recorded or retained by the Company
  • Transcripts are delivered to Customer and not retained
  • SIP metadata, IP addresses, and authentication logs are retained temporarily for security and operational purposes
  • Customers may delete accounts at any time, which removes associated stored data

5. Customer Responsibilities

Customer is solely responsible for:

  • Compliance with applicable telecommunications, privacy, and consent laws
  • Providing legally required disclosures to end users
  • Lawful collection and submission of data to the Service
  • Content of communications processed through the Service
  • Compliance with data protection and telecommunications regulations

Company acts as a processor of communications and does not control Customer content.

6. Acceptable Use

Customer may not use the Service to:

  • Violate any applicable law or regulation
  • Conduct unlawful robocalls or spam communications
  • Harass, defraud, or mislead individuals
  • Upload unlawful or infringing content
  • Attempt unauthorized access or disruption
  • Process Protected Health Information (PHI) without a signed Business Associate Agreement

Company may suspend or terminate accounts for violations.

7. AI Processing

The Service uses third-party AI models to process voice and text data for real-time communication and output generation.

AI providers act solely to deliver the Service under contractual confidentiality and security obligations.

8. Subprocessors

Company uses subprocessors including:

  • OpenAI – AI processing
  • Hetzner – infrastructure hosting (United States)
  • SendGrid – email delivery
  • Stripe – payment processing (independent controller)
  • Umami (self-hosted) – analytics

Subprocessors are contractually required to implement appropriate safeguards.

9. Security & Logging

Company maintains reasonable safeguards including:

  • Encryption in transit
  • Role-based access controls
  • Infrastructure monitoring

Company logs SIP signaling data, IP addresses, authentication events, and related metadata for fraud prevention, troubleshooting, compliance, and service integrity.

10. Data Retention

  • Live call audio is processed in real time and is not recorded or retained by the Company
  • Transcripts are delivered and not stored
  • Security and authentication logs are retained temporarily for operational and compliance purposes
  • Account and RAG data are retained while accounts remain active
  • Upon account deletion, associated stored data is permanently removed within a commercially reasonable timeframe unless legally required otherwise

11. HIPAA & Regulated Data

The Service is not intended for processing Protected Health Information (PHI) unless a separate Business Associate Agreement (BAA) is executed.

Without a BAA, Customer agrees not to submit PHI to the Service.

12. Fees & Payments

Fees are as described at purchase or subscription.

Payments are processed by third-party providers. Company does not store full payment card data.

Failure to pay may result in suspension or termination.

13. Suspension & Termination

Company may suspend or terminate access if:

  • Terms are violated
  • Payment obligations are not met
  • Use creates security or legal risk

Customer may terminate by deleting their account.

14. Intellectual Property

Company retains all rights to the Service, software, and infrastructure.

Customer retains ownership of their data and content submitted to the Service.

15. Confidentiality

Each party agrees to protect confidential information disclosed during the relationship.

16. Disclaimer of Warranties

The Service is provided "as is" and "as available" without warranties of any kind.

Company does not guarantee uninterrupted or error-free operation.

17. Limitation of Liability

To the maximum extent permitted by law:

Company shall not be liable for indirect, incidental, special, or consequential damages.

Total liability shall not exceed amounts paid by Customer in the preceding twelve months.

18. Indemnification

Customer agrees to indemnify Company against claims arising from:

  • Customer’s use of the Service
  • Violation of laws
  • Content processed through the Service

19. Changes to Terms

Company may update these Terms from time to time. Continued use constitutes acceptance.

20. Governing Law

These Terms are governed by the laws of the State of New York, United States, without regard to conflict of law principles.

21. Contact Information

Feeney Technologies, LLC

Appendix A – Data Processing Addendum (DPA)

1. Roles of the Parties

Customer acts as Controller.
Feeney Technologies, LLC acts as Processor when processing Personal Data on behalf of Customer.

Processor may act as an independent Controller for limited account-level administrative data.

2. Subject Matter & Duration

Subject matter: Provision of the Service.

Duration: For the term of the Customer’s account unless legally required otherwise.

3. Nature & Purpose of Processing

Processor processes Personal Data to:

  • Facilitate live voice calls
  • Generate AI responses and outputs
  • Deliver transcripts to Customer
  • Store account configuration and RAG data
  • Maintain security, logging, and fraud prevention

Call audio is processed transiently and not retained.

4. Categories of Data Subjects

  • Customer users
  • Callers
  • Individuals whose data is submitted into RAG databases
  • Business contacts

5. Categories of Personal Data

  • Names (including business names)
  • Email addresses
  • Phone numbers
  • Account credentials (hashed)
  • SIP headers and signaling metadata
  • IP addresses
  • Authentication and access logs
  • Voice audio (transient)
  • AI-generated outputs
  • RAG-submitted content

6. Processor Obligations

Processor shall:

  • Process data only under Customer instructions
  • Maintain confidentiality
  • Implement appropriate safeguards
  • Notify Customer of confirmed Personal Data Breaches without undue delay
  • Assist with data subject rights where applicable

7. Subprocessors

Processor may engage subprocessors including OpenAI, Hetzner, SendGrid, Stripe, and analytics providers.

Processor remains responsible for their compliance.

8. International Transfers

Where required, Processor shall implement appropriate safeguards including Standard Contractual Clauses.

9. Data Retention & Deletion

  • Live call audio is processed in real time and is not recorded or retained by the Company
  • Transcripts are not stored
  • Logs are retained temporarily for operational purposes
  • Account and RAG data are deleted upon account termination within a commercially reasonable timeframe

10. Liability

Liability under this DPA is subject to the limitations in the main Terms.