← Back to Dashboard

Privacy Policy

Effective Date: April 1, 2026 | Last Updated: April 1, 2026

1. Introduction

EON Platform ("EON," "we," "us," or "our") operates a business-to-business ("B2B") software-as-a-service ("SaaS") platform that enables businesses to create and send SMS, MMS, and email marketing communications to their customers. This Privacy Policy describes how we collect, use, disclose, and otherwise process personal information in connection with our website, platform, and related services (collectively, the "Services").

This Privacy Policy applies to information we collect from our business customers ("Customers") who use the Services. It does not apply to information that our Customers collect from their own end users or recipients of marketing messages sent through our platform. Our Customers are responsible for maintaining their own privacy policies governing their collection and use of their end users' data.

By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our practices, please do not use our Services.

2. Information We Collect

2.1 Account Information

When you register for and use our Services, we collect:

  • Name, email address, and business name
  • Login credentials (passwords are stored in hashed form)
  • Business contact information, including phone number and mailing address
  • Billing and payment information (processed by our third-party payment processor)
  • Account preferences and settings

2.2 Contact List Data

When you upload contact lists or create contacts through our platform, we process:

  • Recipient names, phone numbers, and email addresses
  • Custom fields and segmentation data you provide (e.g., service history, property type, equipment details)
  • Opt-in and consent status records
  • Message delivery and engagement data (delivery status, opt-out requests)

You are the data controller of the contact list data you upload. We process this data on your behalf as a data processor/service provider solely to provide the Services.

2.3 AI Processing Data

When you use our AI-powered message generation features, we process:

  • Contact information and custom field data you select for message personalization
  • Campaign parameters you define (tone, context, promotional offers, message type)
  • AI-generated message drafts and your edits to those drafts
  • Prompts and instructions sent to our AI provider (Anthropic) for message generation

2.4 Usage and Technical Data

We automatically collect certain information when you access or use our Services:

  • Log data (IP address, browser type and version, operating system, referring URLs)
  • Device information (device type, screen resolution, unique device identifiers)
  • Usage data (pages viewed, features used, actions taken, timestamps, session duration)
  • Performance data (error logs, load times, service availability metrics)

2.5 Cookies and Similar Technologies

We use cookies, local storage, and similar technologies to maintain your session, remember your preferences, and analyze usage patterns. For complete details, please see our Cookie Policy.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing the Services: To operate, maintain, and deliver the features and functionality of our platform, including sending marketing messages on your behalf, generating AI-powered message content, and managing contact lists.
  • Account Management: To create and manage your account, authenticate your identity, and process transactions.
  • AI Message Generation: To transmit your campaign parameters and selected contact data to our AI provider (Anthropic's Claude API) for the purpose of generating personalized marketing message drafts.
  • Communication: To send you service-related notices, updates, security alerts, and administrative messages.
  • Improvement and Development: To analyze usage trends, diagnose technical issues, and improve the quality, safety, and performance of our Services.
  • Compliance and Safety: To comply with applicable laws and regulations, enforce our Terms of Service and Acceptable Use Policy, prevent fraud and abuse, and protect the rights and safety of our users and third parties.
  • Legal Obligations: To respond to legal process, cooperate with law enforcement, and exercise or defend legal claims.

4. How We Share Your Information

We do not sell your personal information. We share information in the following circumstances:

4.1 AI Service Provider (Anthropic)

When you use our AI message generation feature, selected contact data and campaign parameters are transmitted to Anthropic's Claude API to generate personalized message drafts. Under Anthropic's Commercial API terms, API inputs and outputs are retained for up to seven (7) days for abuse monitoring purposes and are not used for model training. We have entered into a data processing agreement with Anthropic to ensure appropriate safeguards for data transmitted through their API.

4.2 Message Delivery Partners

To deliver SMS, MMS, and email messages on your behalf, we share recipient contact information (phone numbers and/or email addresses) and message content with our carrier partners, messaging gateway providers, and email delivery services. These partners process this data solely to transmit your messages and are contractually bound to maintain confidentiality.

4.3 Service Providers

We engage third-party service providers who perform services on our behalf, including hosting and infrastructure, payment processing, analytics, and customer support. These providers are contractually obligated to use your information only as necessary to provide their services to us and to maintain appropriate security measures.

4.4 Legal and Compliance Disclosures

We may disclose your information if we believe in good faith that such disclosure is necessary to:

  • Comply with applicable law, regulation, legal process, or governmental request
  • Enforce our Terms of Service, Acceptable Use Policy, or other agreements
  • Detect, prevent, or address fraud, security, or technical issues
  • Protect the rights, property, or safety of EON Platform, our users, or the public

4.5 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or similar transaction, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information.

5. AI-Specific Disclosures

Our platform uses artificial intelligence provided by Anthropic (Claude API) to generate personalized marketing message drafts. The following disclosures apply to this feature:

  • Data Transmitted: When you initiate AI message generation, we transmit to Anthropic the contact data fields you have selected for personalization (which may include names, service history, and other custom fields), your campaign context and instructions, and your specified tone and style preferences.
  • Anthropic's Data Handling: Under Anthropic's Commercial API Terms of Service, data submitted through the API is retained for up to seven (7) days for safety and abuse monitoring and is then automatically deleted. Anthropic does not use API customer data for model training. For additional details, refer to Anthropic's privacy documentation at https://www.anthropic.com/privacy.
  • Human Review Required: All AI-generated messages are presented as drafts for your review and approval. You are solely responsible for reviewing, editing, and approving all AI-generated content before it is sent to any recipient.
  • No Guarantee of Accuracy: AI-generated content may contain errors, inaccuracies, or inappropriate suggestions. EON Platform does not guarantee the accuracy, completeness, or regulatory compliance of AI-generated content.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our Services. Specific retention periods are as follows:

  • Account Information: Retained for the duration of your account and for thirty (30) days following account closure, after which it is deleted or anonymized.
  • Contact List Data: Retained for the duration of your account. Upon account termination, contact data is deleted within thirty (30) days unless a longer retention period is required by law.
  • Message Content and Logs: Sent message records, including content and delivery status, are retained for three (3) years to support compliance obligations under the TCPA and applicable state laws, after which they are deleted.
  • AI Processing Data: AI-generated drafts are retained as part of your campaign records. Data transmitted to Anthropic is subject to Anthropic's seven (7) day retention policy.
  • Usage and Technical Data: Retained for up to twenty-four (24) months for analytics purposes, after which it is aggregated or deleted.
  • Consent Records: Records of opt-in consent and opt-out requests are retained for a minimum of five (5) years in accordance with regulatory guidance and litigation hold requirements.

We may retain certain information for longer periods as required by applicable law, regulation, or legal process, or to resolve disputes and enforce our agreements.

7. Data Security

We implement commercially reasonable administrative, technical, and physical safeguards designed to protect the personal information we process. These measures include, but are not limited to:

  • Encryption of data in transit using TLS 1.2 or higher
  • Encryption of sensitive data at rest
  • Secure password hashing using industry-standard algorithms
  • Role-based access controls and authentication requirements
  • Regular security assessments and vulnerability monitoring
  • Secure hosting infrastructure with access logging and monitoring

No method of transmission over the Internet or method of electronic storage is completely secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. In the event of a data breach that affects your personal information, we will notify you in accordance with applicable law.

8. Children's Privacy

Our Services are designed for use by businesses and are not directed to individuals under the age of eighteen (18). We do not knowingly collect personal information from children under the age of thirteen (13) as defined by the Children's Online Privacy Protection Act ("COPPA"), 15 U.S.C. §§ 6501-6506. If we become aware that we have collected personal information from a child under 13, we will take steps to promptly delete that information. If you believe that a child under 13 has provided personal information to us, please contact us at support@eonmessaging.com.

Additionally, our Customers are prohibited from uploading contact information for individuals known to be under the age of eighteen (18) and from sending marketing messages to minors through our platform.

9. Your Rights and Choices

9.1 Account Information

You may update, correct, or delete your account information at any time by logging into your account settings or by contacting us at support@eonmessaging.com. If you wish to close your account entirely, please contact us and we will process your request in accordance with our data retention policies.

9.2 Marketing Communications

You may opt out of receiving promotional emails from us by following the unsubscribe instructions in those emails. Even after opting out, you will continue to receive transactional and service-related communications necessary for the operation of your account.

9.3 Cookies

You may manage your cookie preferences through your browser settings. For more information, see our Cookie Policy.

10. California Privacy Rights

This section applies to California residents and supplements the information contained in this Privacy Policy. It is provided pursuant to the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 (collectively, "CCPA"), Cal. Civ. Code §§ 1798.100 et seq., and its implementing regulations.

10.1 Categories of Personal Information

In the preceding twelve (12) months, we have collected the following categories of personal information as defined under the CCPA:

CategoryExamplesCollected
A. IdentifiersName, email address, phone number, IP address, account nameYes
B. Personal information per Cal. Civ. Code § 1798.80(e)Name, address, telephone numberYes
D. Commercial informationRecords of services purchased, purchasing histories, subscription detailsYes
F. Internet or other electronic network activityBrowsing history, search history, interactions with our website and platformYes
G. Geolocation dataApproximate location derived from IP addressYes
K. Inferences drawn from other personal informationUsage patterns, feature preferencesYes

10.2 Your California Privacy Rights

As a California resident, you have the following rights under the CCPA:

  • Right to Know (Cal. Civ. Code § 1798.100): You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which we collected it, the business or commercial purposes for collecting or selling it, and the categories of third parties with whom we share it.
  • Right to Delete (Cal. Civ. Code § 1798.105): You have the right to request that we delete personal information we have collected from you, subject to certain exceptions permitted by law (e.g., compliance with legal obligations, completing transactions, security purposes).
  • Right to Correct (Cal. Civ. Code § 1798.106): You have the right to request that we correct inaccurate personal information that we maintain about you.
  • Right to Opt-Out of Sale or Sharing (Cal. Civ. Code § 1798.120): You have the right to opt out of the sale or sharing of your personal information. We do not sell personal information as defined under the CCPA. We do not share personal information for cross-context behavioral advertising purposes.
  • Right to Limit Use and Disclosure of Sensitive Personal Information (Cal. Civ. Code § 1798.121): To the extent we process sensitive personal information, you have the right to limit its use to that which is necessary to perform the Services.
  • Right to Non-Discrimination (Cal. Civ. Code § 1798.125): We will not discriminate against you for exercising any of your CCPA rights. We will not deny you goods or services, charge you different prices, provide a different quality of service, or suggest any of the foregoing as a consequence of your exercise of these rights.

10.3 Exercising Your Rights

To exercise any of your California privacy rights, you may submit a verifiable consumer request by emailing us at support@eonmessaging.com or by writing to us at EON Messaging, Inc.. You may also designate an authorized agent to make a request on your behalf by providing the agent with written, signed permission and verifying your identity with us directly.

We will respond to verifiable consumer requests within forty-five (45) calendar days of receipt. If we require additional time (up to an additional forty-five (45) days), we will inform you of the reason and the extension period in writing. We will deliver our response by mail or electronically, at your option.

10.4 Notice of Financial Incentive

We do not offer any financial incentives or price or service differences in exchange for the retention or sale of personal information.

10.5 California "Shine the Light" Law

Under California Civil Code § 1798.83, California residents who have provided personal information to a business with which they have established a business relationship may request information about whether the business has disclosed personal information to third parties for direct marketing purposes. We do not disclose personal information to third parties for their direct marketing purposes.

11. International Data Transfers

Our Services are hosted and operated in the United States. If you access our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where our servers are located and our databases are operated. The data protection laws of the United States may differ from those of your jurisdiction. By using our Services, you consent to the transfer of your information to the United States.

12. Third-Party Links

Our Services may contain links to third-party websites, products, or services that are not owned or controlled by EON Platform. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access through our platform.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. If we make material changes, we will notify you by posting the updated policy on our website with a new "Last Updated" date and, where required by law, by sending you an email notification. Your continued use of the Services following the posting of changes constitutes your acceptance of such changes. We encourage you to review this Privacy Policy periodically.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

EON Platform

EON Messaging, Inc.

Email: support@eonmessaging.com

If you are a California resident and wish to exercise your privacy rights under the CCPA, you may contact us using the information above or submit a request as described in Section 10.3.