General data-handlingBank-grade discipline
Prepared for Your Business. Engineering posture, not legal advice — review with counsel/compliance.
Summary
This brief describes how the AI automation system built for Your Business handles customer & contact data. It is built and operated with the same least-privilege, data-egress, and guardrail discipline used to protect systems at a major US bank.
Data flow & minimization
customer & contact data stays inside your booking/EMR, ad-lead source, and messaging provider — systems you already own and control.
NullDrift reads only the fields it needs to qualify and book a lead, and writes back only lead status and booking. It does not export, copy, or train on your data.
Off-system logs are PHI-redacted (identifiers stripped) before they are written.
Least-privilege access
Each connected system uses a scoped, dedicated credential limited to the minimum required actions — never a shared admin key.
Secrets are stored in a secret manager, never in client-side code or the repository.
Every access is logged with an append-only audit trail.
AI guardrails (what the AI cannot do)
Act outside its defined task or give advice it shouldn't — escalates to a human.
Handle a complaint, dispute, or chargeback — escalates to a human.
Engage a minor, a crisis message, or a safety hazard — escalates immediately.
Contact anyone without consent — blocked (TCPA).
Until you enable auto-send per category, every outbound message waits for one-click human approval.
Consent & opt-out (TCPA/CAN-SPAM)
Outbound SMS/email only to leads who provided consent; consent is recorded per lead.
Every message carries a clear opt-out; opt-outs are honored promptly and suppressed going forward.
Incident response
A documented runbook covers detection, containment, and notification.
A global kill switch can disable all automation instantly; the system fails closed (no message sends) rather than open.
Subprocessors
Limited to what runs the service (your booking/EMR, ad-lead source, and messaging provider via their official APIs, plus hosting and message delivery). Each is bound by appropriate safeguards and may not use your data for their own purposes.