Privacy Policy

Atma Technologies ("NeverSleep AI," "we," "us," or "our") operates the neversleepai.io website and the NeverSleep AI platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

1. Information We Collect

Information You Provide

When you fill out a form, request an audit, or sign up for our services, we may collect the following personal information:

• Full name
• Email address
• Phone number
• Dental practice name
• Practice address and website URL
• Billing and payment information (processed securely by our payment processor)

Information Collected Automatically

When you visit our website, we may automatically collect:

• IP address and approximate location
• Browser type and operating system
• Pages visited, time spent, and referring URLs
• Device identifiers

2. How We Use Your Information

We use the information we collect to:

• Provide and deliver our AI Employee services, including missed call audits and performance reports
• Communicate with you about your account, service updates, and support requests
• Send you marketing communications (only with your consent; you can opt out at any time)
• Improve our website, services, and user experience
• Comply with legal obligations

3. HIPAA Compliance

NeverSleep AI takes the privacy of protected health information (PHI) seriously. As a service provider to dental practices, we comply with the Health Insurance Portability and Accountability Act (HIPAA) where applicable.

• Business Associate Agreement (BAA): We execute a BAA with every dental practice client before accessing or processing any PHI. A signed BAA is available upon request.
• Encryption: All data is encrypted in transit (TLS 1.2+) and at rest (AES-256). PHI is stored in HIPAA-compliant infrastructure.
• Access Controls: Access to PHI is restricted to authorized personnel on a need-to-know basis, with audit logging enabled.
• Breach Notification: In the unlikely event of a data breach involving PHI, we will notify affected parties and the Department of Health and Human Services in accordance with HIPAA breach notification requirements.

4. Third-Party Services

We use the following third-party services that may collect or process your data:

• Google Analytics:Website traffic analysis and usage statistics. Google's privacy policy applies to data they collect.
• Google Calendar:Appointment scheduling for strategy calls. Google's privacy policy governs data entered through their scheduling interface.
• Payment Processors: We use industry-standard, PCI-compliant payment processors to handle billing. We do not store your full credit card number on our servers.
• Cloud Infrastructure: Our services are hosted on enterprise-grade, SOC 2 and HIPAA-compliant cloud infrastructure.

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

5. Cookie Policy

Our website uses cookies and similar tracking technologies to enhance your experience. These include:

• Essential Cookies: Required for basic website functionality such as page navigation and secure access.
• Analytics Cookies: Help us understand how visitors interact with our website so we can improve it (e.g., Google Analytics).
• Marketing Cookies: Used to deliver relevant advertisements and track campaign performance.

You can control cookies through your browser settings. Disabling certain cookies may affect website functionality.

6. Data Retention and Deletion Rights

We retain your personal information only for as long as necessary to fulfill the purposes described in this policy, comply with legal obligations, resolve disputes, and enforce our agreements.

You have the right to:

• Request access to the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your personal data
• Withdraw consent for marketing communications
• Request a portable copy of your data

To exercise any of these rights, contact us at hello@neversleepai.io. We will respond to all legitimate requests within 30 days.

7. Children's Privacy

Our services are intended for dental practice owners and administrators. We do not knowingly collect personal information from individuals under the age of 18. If you believe we have collected information from a minor, please contact us immediately.

8. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of our website or services after changes constitutes acceptance of the updated policy.

9. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: