SHYR.APP PRIVACY POLICY
Last Updated: March 2026

1. INTRODUCTION
shyr.app (“we”, “our”, “us”) provides a messaging automation platform that enables hospitality businesses and other customers (“Clients”) to send transactional and promotional SMS communications to their subscribers (“End Users”). This Privacy Policy explains how we collect, use, disclose, and safeguard personal information in connection with our A2P 10DLC messaging services.

2. INFORMATION WE COLLECT
We collect the following categories of information:
– Client Account Information: Name, business details, email, phone number, billing information.
– End User Information (collected by us): Phone numbers, opt-in status, and message interaction data.
– Messaging Metadata: Delivery status, timestamps, carrier responses, and routing information.
– Platform Usage Data: Logs, IP addresses, device information, and analytics.

We do NOT collect or store message content beyond what is required for delivery, troubleshooting, or legal compliance.

3. HOW WE USE INFORMATION
We use collected information to:
– Provide and operate the shyr.app messaging platform.
– Deliver transactional and promotional SMS messages on behalf of Clients.
– Maintain A2P 10DLC compliance, including opt-in, opt-out, and consent tracking.
– Prevent fraud, abuse, and unauthorized use.
– Improve platform performance and reliability.
– Comply with legal, regulatory, and carrier requirements.

4. A2P 10DLC COMPLIANCE
We adhere to all carrier and CTIA requirements, including:
– Valid opt-in before sending any promotional SMS.
– Clear identification of the sending business.
– Required STOP, HELP, and opt-out handling.
– Maintaining audit logs of consent and message activity.

On behalf of Clients, we are responsible for obtaining proper consent from End Users before initiating messaging campaigns.

5. HOW WE SHARE INFORMATION
We may share information with:
– SMS carriers and aggregators for message delivery.
– Service providers assisting with hosting, analytics, and security.
– Legal authorities when required by law.
– Mobile information will NOT be shared with third parties/affiliates for marketing/promotional purposes.
– We do NOT sell personal information.

6. DATA RETENTION
We retain:
– Client account data for the duration of the account and as required by law.
– Messaging metadata for compliance and operational purposes.
– Opt-in and opt-out records as required by A2P 10DLC regulations.

7. SECURITY
We implement administrative, technical, and physical safeguards to protect personal information.

8. END USER RIGHTS
End Users may:
– Opt out of SMS messages at any time by replying STOP.
– Request information about how their data is used by contacting us.

We act as a service provider/processor for our Clients and directly manage SMS End User relationships.

9. CLIENT RESPONSIBILITIES provided by us.
On behalf of Clients we:
– Obtain valid consent before messaging.
– Provide accurate business identification in messages.
– Honor opt-out requests immediately.
– Use shyr.app only for lawful purposes.

10. INTERNATIONAL TRANSFERS
Data may be processed in the Canada and United States. By using the service, Clients and End Users consent to such transfers.

11. CHANGES TO THIS POLICY
We may update this Privacy Policy from time to time. The “Last Updated” date will reflect the most recent version.

12. CONTACT US
For questions about this Privacy Policy or our data practices, contact:
robchur@shyr.app