Privacy Policy
Last updated: June 2, 2026
This Privacy Policy explains how Today's Vision Management Group LLC ("TodaysVision," "we," "us," or "our") collects, uses, discloses, and protects information in connection with the TodaysVision platform, website, mobile and desktop applications, and related services (collectively, the "Service"), available at todaysvision.ai.
TodaysVision is a software platform for real estate investors and acquisitions professionals. By accessing or using the Service, you agree to the practices described in this Policy. If you do not agree, do not use the Service.
Important note about your own contacts. TodaysVision is a tool that helps you, our customer, manage outreach to your own leads and contacts (such as property owners). When you use the Service to call, text, email, or otherwise contact those individuals, you are the party responsible for having a lawful basis and any required consent to contact them, and for complying with all applicable laws (including the Telephone Consumer Protection Act ("TCPA"), state telemarketing and recording laws, CAN-SPAM, and "Do Not Call" rules). Your obligations are described further in our Terms of Service. This Policy describes how we handle information; it does not relieve you of your own compliance responsibilities.
1. Who this Policy covers
This Policy uses two important terms:
- "Customers" (or "Users") — the account holders and their authorized users who subscribe to and log into the Service.
- "Lead Contacts" — the third-party individuals (such as property owners and their representatives) whose information Customers upload to, generate within, or manage through the Service.
How we treat information depends on which category it falls into. For most Lead Contact information, TodaysVision acts as a service provider / processor that handles the data on behalf of and at the direction of the Customer. The Customer is the business / controller of that information. For Customer account information and our own business operations, TodaysVision acts as the business / controller.
2. Information we collect
2.1 Information Customers provide directly
- Account and profile information — name, email address, phone number, business name, mailing address, and login credentials.
- Billing information — billing name, address, and payment details. Payment card numbers are collected and processed by our payment processor (Stripe) and are not stored on our servers.
- Content you submit — leads, contacts, notes, messages, templates, documents, letters of intent, and other content you create or upload.
- Communications with us — support requests, feedback, and correspondence.
2.2 Lead Contact information (handled on the Customer's behalf)
When Customers upload, import, or generate leads, the Service may store information about Lead Contacts, including: name; property and mailing address; phone number(s); email address(es); property characteristics, valuation, equity, and mortgage data; ownership and distress indicators; and outreach history, notes, and call/message records.
This information is provided by the Customer or sourced from third-party data providers the Customer chooses to use (such as DealMachine and DealSauce). TodaysVision does not independently determine which Lead Contacts are added; the Customer does.
2.3 Communications data (calls, text messages, and email)
The Service includes telephony and messaging features powered by third-party providers (Telnyx and Twilio for voice and SMS). When Customers use these features, we and our providers process:
- Phone numbers (caller and recipient), call times, call duration, and call status.
- SMS/MMS message content, timestamps, and delivery status.
- Email content, recipients, and delivery/engagement metadata for email features.
Call recording, transcription, and summarization. The Service can record telephone calls and then generate transcripts and AI-written summaries of those calls. Call recordings are processed by our telephony provider (Telnyx); transcription is performed using a speech-to-text service (OpenAI Whisper); and summaries are generated using an AI model (Anthropic's Claude). Call recording and the use of recorded content are subject to important legal requirements described in Section 9 (Call Recording and Communications) and in our Terms of Service.
2.4 Location information
The Service collects and uses location data. Specifically, the Service includes a "Driving for Dollars" / drive-and-capture feature that, when you enable it, uses your device's geolocation (via your browser or device's location services) to:
- Show your real-time location on a map while you drive ("live position" tracking via your device's GPS).
- Let you drop a pin at your current location (or tap a location on the map) to capture a property as a new lead, which records the latitude and longitude of that location.
- Reverse-geocode dropped coordinates into a street address (using the OpenStreetMap/Nominatim geocoding service).
Live location tracking only occurs while you have the drive feature active, and stops when you exit it. The coordinates of properties you capture are stored as part of the associated lead record. You can disable location access at any time through your device or browser settings; doing so will limit or disable the drive-and-capture feature.
2.5 Photos and uploaded files
When you capture a property photo or upload files (for example, a property photo attached to a lead, or documents), we store those files in secured storage on your behalf. Photos captured through the drive feature are stored in a private storage bucket associated with your account.
2.6 Information collected automatically
When you use the Service, we and our infrastructure providers automatically collect:
- Device and usage data — IP address, browser type, device identifiers, operating system, pages and features accessed, and timestamps.
- Cookies and similar technologies — used for authentication, session management, security, and to operate the Service. See Section 11 (Cookies).
- Log and diagnostic data — error logs and performance data used to maintain and improve the Service.
2.7 Sensitive personal information
We do not intentionally collect government identifiers (such as Social Security numbers), financial account login credentials, precise health information, or similar categories of sensitive personal information for our own purposes. Precise geolocation (collected through the drive feature, as described above) may be considered "sensitive personal information" under California law; we use it only to provide the drive-and-capture feature you have enabled and do not use it to infer characteristics about you. Please do not upload sensitive categories of data about Lead Contacts unless you have a lawful basis to do so.
3. How we use information
We use information to:
- Provide and operate the Service — authenticate users, store and display your leads and content, run the telephony, messaging, mapping, and AI features, and process your transactions.
- Power AI features (Iris and related tools). The Service includes an AI assistant ("Iris") and AI-driven features that process your data — including lead information, call transcripts, messages, and your prompts — to generate summaries, drafts, scores, suggestions, and other outputs, and to take actions you direct. See Section 4 (Automated Processing and AI).
- Score and prioritize leads. The Service computes lead scores and similar signals from the data associated with a lead (such as equity, ownership, and engagement attributes) to help you prioritize outreach.
- Process payments and manage subscriptions — via Stripe.
- Provide customer support and respond to your requests.
- Maintain security and prevent fraud or abuse, and enforce our Terms.
- Improve and develop the Service — analyze usage, diagnose problems, and build new features. Where we use data to improve the Service, we use it in a manner consistent with our role as a service provider and applicable law.
- Comply with legal obligations and respond to lawful requests.
We do not sell your personal information, and we do not use AI subprocessors' platforms to train their models on your data except as permitted by our agreements with them. See Section 8 (Third Parties) regarding our processors.
4. Automated Processing and AI (ADMT Disclosure)
The Service relies on automated processing, including artificial intelligence and machine-learning models, to deliver core functionality. This includes:
- The Iris AI assistant, which processes your inputs and your account data to answer questions, draft communications, summarize information, and perform actions you request.
- Call transcription and summarization, which convert recorded calls to text and generate summaries.
- Lead scoring and prioritization, which produce numeric scores and tiers from lead attributes.
- Drafting and suggestion tools for messages, letters of intent, and outreach sequences.
These features are designed to assist you, the Customer. They do not make legally or similarly significant decisions about Lead Contacts on their own, and a human (you) reviews and directs outreach and offers. Automated outputs can contain errors; you are responsible for reviewing AI-generated content before relying on or sending it.
California residents: To the extent the Service uses automated decision-making technology ("ADMT") as defined under the California Privacy Rights Act and CPPA regulations, you may have rights to obtain information about, and in certain cases opt out of, such processing. See Section 7 (Your Privacy Rights) and contact us using the details in Section 14.
5. How information is shared and disclosed
We share information only as described here:
- With service providers / subprocessors who perform functions on our behalf (hosting, telephony, AI, payments, email, analytics, and similar) — see Section 8. These providers are bound by contract to use the information only to provide services to us.
- Between a Customer and that Customer's authorized users within the same account.
- At your direction — for example, when you send a message, email, or letter to a Lead Contact, or share a disposition package via a link you generate.
- For legal reasons — to comply with law, regulation, legal process, or enforceable governmental request; to enforce our Terms; or to protect the rights, property, or safety of TodaysVision, our Customers, or others.
- In a business transfer — in connection with a merger, acquisition, financing, or sale of assets, subject to this Policy.
- With your consent — for any other purpose disclosed to you.
We are a multi-tenant platform. Each Customer's account data is logically separated, and access controls (including row-level security) are used so that one Customer cannot access another Customer's data. Our personnel may access account data only as needed to operate, support, secure, and maintain the Service.
6. Data retention
We retain personal information for as long as needed to provide the Service and for the purposes described in this Policy, then delete or de-identify it, subject to the following general criteria:
| Category | Retention approach |
|---|---|
| Customer account and profile data | For the life of the account, then deleted or de-identified within a reasonable period after account closure (target: within 90 days), unless a longer period is required by law. |
| Lead and contact data, notes, and content | For as long as the Customer maintains it in the account, or until the Customer deletes it or closes the account. Customers control deletion of their own content. |
| Call recordings, transcripts, and summaries | Retained as long as associated with an active account and the Customer has not deleted them; Customers may delete individual records. |
| SMS/call/email logs | Retained for operational, billing, and compliance purposes for the life of the account and a reasonable period thereafter. |
| Location/coordinate data on captured leads | Retained as part of the lead record until the Customer deletes the lead or closes the account. |
| Billing and transaction records | Retained as required for tax, accounting, and legal compliance (typically several years). |
| Server and security logs | Retained for a limited period for security and diagnostic purposes. |
Specific retention periods may vary based on legal requirements, dispute resolution needs, and legitimate business purposes.
7. Your Privacy Rights
7.1 California residents (CCPA/CPRA)
If you are a California resident, you have the right to:
- Know / Access — request the categories and specific pieces of personal information we have collected, the sources, the purposes, and the categories of third parties to whom it is disclosed.
- Delete — request deletion of personal information we have collected, subject to exceptions.
- Correct — request correction of inaccurate personal information.
- Opt out of sale or sharing — we do not sell your personal information or share it for cross-context behavioral advertising. If this ever changes, we will provide a "Do Not Sell or Share My Personal Information" link and honor opt-out preference signals (including the Global Privacy Control).
- Limit use of sensitive personal information — to the extent we process sensitive personal information (such as precise geolocation from the drive feature) for purposes beyond providing the Service, you may direct us to limit such use.
- Non-discrimination — we will not discriminate against you for exercising your rights.
You may also have rights regarding automated decision-making technology as described in Section 4.
Lead Contacts: If you are a Lead Contact and wish to exercise privacy rights regarding information a Customer maintains about you in the Service, please contact the Customer (the business that contacted you) directly, as they control that information. We will assist our Customers in responding to such requests as required by law. If you contact us directly, we may refer your request to the relevant Customer.
7.2 How to exercise your rights
To exercise any right, contact us using the details in Section 14. We will verify your request (which may require confirming information that matches our records) and respond within the timeframes required by applicable law. You may use an authorized agent to submit a request on your behalf.
7.3 Other jurisdictions
Residents of other states or countries may have similar rights under applicable law. We will honor rights to which you are legally entitled; contact us to make a request.
8. Third-party service providers and subprocessors
We use the following categories of third parties to operate the Service. Each receives only the information needed to perform its function:
| Provider | Purpose |
|---|---|
| Supabase | Database, authentication, and file storage |
| Vercel | Application hosting and delivery |
| Telnyx | Voice calling, SMS/MMS, and call recording |
| Twilio | Voice and SMS (telephony provider) |
| OpenAI (Whisper) | Speech-to-text transcription of recorded calls |
| Anthropic (Claude) | AI assistant, summarization, drafting, and related AI features |
| Stripe | Payment processing and subscription billing |
| DealMachine / DealSauce | Third-party real estate lead and property data, where the Customer chooses to import from these sources |
| OpenStreetMap / Nominatim | Reverse-geocoding coordinates to addresses |
These providers may process data in the United States and, in some cases, elsewhere. We rely on contractual protections to safeguard information shared with them. This list may be updated as our providers change.
9. Call Recording and Communications
Recording laws vary by state and country. Some jurisdictions require that all parties to a call consent to being recorded ("two-party" or "all-party" consent states, such as California); others require only one party. Because the Service can record calls, you, the Customer, are responsible for:
- Determining whether recording is permitted for a given call and what consent is required;
- Providing any legally required notice or disclosure to call participants (for example, an announcement that the call is being recorded); and
- Obtaining any required consent before recording.
Similarly, you are responsible for compliance with the TCPA and related laws when using calling and texting features, including obtaining any required prior express written consent for marketing messages, honoring opt-out requests (such as STOP/UNSUBSCRIBE) promptly, respecting calling/texting time-of-day restrictions ("quiet hours"), maintaining suppression lists, and screening for reassigned and Do-Not-Call numbers. These responsibilities are described further in our Terms of Service. TodaysVision provides tools but does not assume your legal obligations as the sender or caller.
10. Data security
We implement administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit, access controls, tenant isolation (row-level security), private storage with signed-URL access, and authentication controls. No method of transmission or storage is completely secure, and we cannot guarantee absolute security. You are responsible for safeguarding your login credentials and for the activity that occurs under your account.
11. Cookies and similar technologies
We use cookies and similar technologies that are necessary to authenticate you, maintain your session, secure the Service, and remember your settings. We do not use the Service to serve third-party advertising. Most browsers let you control cookies; disabling essential cookies may prevent the Service from functioning.
12. Children's privacy
The Service is intended for business use by adults and is not directed to children under 18 (or under 16 for purposes of California privacy law). We do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will delete it.
13. Changes to this Policy
We may update this Policy from time to time. When we make material changes, we will update the "Last updated" date and, where appropriate, provide additional notice. Your continued use of the Service after an update means you accept the revised Policy.
14. Contact us
For privacy questions or to exercise your rights:
Today's Vision Management Group LLC 5940 S Rainbow Blvd PMB #1265 Las Vegas, NV 89118 Phone: 702-835-9300 Email: office@todaysvision.ai
If you are a California resident exercising CCPA/CPRA rights, please indicate the nature of your request so we can route and verify it appropriately.