CCallsAround

Privacy Policy

Last updated July 7, 2026

This policy describes what CallsAround collects, why, and how long we keep it — for you (our customer) and for the people who call your lines.

1. What we collect

  • Account data: name, email, business details, team membership, billing records (payment cards are held by Stripe, never by us).
  • Call data: caller number, timing, disposition, recordings and transcripts of calls handled by your AI receptionist, and the escalation trail (who was dialed, who answered).
  • Configuration: your greetings, FAQs, business facts, escalation chains, and notification preferences.
  • Operational logs: API request metadata, delivery logs for emails/SMS we send you, and system health events.

2. How we use it

To run the Service: answering and routing calls, sending the notifications you configure, billing by usage, showing you dashboards, and keeping the platform reliable and secure. We do not sell personal data, and we do not use your calls to train AI models.

3. Processors we rely on

Telephony and SMS carriage (Telnyx), voice-AI processing (Dograh), hosting and database (Lovable Cloud/Supabase), payments (Stripe), transactional email (MailerSend), and — only if you connect it — Google Calendar/Gmail for booking and confirmations. Each receives only what its function requires. OAuth tokens are encrypted at rest and never leave our servers; the AI provider receives answers, never credentials.

4. Call recording

Recording and transcription serve quality and record-keeping for your business. A per-line disclosure toggle announces recording to callers where consent laws require it — configuring it correctly for your jurisdiction is your responsibility as the line owner.

5. Retention

  • Recordings and transcripts: 365 days, then permanently deleted.
  • Call metadata (billing/audit truth): retained for the life of the account.
  • Operational logs: 30–90 days by type.
  • On account closure: data deleted or anonymized within 30 days, except records law requires us to keep.

6. Security

Row-level tenant isolation in the database, encrypted secrets, signature-verified integrations, audit logs on every configuration change, and scoped API keys you can revoke at any time.

7. Your rights

Access, export, correction, and deletion of your data on request — and callers to your lines may route requests about their data through you or directly to us at privacy@callsaround.app.

8. Changes

Material changes are announced by email 30 days in advance.