Privacy Policy

Account and Business Information

• Business name, legal entity information, and tax identification numbers
• Primary and secondary contact information (names, titles, phone numbers, email addresses)
• Billing and payment information (credit card details, bank account information, billing addresses)
• User account credentials and authentication information
• Technical contact information and authorized representatives
• Business verification documents and compliance certifications
• Service configuration preferences and custom settings

Telecommunications Service Data

• Call detail records (CDRs) including originating and terminating numbers, timestamps, duration, and call quality metrics
• Voice traffic patterns, usage statistics, and bandwidth consumption
• Quality of service metrics, jitter, latency, and packet loss data
• Network performance data and routing information
• Device and browser information, IP addresses, and connection details
• SIP registration data and endpoint configurations
• Emergency services location information (E911 data)
• Number porting requests and carrier routing information

SMS and Messaging Data

• SMS message content, sender and recipient information
• Message delivery status and timestamps
• Short code and long code campaign information
• Opt-in and opt-out records and preferences
• Message routing and carrier delivery information
• Compliance verification records for TCPA and CAN-SPAM

Technical and Usage Information

• Log files, error reports, and system performance data
• API usage statistics and integration information
• Cookies, web beacons, and similar tracking technologies
• Browser type, operating system, and device characteristics
• Geolocation data (where permitted and necessary for service provision)
• Session recordings and analytics data from our platforms

Communications and Support Data

• Customer service interactions and support ticket history
• Technical support communications and resolution records
• Sales inquiries and consultation records
• Service-related notifications and delivery confirmations
• Feedback, surveys, and testimonials

Service Provision and Operations

• Providing, maintaining, and improving our VoIP and SMS services
• Processing and routing voice calls and text messages
• Managing your account, billing, and payment processing
• Providing customer support and technical assistance
• Monitoring service quality and network performance
• Provisioning and configuring telecommunications equipment

Legal and Regulatory Compliance

• Complying with FCC, CRTC, and other telecommunications regulations
• Meeting CALEA (Communications Assistance for Law Enforcement Act) requirements
• Fulfilling TCPA (Telephone Consumer Protection Act) obligations
• Responding to lawful requests from government agencies
• Maintaining records for regulatory reporting and audits
• Processing emergency services (911/E911) calls and location data

Security and Fraud Prevention

• Detecting and preventing fraudulent activities and unauthorized access
• Monitoring for spam, robocalls, and malicious traffic
• Implementing security measures and access controls
• Investigating security incidents and breaches
• Protecting against network abuse and service disruptions

Business Operations and Analytics

• Analyzing usage patterns to improve service quality and features
• Conducting research and development for new services
• Creating aggregated, anonymized reports for business insights
• Personalizing your service experience and recommendations
• Sending service updates, notifications, and important announcements

Service Providers and Partners

We may share information with trusted third parties who assist us in providing services:

• Telecommunications carriers and network operators for call routing and delivery
• Payment processors for billing and transaction processing
• Cloud infrastructure providers for data storage and processing
• Customer support platform providers
• Security and fraud prevention service providers
• Analytics and performance monitoring services

All service providers are bound by strict confidentiality agreements and are prohibited from using your information for their own purposes.

Legal and Regulatory Requirements

We may disclose information when required by law or to protect our rights:

• In response to valid legal process (subpoenas, court orders, search warrants)
• To comply with emergency disclosure requirements for public safety
• When necessary to protect the safety of individuals or prevent harm
• To investigate fraud, security incidents, or violations of our terms
• In connection with legal proceedings or regulatory investigations

Business Transfers

In the event of a merger, acquisition, or sale of business assets, customer information may be transferred as part of the transaction. We will provide notice and ensure continued privacy protection.

Technical Safeguards

• End-to-end encryption (AES-256) for voice traffic and sensitive data
• TLS 1.3 encryption for all data transmissions
• Advanced firewall and intrusion detection systems
• Multi-factor authentication for administrative access
• Regular security patching and vulnerability assessments
• Secure key management and certificate handling
• Network segmentation and zero-trust architecture

Physical Security

• SOC 2 Type II certified data centers with 24/7 monitoring
• Biometric access controls and visitor management systems
• Environmental monitoring and fire suppression systems
• Redundant power supplies and network connections
• Secure equipment disposal and data destruction procedures

Operational Security

• Regular security training for all employees
• Background checks for personnel with data access
• Incident response and breach notification procedures
• Third-party security audits and penetration testing
• Compliance monitoring and audit logging
• Business continuity and disaster recovery plans

Data Breach Response

In the unlikely event of a data breach:

• We will investigate and contain the breach immediately
• Affected customers will be notified within 72 hours when required
• We will cooperate with law enforcement and regulatory authorities
• A detailed incident report will be provided to affected parties
• We will implement additional safeguards to prevent similar incidents

Retention Periods by Data Type

Automated Deletion

• We use automated systems to delete data when retention periods expire
• Secure deletion methods ensure data cannot be recovered
• Customers receive notifications before automatic deletion occurs
• Legal holds may extend retention periods when required

Customer-Requested Deletion

• You can request deletion of your personal information at any time
• Some data may be retained for legal or regulatory compliance
• We will confirm deletion requests and provide timelines
• Aggregated, anonymized data may be retained for analytics

Federal Telecommunications Regulations

• FCC (Federal Communications Commission): Customer proprietary network information (CPNI) protection, accessibility requirements, emergency services
• CALEA (Communications Assistance for Law Enforcement Act): Lawful intercept capabilities and compliance
• TCPA (Telephone Consumer Protection Act): Robocall restrictions, consent requirements, opt-out mechanisms
• CAN-SPAM Act: Commercial email and messaging compliance
• STIR/SHAKEN: Call authentication and caller ID verification

State Privacy Laws

• CCPA/CPRA (California): Consumer privacy rights, data transparency, opt-out mechanisms
• CTDPA (Connecticut): Data protection and consumer rights
• CPA (Colorado): Privacy and data protection requirements
• VCDPA (Virginia): Consumer data protection provisions
• Utah Consumer Privacy Act: Privacy rights and business obligations

Industry Standards and Certifications

• SOC 2 Type II compliance for security and availability
• ISO 27001 information security management
• PCI DSS compliance for payment card data security
• HIPAA compliance for healthcare-related communications
• GDPR compliance for European data subjects

International Compliance

• We comply with applicable privacy laws in jurisdictions where we operate
• International data transfers are protected by appropriate safeguards
• We maintain data processing agreements with international partners
• Privacy rights are honored regardless of geographic location

Universal Privacy Rights

• Access: Request a copy of the personal information we have about you
• Correction: Ask us to correct inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal requirements)
• Portability: Receive your data in a structured, machine-readable format
• Opt-out: Decline marketing communications and data sales
• Restriction: Limit how we process your information

California Privacy Rights (CCPA/CPRA)

California residents have additional rights including:

• Right to know what personal information is collected and how it's used
• Right to delete personal information (with certain exceptions)
• Right to opt-out of the sale or sharing of personal information
• Right to non-discrimination for exercising privacy rights
• Right to correct inaccurate personal information
• Right to limit use of sensitive personal information

How to Exercise Your Rights

• Contact us using the information provided in the "Contact Us" section
• Use our online privacy request portal (if available)
• Call our privacy hotline for immediate assistance
• Send a signed written request to our privacy officer
• Designate an authorized agent to act on your behalf

We will respond to your request within the timeframes required by applicable law (typically 30-45 days).

Account Settings and Controls

• Access your privacy settings through our customer portal
• Manage communication preferences and opt-out options
• Control call recording and data retention settings
• Set up automated data deletion schedules
• Review and download your personal information