Privacy Policy
Last updated: April 1, 2026.
1. Data we collect
We collect account information you provide (email, name, organization), order data you submit via our API, call metadata (phone numbers, durations, outcomes), and optional call recordings and transcripts when enabled.
2. How we use it
Your data is used strictly to deliver the service: placing confirmation calls, returning webhook events, billing, customer support, and product analytics. We never sell your customer data.
3. Data storage & isolation
Every organization's data is isolated at the database level. Data is encrypted in transit (TLS 1.2+) and at rest (AES-256). Backups are retained for 30 days.
4. Sub-processors
We rely on a small number of vetted sub-processors: Supabase (hosting and authentication storage), Stripe (billing), Retell (voice AI), Resend (email), and Upstash (rate limiting). Each operates under a data processing agreement.
5. Your rights
You can request a copy of your data, ask us to delete it, or port it elsewhere at any time. GDPR and similar regional rights apply. Email privacy@ecaller.ai to exercise them.
6. Call recordings
Recordings and transcripts are only created when you enable them in settings. You control retention — default is 30 days, then permanent deletion.
7. Cookies
We use strictly necessary cookies for authentication and a small set of analytics cookies to understand product usage. No third-party advertising cookies.
8. Contact
Questions about privacy? Email privacy@ecaller.ai and we'll respond within five business days.