Privacy Policy

1.1 Information You Provide

• Account Information: Name, email address, company name, phone number, billing information, and account credentials.
• Call Data: Phone numbers, call recordings, call transcripts, call metadata (duration, timestamps, status), and voice data processed through our AI voice agents.
• Lead Information: Contact details of leads imported into our platform, including names, phone numbers, email addresses, and any custom fields you configure.
• Communication Data: Messages, support tickets, and correspondence with our team.

1.2 Information Collected Automatically

• Usage Data: How you interact with our platform, features used, and performance analytics.
• Device Information: IP address, browser type, operating system, and device identifiers.
• Log Data: Server logs, error reports, and system activity data.

We use your information to:

• Provide, maintain, and improve our AI voice agent services
• Process and manage automated outbound calls on your behalf
• Generate lead scoring and qualification analytics
• Personalize your experience and provide customer support
• Send service-related notifications and updates
• Ensure platform security and prevent fraud or misuse
• Comply with legal obligations and enforce our terms
• Improve our AI models and service quality (with anonymized data only)

As a Data Processor, LeaCall processes call data and lead information on behalf of our customers (Data Controllers). We maintain strict data segregation between customer accounts and implement industry-standard encryption for data at rest and in transit.

• All data is encrypted using AES-256 encryption at rest
• TLS 1.3 encryption for all data in transit
• Regular security audits and penetration testing
• SOC 2 Type II compliant infrastructure

We do not sell your personal data. We may share information with:

• Service Providers: Cloud hosting, payment processors, and telecommunications providers necessary to deliver our services, bound by strict data processing agreements.
• Legal Requirements: When required by law, court order, or to protect our rights and safety.
• Business Transfers: In connection with mergers, acquisitions, or sale of assets, with continued protection of your data.
• With Your Consent: For any other purpose with your explicit authorization.

We retain your data only as long as necessary for the purposes outlined in this policy:

• Account Data: Retained while your account is active and for 30 days after deletion request.
• Call Recordings: Retained according to your configured retention policy (default: 90 days). Enterprise customers can configure custom retention periods.
• Lead Data: Retained until you delete it or close your account.
• Billing Records: Retained for 7 years as required by financial regulations.

Depending on your location, you have the following rights:

• Access: Request a copy of the personal data we hold about you.
• Rectification: Request correction of inaccurate data.
• Erasure: Request deletion of your personal data ("right to be forgotten").
• Portability: Receive your data in a structured, machine-readable format.
• Restriction: Request limitation of processing in certain circumstances.
• Objection: Object to processing based on legitimate interests.
• Withdraw Consent: Withdraw previously given consent at any time.

To exercise any of these rights, please contact us at support@leacall.com. We will respond within 30 days.

When transferring data outside the European Economic Area (EEA), we ensure adequate protection through:

• EU-U.S. Data Privacy Framework certification
• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions where applicable
• Dedicated regional hosting options for data residency requirements

We implement comprehensive security measures to protect your data:

• SOC 2 Type II certified infrastructure
• End-to-end encryption for all communications
• Multi-factor authentication (MFA)
• Regular vulnerability assessments and penetration testing
• 24/7 security monitoring and incident response
• Employee security training and background checks
• Access controls based on principle of least privilege

We use cookies and similar technologies for essential functionality, analytics, and improving user experience. You can manage cookie preferences through your browser settings.

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a minor, please contact us immediately.

We may update this Privacy Policy periodically. We will notify you of material changes via email or prominent notice on our platform. Continued use after changes constitutes acceptance of the updated policy.