Privacy policy.
Effective: 23 April 2026
1. What we collect
When you sign up, make calls, or contact us, we collect identifying information (name, email, phone number), billing details, call metadata (timestamps, duration, recipient numbers), call audio and transcripts, and technical data (IP, device, browser). Voice samples used to clone a custom voice are held only with explicit consent.
2. How we use it
To operate the platform, deliver calls, improve voice quality, bill accurately, and meet legal obligations (TRAI, HIPAA, GDPR, SOC 2). We do not sell personal data. We do not train shared voice models on your call audio without written authorisation.
3. Who we share it with
Telephony carriers (Twilio and others), cloud infrastructure (AWS, Google Cloud), audit firms, and law-enforcement where compelled by valid legal process. All sub-processors sign a DPA aligned with GDPR.
4. Where we store it
Production data for India-billed accounts is processed in ap-south-1 (Mumbai). US-billed accounts use us-east-1. Call audio is retained for 90 days by default, configurable down to zero retention on Scale plans.
5. Your rights
Access, correction, deletion, and portability on request. India residents have additional DPDP Act rights. EU and UK residents have additional GDPR rights. Email privacy@qcall.ai.
6. Security
TLS 1.2+ in transit, AES-256 at rest, mandatory 2FA for staff, quarterly penetration tests, and a SOC 2 Type II attestation available on request.
7. Changes
We post updates here and notify workspace admins 30 days before material changes take effect.
Questions? Write to privacy@qcall.ai or contact us.