Skip to main content

Privacy Policy

Last Updated: February 10, 2026

At Callis ("we," "our," or "us"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered receptionist services ("Services").

By using our Services, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Services.

1. Information We Collect

1.1 Information You Provide

We collect information that you provide directly to us, including:

  • Account Information: Name, email address, phone number, business name, billing address, and payment information
  • Business Information: Industry type, business hours, appointment scheduling preferences, custom greetings and scripts
  • Communications: Records of your interactions with our support team, feedback, and survey responses

1.2 Information Collected Through AI Services

When our AI receptionist handles calls on your behalf, we collect:

  • Call Data: Phone numbers (caller and recipient), call duration, time and date, call outcome
  • Voice Recordings: Audio recordings of conversations between callers and our AI system (with appropriate consent)
  • Transcriptions: Text transcriptions of voice conversations generated by our AI technology
  • Caller Information: Names, contact details, appointment requests, and any information voluntarily provided by callers

1.3 Automatically Collected Information

We automatically collect certain information when you access our Services:

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages viewed, features used, time spent on platform, click patterns
  • Cookies and Tracking: We use cookies, web beacons, and similar technologies (see Section 6)

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: To provide, maintain, and improve our AI receptionist services
  • Call Processing: To answer calls, schedule appointments, take messages, and provide information to callers
  • AI Training: To train and improve our AI models for better accuracy, natural conversation, and service quality
  • Account Management: To create and manage your account, process payments, and provide customer support
  • Communications: To send service updates, security alerts, appointment confirmations, and administrative messages
  • Analytics: To analyze usage patterns, measure service effectiveness, and generate business insights
  • Compliance: To comply with legal obligations, enforce our terms, and protect rights and safety
  • Marketing: With your consent, to send promotional materials and service updates (you may opt out anytime)

3. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), we process your personal data based on:

  • Contract Performance: Processing necessary to provide services you've requested
  • Legitimate Interests: Our business interests in improving services, preventing fraud, and ensuring security
  • Consent: Where you have given explicit consent for specific purposes
  • Legal Obligation: Compliance with applicable laws and regulations

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

Service Providers

Third-party vendors who perform services on our behalf (cloud hosting, payment processing, analytics) under strict confidentiality agreements

Business Transfers

In connection with mergers, acquisitions, or sale of assets, your information may be transferred

Legal Requirements

When required by law, court order, or to protect our rights, property, or safety

With Your Consent

When you explicitly authorize us to share information with third parties

Aggregated Data

We may share anonymized, aggregated data that cannot identify individuals

5. Data Security

We implement robust security measures to protect your information:

  • Encryption: TLS 1.3 for data in transit, AES-256 for data at rest
  • Access Controls: Multi-factor authentication, role-based access, principle of least privilege
  • Infrastructure: SOC 2 Type II certified cloud providers with redundant systems
  • Monitoring: 24/7 security monitoring, intrusion detection, and incident response
  • Regular Audits: Third-party security assessments and penetration testing
  • Employee Training: Ongoing security awareness and privacy training for all staff

While we implement industry-leading security measures, no system is completely secure. We cannot guarantee absolute security of your information.

6. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Maintain your session and keep you logged in
  • Remember your preferences and settings
  • Analyze usage patterns and improve our Services
  • Deliver personalized content and advertisements

You can control cookies through your browser settings. However, disabling cookies may limit your ability to use certain features of our Services.

7. Data Retention

We retain your information for as long as necessary to:

  • Provide our Services and fulfill transactions
  • Comply with legal obligations (e.g., tax, accounting requirements)
  • Resolve disputes and enforce agreements
  • Improve our AI models and service quality

Call Recordings: Stored for 90 days by default (customizable based on your preferences and legal requirements)
Account Data: Retained for 7 years after account closure for legal compliance
Marketing Data: Deleted within 30 days of opt-out request

8. Your Privacy Rights

Depending on your location, you may have the following rights:

Access & Portability

Request a copy of your personal information in a structured, machine-readable format

Correction

Update or correct inaccurate personal information

Deletion

Request deletion of your personal information (subject to legal retention requirements)

Opt-Out

Unsubscribe from marketing communications or opt out of data sales (we don't sell data)

Restrict Processing

Limit how we use your personal information

Object

Object to processing based on legitimate interests

To exercise these rights, contact us at privacy@callis.ai. We will respond within 30 days (or as required by applicable law).

9. California Privacy Rights (CCPA/CPRA)

California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to know what personal information we collect, use, and disclose
  • Right to delete personal information (with certain exceptions)
  • Right to opt out of the sale or sharing of personal information (we don't sell)
  • Right to correct inaccurate personal information
  • Right to limit use of sensitive personal information
  • Right to non-discrimination for exercising privacy rights

Sensitive Personal Information: We collect and use sensitive information (voice recordings, health information) only as necessary to provide our Services.

10. International Data Transfers

Our Services are operated in the United States. If you are located outside the U.S., your information will be transferred to, stored, and processed in the United States. We use Standard Contractual Clauses (SCCs) and other appropriate safeguards to protect your information in accordance with GDPR and other applicable data protection laws.

11. Children's Privacy

Our Services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will delete it.

12. AI-Specific Privacy Practices

Voice Data Processing

Our AI processes voice data in real-time to understand caller intent and respond appropriately. Voice recordings may be used to improve AI accuracy, train models, and ensure quality.

Automated Decision-Making

Our AI makes automated decisions about call routing, appointment scheduling, and response generation. You can review and override AI decisions through your account dashboard.

Transparency

Our AI identifies itself as an AI receptionist at the beginning of calls. Callers are informed that calls may be recorded for quality and training purposes.

13. Third-Party Links

Our Services may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, or legal requirements. We will notify you of material changes via email or through our Services. The "Last Updated" date at the top indicates when the policy was last revised.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Callis Privacy Team

Email: privacy@callis.ai

General Inquiries: hello@callis.ai

For GDPR-related inquiries, you may also contact your local data protection authority.

By using Callis services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.