Skip to main content

Privacy Policy

Last updated: January 2026

1. Introduction

Infercall Pty Ltd ("Infercall," "we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI voice agent platform and related services (the "Service").

This policy applies to:

  • Customers: Businesses and individuals who use our Service
  • End Users/Callers: Individuals who interact with AI agents powered by Infercall
  • Website Visitors: Visitors to infercall.com

2. Data Controller

For Customer Data: Infercall acts as the data controller for information we collect directly from customers (account information, billing details, etc.).

For Caller Data: Our customers (the businesses using Infercall) are the data controllers for caller information processed through our Service. Infercall acts as a data processor on their behalf. Please refer to the privacy policy of the business whose AI agent you interacted with.

Contact Details:
Infercall Pty Ltd
Email: privacy@infercall.com
Website: infercall.com

3. Information We Collect

3.1 Information You Provide

  • Account information (name, email address, company details, phone number)
  • Payment and billing information (processed by Stripe)
  • Agent configuration, business info content, and customization settings
  • Communications with our support team
  • Feedback, surveys, and testimonials you provide

3.2 Information Collected Automatically

  • Call metadata (duration, timestamps, caller phone numbers, called numbers)
  • Call recordings and call summaries
  • Usage analytics and performance metrics
  • Device information, browser type, and operating system
  • IP addresses and approximate location data
  • Cookies and similar tracking technologies (see our Cookie Policy)

3.3 Information from Third Parties

  • Authentication providers (Google, GitHub) when you choose to sign in with them
  • Calendar and scheduling integrations you connect
  • CRM and business tool integrations
  • Telephony providers (caller ID information)

3.4 Special Categories of Data

We do not intentionally collect sensitive personal data (racial/ethnic origin, political opinions, religious beliefs, health data, etc.). However, callers may voluntarily disclose such information during calls. Customers are responsible for configuring their agents appropriately for their use case.

4. Legal Basis for Processing

Under GDPR and similar laws, we process personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide the Service, manage your account, and fulfill our obligations under our Terms of Service.
  • Legitimate Interests: Processing for our legitimate business interests, including improving the Service, preventing fraud, ensuring security, and marketing (where permitted). We balance these interests against your rights and freedoms.
  • Legal Obligations: Processing required to comply with applicable laws, regulations, and legal processes.
  • Consent: Where required, we obtain your consent for specific processing activities, such as marketing communications. You may withdraw consent at any time.

5. How We Use Your Information

We use collected information for the following purposes:

  • To provide, maintain, and improve the Service
  • To process and handle phone calls through your AI agent
  • To process payments and manage billing
  • To communicate with you about your account, updates, and support inquiries
  • To send marketing communications (with your consent where required)
  • To analyze usage patterns and improve our AI models
  • To detect, prevent, and address fraud, abuse, and security issues
  • To comply with legal obligations and respond to legal requests
  • To enforce our Terms of Service and protect our rights

AI Model Training

We may use anonymized and aggregated data to improve our AI models. We do NOT use identifiable customer data or call recordings to train AI models without explicit consent. Call data is processed in real-time and not retained for training purposes unless you opt in.

6. Data Sharing and Disclosure

We may share your information in the following circumstances:

6.1 Service Providers (Subprocessors)

We share data with third-party vendors who assist in providing our services. All subprocessors are bound by data processing agreements. See our Subprocessor List.

  • Twilio: Telephony services (US)
  • Google Cloud Platform: AI/ML processing and infrastructure (Global)
  • Firebase/Google: Authentication and database (US)
  • Stripe: Payment processing (US)
  • Cloudflare: CDN and security (Global)
  • Vercel: Web hosting (US)

6.2 Other Disclosures

  • Legal Requirements: When required by law, court order, or government request
  • Safety and Rights: To protect the safety, rights, or property of Infercall, our users, or the public
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice)
  • With Your Consent: When you have given explicit permission

We do NOT sell your personal information.

7. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States and Australia. We ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs): EU-approved contractual safeguards for transfers outside the EEA
  • EU-US Data Privacy Framework: For transfers to DPF-certified US companies
  • UK International Data Transfer Agreement: For transfers from the UK
  • Adequacy Decisions: Transfers to countries with adequate data protection

You may request a copy of the safeguards used by contacting privacy@infercall.com.

8. Data Retention

We retain personal data only as long as necessary for the purposes described in this policy:

  • Account Data: Retained while your account is active, plus 30 days after deletion for backup purposes
  • Call Recordings/Transcripts: 90 days by default (configurable by customers)
  • Call Metadata: 2 years for analytics and billing reconciliation
  • Billing Records: 7 years as required by tax laws
  • Support Communications: 3 years after resolution

You can request earlier deletion of your data, subject to legal retention requirements.

9. Data Security

We implement appropriate technical and organizational measures to protect personal data:

  • Encryption in transit (TLS 1.3) and at rest (AES-256)
  • Access controls and authentication requirements
  • Regular security assessments and penetration testing
  • Employee security training and access limitations
  • Incident response procedures
  • Secure development practices

While we strive to protect your data, no method of transmission or storage is 100% secure. Please report any security concerns to security@infercall.com.

10. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information. We respect these rights regardless of where you are located:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data ("right to be forgotten")
  • Portability: Receive your data in a portable format
  • Restriction: Request restriction of processing
  • Objection: Object to certain processing activities
  • Withdraw Consent: Withdraw previously given consent

To exercise your rights, contact us at privacy@infercall.com. We will respond within 30 days (or sooner where required by law).

11. Region-Specific Information

European Economic Area (EEA) and United Kingdom

If you are in the EEA or UK, GDPR and UK GDPR provide additional rights:

  • Right to lodge a complaint with your local data protection authority
  • Right not to be subject to automated decision-making with legal effects
  • Right to information about safeguards for international transfers

UK Representative: Contact privacy@infercall.com for details.
EU Representative: Contact privacy@infercall.com for details.

California, USA (CCPA/CPRA)

California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: Categories and specific pieces of personal information collected
  • Right to Delete: Request deletion of personal information
  • Right to Correct: Request correction of inaccurate information
  • Right to Opt-Out: Opt out of "sale" or "sharing" of personal information
  • Right to Limit: Limit use of sensitive personal information
  • Non-Discrimination: We will not discriminate against you for exercising your rights

We do not "sell" personal information as defined under CCPA/CPRA. We do not use sensitive personal information for purposes beyond those permitted by CPRA.

To exercise your rights: Email privacy@infercall.com with subject "California Privacy Request".

Australia

Australian residents have rights under the Privacy Act 1988 and Australian Privacy Principles (APPs):

  • Right to access your personal information
  • Right to request correction of inaccurate information
  • Right to complain to the Office of the Australian Information Commissioner (OAIC)
  • Right to opt out of direct marketing

OAIC Contact: www.oaic.gov.au

India

Under India's Digital Personal Data Protection Act 2023 (DPDP Act), Indian residents have:

  • Right to access information about personal data being processed
  • Right to correction and erasure of personal data
  • Right to grievance redressal
  • Right to nominate another person to exercise rights in case of death/incapacity

Grievance Officer: Contact privacy@infercall.com

Other Jurisdictions

We respect privacy rights in all jurisdictions where we operate, including:

  • Canada (PIPEDA): Right to access, correct, and withdraw consent
  • Singapore (PDPA): Right to access, correct, and withdraw consent
  • Japan (APPI): Rights regarding disclosure, correction, and discontinuation
  • Brazil (LGPD): Similar rights to GDPR, including data portability
  • Other US States: Virginia, Colorado, Connecticut, Utah, and others have enacted privacy laws with similar rights

Contact us to learn about rights specific to your jurisdiction.

12. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage, and provide personalized content. For detailed information about the cookies we use and how to manage your preferences, please see our Cookie Policy.

You can control cookie preferences through your browser settings. Note that disabling certain cookies may affect Service functionality.

13. Children's Privacy

The Service is intended for business use and is not directed at individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information. If you believe we have collected information from a child, please contact us immediately.

14. Do Not Track Signals

Some browsers have a "Do Not Track" (DNT) feature. We currently do not respond to DNT signals because there is no industry standard for handling them. However, you can manage tracking through our cookie consent tools and browser settings.

15. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of material changes by posting the updated policy on our website with a new "Last Updated" date. For significant changes affecting your rights, we will provide notice via email or in-app notification at least 30 days before the changes take effect.

16. Contact Us

If you have questions about this Privacy Policy, want to exercise your rights, or have a privacy concern, please contact us:

Infercall Pty Ltd

Privacy Inquiries: privacy@infercall.com

Security Issues: security@infercall.com

General: support@infercall.com

We aim to respond to all privacy inquiries within 30 days. If you are not satisfied with our response, you may have the right to lodge a complaint with your local data protection authority.

⌘K