Privacy Policy

Effective Date: June 25, 2025

This Privacy Policy describes how Response collects, uses, and protects your information when you use our services.

Information We Collect

We collect:

Customer data: Name, email, phone number, business name, credit card details (via Stripe).

End-user data: Call audio, transcriptions, SMS replies, and caller metadata.

Technical data: IP addresses, browser info, device data, usage logs.

How We Use Your Information

We use data to:

Deliver and improve our services.

Process billing and payments.

Notify you of call activity, service issues, or new features.

Train our AI models (using de-identified or anonymized data).

Monitor quality and support internal service reviews.

Data Sharing

We do not sell or share your data with third parties except:

Trusted service providers necessary to deliver our product (e.g., Twilio, Stripe, OpenAI, cloud hosts).

Law enforcement or legal authorities if required by law.

Authorized third-party apps you choose to integrate (see below).

Call Monitoring, Quality Assurance & AI Training

We may monitor, listen to, and review call recordings for internal quality assurance, troubleshooting, and to improve service delivery.

Call recordings, transcripts, and related metadata may be anonymized and used to train our AI models across the platform.

Personally identifiable data will not be used in model training unless anonymized.

You are responsible for informing your customers of any applicable call monitoring or data usage disclosures based on your industry and jurisdiction.

Third-Party Integrations & Data Sharing on Your Behalf

If you authorize Response to connect with third-party platforms (e.g., CRMs or scheduling tools), we may transmit user data (e.g., name, phone, requested service) to those systems to complete the tasks you’ve requested.

We do not store credentials to external platforms unless explicitly authorized.

We are not responsible for the security or privacy practices of third-party systems once data is transmitted.

You are solely responsible for ensuring that any integrations you enable comply with applicable privacy and data protection laws (e.g., HIPAA, CCPA).

Data Security

We use technical and administrative safeguards to protect your data:

SSL encryption

Access controls

Secure cloud infrastructure

Regular system audits

Data Retention

We retain customer and end-user data only as long as necessary to provide services and comply with applicable legal obligations.

You may request data deletion at any time by emailing [[email protected]].

User Rights

You may request access to, correction of, or deletion of your personal data at any time.

We honor reasonable data access or removal requests under applicable U.S. privacy laws, including CCPA (if applicable).

Children’s Privacy

Our service is not intended for use by children under 13. We do not knowingly collect personal information from minors.

Policy Updates

We may update this Privacy Policy periodically. Continued use of the Service after updates constitutes agreement to the revised policy.