Privacy Policy

1. Introduction

Welcome to Voice Sales Flow AI ("we," "our," or "us"), a product owned and operated by MeTel, Inc, a Delaware corporation. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered voice sales agent platform and related services (collectively, the "Service").

We are committed to protecting your privacy and ensuring the security of your personal information. By accessing or using Voice Sales Flow AI, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.

2. Information We Collect

2.1 Information You Provide Directly

• Account Information: Name, email address, and profile picture when you create an account through Google OAuth authentication.
• Agent Configuration: AI agent names, custom prompts, greeting messages, voice preferences, widget customization settings, and branding colors.
• Training Documents: Content you upload to train your AI agents, including text documents, URLs, and knowledge base materials.
• Payment Information: Billing details processed securely through Stripe. We do not store complete credit card numbers on our servers.
• Communications: Messages you send to our support team or feedback you provide.

2.2 Voice and Audio Data

Voice data is classified as biometric/sensitive personal information under major privacy regulations. When visitors interact with your Voice Sales Flow AI agents, we collect:

• Voice Recordings: Audio inputs from conversations with AI agents, processed in real-time.
• Voice Transcriptions: Text transcriptions of spoken content generated during conversations.
• Audio Metadata: Duration, timestamp, session identifiers, and device information.
• Conversation Analytics: Aggregated data about conversation patterns, engagement metrics, and conversion events.

Important: Voice data is processed in real-time through OpenAI's Realtime API and is not permanently stored on our servers. Audio streams are transmitted directly to OpenAI for processing and are not retained after the conversation ends, except for conversation metadata and analytics.

2.3 Automatically Collected Information

• Usage Data: Pages visited, features used, time spent on the platform, click patterns, and navigation paths.
• Device Information: Browser type, operating system, device identifiers, screen resolution, and language preferences.
• Log Data: IP addresses, access times, referring URLs, and error logs.
• Cookies and Similar Technologies: Session cookies for authentication and analytics cookies for service improvement.

2.4 Information from Third Parties

• Authentication Providers: Profile information from Google when you log in using Google OAuth.
• Payment Processors: Transaction status and billing information from Stripe.
• AI Service Providers: Processing confirmations from OpenAI (no personal data is returned).

3. How We Use Your Information

We use collected information for the following purposes:

3.1 Service Delivery

• Provide, maintain, and improve the Voice Sales Flow AI platform
• Process voice interactions through AI agents in real-time
• Generate analytics and insights about agent performance
• Process payments and manage subscriptions
• Provide customer support and respond to inquiries

3.2 Service Improvement

• Analyze usage patterns to enhance features and user experience
• Develop new products, services, and functionalities
• Conduct research and analytics (using aggregated, de-identified data only)
• Debug and fix technical issues

3.3 Communications

• Send service-related announcements and updates
• Provide weekly analytics reports (if opted in)
• Respond to your comments, questions, and requests
• Send promotional communications (with your consent)

3.4 Security and Compliance

• Detect, prevent, and address fraud, abuse, and security issues
• Enforce our Terms of Service and other policies
• Comply with legal obligations and regulatory requirements
• Protect the rights, property, and safety of MeTel, Inc, our users, and the public

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process personal data based on:

• Contract Performance: Processing necessary to provide the Service you requested.
• Legitimate Interests: Analytics, security, fraud prevention, and service improvement.
• Legal Obligation: Compliance with applicable laws and regulations.
• Consent: Marketing communications and optional data processing (you may withdraw consent at any time).

5. How We Share Your Information

We may share your information with:

5.1 Service Providers

• OpenAI: Voice processing and AI response generation (real-time, no permanent storage)
• Stripe: Payment processing and subscription management
• Google: Authentication services via Google OAuth
• Neon (PostgreSQL): Database hosting and data storage

5.2 Business Transfers

In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred as a business asset. We will provide notice before your information becomes subject to a different privacy policy.

5.3 Legal Requirements

We may disclose information when required by law, subpoena, court order, or government request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

5.4 With Your Consent

We may share information for other purposes with your explicit consent.

We Do Not Sell Your Personal Information. MeTel, Inc does not sell, rent, or trade your personal information to third parties for their marketing purposes.

6. Data Retention

We retain your information for as long as necessary to:

• Provide the Service and maintain your account
• Comply with legal obligations (tax records, audit requirements)
• Resolve disputes and enforce agreements
• Support business operations (aggregated analytics)

Specific Retention Periods:

• Voice Recordings: Not permanently stored; processed in real-time and discarded
• Conversation Metadata: Retained for the duration of your account plus 30 days
• Account Information: Retained until account deletion, then purged within 30 days
• Usage Analytics: Aggregated data retained for up to 3 years
• Payment Records: Retained for 7 years for tax and legal compliance

7. Data Security

We implement industry-standard security measures to protect your information:

• Encryption in Transit: All data transmitted using TLS 1.3 encryption
• Encryption at Rest: Database encryption using AES-256
• Access Controls: Role-based access with principle of least privilege
• Authentication: Secure session management with HTTP-only cookies
• Infrastructure: Hosted on secure, SOC 2 compliant platforms
• Monitoring: Continuous security monitoring and logging
• Vendor Security: All third-party providers undergo security assessment

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

8. Your Rights and Choices

8.1 All Users

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your account and associated data
• Portability: Receive your data in a structured, machine-readable format
• Opt-Out: Unsubscribe from marketing communications

8.2 European Users (GDPR)

• Right to Object: Object to processing based on legitimate interests
• Right to Restrict: Limit how we use your data
• Right to Withdraw Consent: Withdraw consent at any time
• Right to Lodge Complaint: File a complaint with your supervisory authority

8.3 California Residents (CCPA/CPRA)

• Right to Know: Information about data collection and sharing practices
• Right to Delete: Request deletion of personal information
• Right to Opt-Out: Opt out of the sale of personal information (we do not sell data)
• Right to Non-Discrimination: Equal service regardless of privacy choices

To exercise these rights, contact us at privacy@voicesalesflow.app. We will respond within 30 days (GDPR) or 45 days (CCPA).

9. International Data Transfers

Voice Sales Flow AI is operated from the United States. If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate.

For transfers from the EEA, UK, or Switzerland, we rely on:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions where applicable
• Your explicit consent for specific transfers

10. Children's Privacy

Voice Sales Flow AI is not intended for children under 13 years of age (or 16 in the EEA). We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately at privacy@voicesalesflow.app, and we will promptly delete such information.

11. Advertising, Cookies, and Tracking Technologies

We and our advertising partners use cookies, pixels, and similar tracking technologies to deliver, measure, and improve our advertising across various platforms. This section provides the disclosures required for advertising on Google, Meta (Facebook/Instagram), TikTok, and other advertising networks.

11.1 Cookies and Tracking Technologies

We use the following types of cookies and tracking technologies:

• Essential Cookies: Required for basic functionality, authentication, and security.
• Analytics Cookies: Help us understand how visitors interact with our website (e.g., Google Analytics).
• Advertising Cookies: Used to deliver relevant advertisements and measure campaign effectiveness.
• Remarketing/Retargeting Cookies: Allow us to show you ads based on your prior visits to our website.
• Conversion Tracking Pixels: Measure actions taken after viewing or clicking on our ads.

11.2 Third-Party Advertising Partners

Third-party vendors, including the following advertising partners, use cookies and tracking technologies to serve ads based on your prior visits to our website and other websites on the Internet:

• Google Ads & Google Analytics: We use Google Ads for advertising and remarketing. Google uses cookies to serve ads based on your prior visits. Google's use of advertising cookies enables it and its partners to serve ads based on your visit to our site and/or other sites on the Internet.
• Meta (Facebook/Instagram): We use Meta Pixel and Meta Conversions API to measure ad effectiveness, build custom audiences, and deliver targeted advertisements on Facebook and Instagram.
• TikTok: We may use TikTok Pixel for conversion tracking and audience building for TikTok advertising campaigns.
• Native Advertising Networks: We may partner with native advertising platforms (such as Taboola, Outbrain, or similar) to display sponsored content.

11.3 How We Use Advertising Data

Information collected through advertising technologies is used to:

• Display personalized advertisements based on your interests and browsing behavior
• Measure the effectiveness of our advertising campaigns
• Build custom and lookalike audiences for targeted advertising
• Retarget visitors who have previously interacted with our website
• Attribute conversions to specific advertising channels
• Limit the number of times you see an ad (frequency capping)
• Analyze and improve our marketing strategies

11.4 Data Collected for Advertising

Advertising technologies may collect:

• IP address and approximate geographic location
• Browser type, version, and settings
• Device type, operating system, and unique device identifiers
• Pages visited, time spent, and navigation paths on our website
• Referring website or advertising source
• Actions taken (sign-ups, purchases, form submissions)
• Hashed email addresses or phone numbers (for customer matching)
• Cookie identifiers and advertising IDs

11.5 Interest-Based Advertising Disclosure

Notice: We participate in interest-based advertising (also known as online behavioral advertising). This means that third parties may collect information about your online activities over time and across different websites to predict your preferences and display advertisements that are most relevant to you.

11.6 Your Advertising Choices and Opt-Out Options

You can opt out of personalized advertising through the following methods:

Note: Opting out of personalized advertising does not mean you will stop seeing ads. You will still see ads, but they may be less relevant to your interests. Some opt-out mechanisms rely on cookies, so if you clear your cookies, you may need to opt out again.

11.7 Do Not Track Signals

Some browsers have a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. We honor Global Privacy Control (GPC) signals where required by law. Due to the lack of a common industry standard for DNT signals, we may not currently respond to all DNT browser signals, but we respect legally mandated opt-out mechanisms.

11.8 Cookie Consent (EU/EEA Users)

If you are located in the European Union or European Economic Area, we will obtain your consent before placing non-essential cookies (including advertising and analytics cookies) on your device, in compliance with GDPR and the ePrivacy Directive. You can manage your cookie preferences through our cookie consent banner or by contacting us.

11.9 California Residents - Do Not Sell or Share

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), sharing personal information with advertising partners for targeted advertising may be considered a "sale" or "sharing" of personal information. California residents have the right to opt out of such sharing by using the opt-out links above or by contacting us at privacy@voicesalesflow.app.

12. Third-Party Links and Services

The Service may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party services you access through Voice Sales Flow AI.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the updated policy on this page with a new "Last Updated" date
• Sending an email notification to registered users
• Displaying a prominent notice within the Service

Your continued use of the Service after changes become effective constitutes acceptance of the revised policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

For GDPR inquiries, you may also contact your local supervisory authority.