Privacy Policy / Datenschutzerklärung

Last updated: February 2026

1. Data Controller / Verantwortlicher

Call0 ("we", "us", "our") is the data controller responsible for the processing of personal data as described in this privacy policy. For questions regarding data protection, please contact us at our contact page.

2. Data We Collect / Erhobene Daten

Account Data: Email address, name, company name (optional) when you register.

Usage Data: Call logs, call duration, transcriptions, agent configurations, booking data.

Payment Data: Processed by Stripe Inc. We do not store credit card numbers.

Technical Data: IP address, browser type, device information for security and analytics.

Call Data: Phone numbers of callers, call recordings (if enabled), AI-generated transcripts and summaries.

3. Purpose of Processing / Zweck der Verarbeitung

We process your data for the following purposes (Art. 6 DSGVO):

  • - Contract fulfillment (Art. 6(1)(b)): Providing the AI phone agent service
  • - Legitimate interest (Art. 6(1)(f)): Service improvement, fraud prevention, analytics
  • - Consent (Art. 6(1)(a)): Marketing communications (only with your explicit consent)
  • - Legal obligation (Art. 6(1)(c)): Tax records, legal compliance

4. Third-Party Services / Drittanbieter

We use the following third-party services to provide our platform:

  • Supabase (Database & Authentication) — Data stored in the EU/US
  • Stripe (Payment Processing) — PCI DSS Level 1 certified
  • SignalWire (Telephony) — Phone call routing and management
  • OpenAI (AI Processing) — Conversation intelligence for agents
  • Deepgram (Speech-to-Text) — Real-time voice transcription
  • Cartesia (Text-to-Speech) — Natural voice synthesis
  • Vercel (Hosting) — Application hosting and delivery

Data transfer to the US is based on Standard Contractual Clauses (SCCs) per Art. 46(2)(c) DSGVO.

5. Data Retention / Datenspeicherung

Account data is retained as long as your account is active.

Call logs and transcripts are retained for 90 days, unless you choose to delete them earlier.

Booking data is retained for as long as your account is active.

Payment records are retained for the legally required period (typically 10 years for tax purposes).

Upon account deletion, all personal data is deleted within 30 days, except where legal retention requirements apply.

6. Your Rights / Ihre Rechte

Under the DSGVO/GDPR, you have the following rights:

  • - Right of Access (Art. 15): Request a copy of your personal data
  • - Right to Rectification (Art. 16): Correct inaccurate data
  • - Right to Erasure (Art. 17): Request deletion of your data
  • - Right to Restrict Processing (Art. 18): Limit how we use your data
  • - Right to Data Portability (Art. 20): Receive your data in a machine-readable format
  • - Right to Object (Art. 21): Object to processing based on legitimate interest
  • - Right to Withdraw Consent (Art. 7(3)): Withdraw consent at any time

To exercise these rights, please contact us via our contact page.

You also have the right to lodge a complaint with a supervisory authority.

7. Cookies

We use only essential cookies required for the functioning of our service (authentication, session management). We do not use tracking or advertising cookies.

8. Changes / Änderungen

We may update this privacy policy from time to time. We will notify you of significant changes via email or through the platform. Continued use of the service after changes constitutes acceptance.