Privacy at DialPhone

Privacy is not a feature added on top of the product. It's a property of how the platform is built. 500,000+ businesses trust DialPhone with the contents of their customer conversations.

Customer data is customer's data

Every call, message, recording, and transcript you send through DialPhone is yours. We process it to deliver the service, nothing more.

No sale of data

We do not sell personal information. Not to advertisers, not to data brokers, not to AI model marketplaces. Published in the Privacy Policy and CCPA/CPRA compliance.

No model training without opt-in

Shared foundation AI models are never trained on customer calls or messages. Opt-in fine-tunes are isolated per workspace — never blended with other customers' data.

Full subprocessor disclosure

Every third party that touches customer data is listed publicly in the subprocessor registry. 30-day advance notice for changes.

Minimum-necessary staff access

Support engineers cannot read PHI or customer recordings without break-glass approval logged to the customer.

Data residency

US customers: US regions by default. EU customers: EU-only residency available. Data never crosses regions without customer-enabled replication.

Legal documents

→ Privacy Policy — what we collect, how we use it, your rights
→ Data Processing Agreement — GDPR Article 28 terms
→ Subprocessor registry — every vendor that processes data
→ GDPR compliance
→ HIPAA compliance
→ Responsible AI

Contact

Privacy inquiries: privacy@dialphone.com · DPO: dpo@dialphone.com.