Skip to main content
Security & Compliance

Your Data. Protected.

We take security seriously. Here's exactly how we protect your business data, stay compliant, and handle sensitive information.

TCPA Compliance

CallsForMe is built with TCPA (Telephone Consumer Protection Act) compliance at its core. Every outbound call goes through multiple compliance checks before dialing.

  • DNC Scrubbing: All contact lists are scrubbed against the National Do Not Call Registry before any calls are made.
  • Consent Tracking: We maintain records of consent origin for every contact in your campaigns.
  • Opt-Out Handling: Recipients can opt out at any time during a call. Opt-outs are processed immediately and permanently.
  • Calling Hours: Calls are restricted to permitted hours based on the recipient's time zone.
  • Internal DNC List: Your account maintains its own suppression list in addition to the national registry.

Data Encryption

In Transit

All data transmitted between your browser, our servers, and third-party services is encrypted using TLS 1.2+.

At Rest

All stored data, including call recordings, transcripts, and contact information, is encrypted at rest using AES-256.

Call Recording & Voice Data

Call Recordings: All calls are recorded for quality assurance and compliance. Recordings are stored securely and accessible only to the account owner. Recordings can be deleted at any time from your dashboard.

Voice Cloning Data: If you use our voice cloning feature, your voice samples are stored securely and used only to generate your custom AI voice. You can request deletion of your voice data at any time.

Biometric Consent: Voice cloning requires explicit consent before processing. We comply with state biometric privacy laws including BIPA (Illinois) and similar statutes.

Deletion Rights: You can request full deletion of all voice data, recordings, and personal information by contacting info@callsforme.ai.

Certifications & Compliance Status

SOC 2 Type II

In Progress

We are actively working toward SOC 2 Type II certification. Our infrastructure and processes are being designed to meet the Trust Services Criteria for security, availability, and confidentiality.

HIPAA

Contact us for healthcare compliance requirements. Business Associate Agreements (BAAs) are available for Enterprise plans. Email info@callsforme.ai to discuss your needs.

TCPA Compliant

Full compliance with the Telephone Consumer Protection Act, including DNC scrubbing, consent tracking, opt-out handling, and calling hour restrictions.

Infrastructure

Vercel

Frontend hosting

Global CDN, automatic SSL

Supabase

Database & authentication

PostgreSQL, Row Level Security

Twilio

Telephony

Enterprise-grade voice infrastructure

Questions About Security?

If you have questions about our security practices or need documentation for your compliance review, reach out to our team.

Contact Us