Skip to main content
Security & Compliance

Your Data. Protected.

We take security seriously. Here's exactly how we protect your business data, stay compliant, and handle sensitive information.

Call Compliance

CallsForMe is built with compliance at its core. Every call is handled with industry-standard security practices. For healthcare clients with specific regulatory requirements, please contact us before use so we can discuss suitability for your environment.

  • AI Disclosure:Every call handled by our AI receptionist discloses its automated nature when directly asked, in compliance with FCC regulations.
  • Consent Tracking:We maintain records of consent origin for every contact in your campaigns.
  • Opt-Out Handling:Recipients can opt out at any time during a call. Opt-outs are processed immediately and permanently.
  • Calling Hours:Calls are restricted to permitted hours based on the recipient's time zone.
  • Call Transcripts:Every inbound call is transcribed and stored securely, providing a full audit trail accessible from your dashboard.

Data Encryption

In Transit

All data transmitted between your browser, our servers, and third-party services is encrypted using TLS 1.2+.

At Rest

All stored data, including call recordings, transcripts, and contact information, is encrypted at rest using AES-256.

Call Recording & Voice Data

Call Recordings:All calls are recorded for quality assurance and compliance. Recordings are stored securely and accessible only to the account owner. Recordings can be deleted at any time from your dashboard.

Voice Cloning Data:If you use our voice cloning feature, your voice samples are stored securely and used only to generate your custom AI voice. You can request deletion of your voice data at any time.

Biometric Consent:Voice cloning requires explicit consent before processing. We comply with state biometric privacy laws including BIPA (Illinois) and similar statutes.

Deletion Rights:You can request full deletion of all voice data, recordings, and personal information by contacting info@callsforme.ai.

Certifications & Compliance Status

SOC 2 Type II

Planned

Our infrastructure and processes are designed with the SOC 2 Trust Services Criteria in mind for security, availability, and confidentiality. Formal audit engagement is planned as the company scales.

Healthcare Clients

CallsForMe does not currently certify as a HIPAA business associate. Healthcare clients with compliance requirements should contact us before signing up to evaluate fit. Email info@callsforme.ai to discuss your needs.

FCC / Call Compliance

Our AI receptionist complies with FCC regulations for AI-generated voice, including disclosure requirements. Call recordings are made in compliance with applicable state recording consent laws.

Infrastructure

Vercel

Frontend hosting

Global CDN, automatic SSL

Supabase

Database & authentication

PostgreSQL, Row Level Security

Twilio

Telephony

enterprise voice infrastructure

Questions About Security?

If you have questions about our security practices or need documentation for your compliance review, reach out to our team.

Contact Us
?