Privacy Policy

Last updated: April 20, 2026

1. Introduction

This Privacy Policy describes how Callixo (“we”, “us”, “our”) collects, uses, and protects information when you use our AI voice calling platform at callixo.ai. By using the Service, you agree to this policy.

2. Information We Collect

We collect:

  • Account information: name, email address, company name, password (hashed)
  • Lead data: phone numbers, names, metadata you upload or enter
  • Call data: recordings, transcripts, AI-generated summaries, durations, outcomes
  • Usage data: pages visited, features used, timestamps, IP addresses
  • Payment data: cryptocurrency transaction hashes (we do not store wallet private keys or card numbers)

3. How We Use Your Information

We use your information to:

  • Deliver, operate, and improve the Service
  • Process billing and manage your account balance
  • Provide customer support
  • Send service-related notifications (not marketing without consent)
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

4. Data Sharing

We do not sell your personal data. We share data only with:

  • Infrastructure providers: AWS (hosting, database), Vercel (frontend)
  • AI/telephony providers: RetellAI, Twilio, Deepgram — to process calls
  • Legal authorities: when required by law or valid legal process

5. Call Recordings and Transcripts

Call recordings and transcripts are stored on AWS infrastructure in the EU (Frankfurt). They are accessible only to you and authorized Callixo staff. You are responsible for obtaining required consents from call recipients in your jurisdiction before recording calls.

6. Data Retention

We retain your account data for as long as your account is active. Call recordings and transcripts are retained for 12 months by default. You may request deletion of specific data by contacting support. Upon account closure, your data is deleted within 90 days unless retention is required by law.

7. Security

We implement industry-standard security measures: encrypted connections (TLS), encrypted storage for sensitive credentials (Fernet encryption), hashed passwords (bcrypt), Redis-backed session tokens, and rate-limited authentication endpoints. No system is 100% secure; use strong, unique passwords.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict certain processing
  • Data portability (receive your data in a machine-readable format)

To exercise these rights, contact us at support@callixo.ai.

9. Cookies

We use HttpOnly session cookies for authentication. We do not use advertising or tracking cookies. No third-party analytics scripts are loaded on authenticated pages.

10. Children’s Privacy

The Service is not directed at children under 18. We do not knowingly collect data from minors.

11. Changes to This Policy

We may update this policy periodically. Material changes will be communicated via email or an in-app notice. Continued use of the Service after changes are posted constitutes acceptance.

12. Contact

For privacy inquiries, contact us at support@callixo.ai.