Legal · GDPR & CCPA

Privacy Policy

This explains how Dialbotix processes data when you run AI voice calling campaigns, upload leads, or use our revenue automation platform.

Effective May 2026 · Last updated May 2026

Who is the data controller

For personal data contained in customer leads and campaign data, the customer acts as the Data Controller.

Dialbotix acts as a Data Processor and processes personal data only on documented instructions from the customer for the purpose of providing AI voice automation services.

Dialbotix does not determine the purposes or legal basis for processing customer lead data.

What data we process

  • Account data (name, email, company, login information)
  • Lead data provided by customers (name, phone, email, company, job title)
  • Call data (AI conversation, transcript, outcome, booking status)
  • CRM sync data (deal stage updates, pipeline movement)
  • Technical logs (IP, device, system performance)

We do not sell data or use it for advertising.

How we use data

  • Run AI voice calls on uploaded or inbound leads
  • Qualify prospects using conversational AI
  • Book meetings into calendars automatically
  • Sync results into CRM systems
  • Generate analytics for conversion and revenue tracking
  • Improve system performance and AI accuracy

Legal basis for processing

  • Contract: necessary to provide AI calling and automation services
  • Legitimate interest: improving performance, reliability, and fraud prevention
  • Legal compliance: telecom laws (TCPA, GDPR, ePrivacy, DNC rules)
  • Consent: where required for marketing or optional features

User consent responsibility

Customers are solely responsible for ensuring that all individuals contacted through the platform have provided valid consent for automated or AI-assisted voice communication where required by applicable law.

This includes compliance with laws such as the TCPA (United States), GDPR and ePrivacy Directive (EU/UK), and any applicable local telemarketing or communication regulations.

Dialbotix does not independently verify or validate end-user consent and relies on customer-provided compliance and configuration for lawful use of the platform.

International data transfers

Data processed through Dialbotix may be transferred and stored in countries outside your jurisdiction, including the United States and other regions where our service providers operate.

Where required, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) or equivalent legal mechanisms for international data transfers.

Data retention

Call recordings and transcripts are typically retained for up to 90 days, unless a longer retention period is required for legal, security, or operational purposes or configured by the customer.

Active customer data such as leads and CRM sync data is retained for the duration of the customer's account.

Upon account deletion, data is deleted or anonymized within a reasonable period, subject to legal and operational retention requirements.

Call recording and disclosure

The platform may record and transcribe AI voice calls as part of its functionality.

Customers are solely responsible for ensuring that all required call recording disclosures and consent notices are provided to call recipients in accordance with applicable laws.

Dialbotix provides call recording and transcription as a technical feature. Customers are responsible for ensuring their use of these features complies with applicable laws in their jurisdiction.

Third-party providers

  • Vapi / Twilio — AI voice calling infrastructure
  • OpenAI or LLM providers — conversation intelligence
  • AWS / cloud providers — hosting and storage
  • Paddle — billing, payments, and global tax handling (Merchant of Record)
  • Email providers — transactional emails

AI and third-party providers

Dialbotix relies on third-party service providers including AI model providers, voice infrastructure platforms, telecom networks, cloud hosting providers, and CRM integrations.

  • AI providers may generate inaccurate or unpredictable outputs
  • Telecom providers may block, delay, or fail call delivery
  • Cloud providers may experience outages or performance degradation

We are not liable for disruptions or limitations caused by third-party service providers, though we work to ensure reliable integrations and service continuity.

Your rights

  • Access your data
  • Request correction or deletion
  • Export your data
  • Object to processing where applicable

Requests can be sent to privacy@dialbotix.com

  • We aim to respond to privacy requests within 48 to 72 hours.
  • Cookies

    We use essential cookies required for authentication, security, and system functionality.

    Optional analytics cookies are used only with user consent where required by applicable law.

    Users may disable non-essential cookies through browser settings or consent tools where available.

    Contact

    Privacy: privacy@dialbotix.com

    DPO: dpo@dialbotix.com

    Questions about privacy?

    We respond to all requests within 48 hours.

    Contact privacy team