Privacy Policy.

1. Overview and scope

This Privacy Policy describes how Teldrip Inc. ("Teldrip", "we", "us") handles personal information collected through our website, our customer dashboards (Pulse and Signal), our APIs and any related services (collectively, the "Services").

This policy applies to information about (a) visitors to teldrip.com, (b) prospective and current customers, (c) end users whose calls or messages are processed through our customers' use of the Services, and (d) anyone who contacts us directly. For information our customers process through the Services about their own end users, our customers are the "data controllers" and Teldrip is a "data processor" or "service provider" — see Section 4.

2. Information we collect

You provide to us

• Account information: name, email, work phone, company name, role, billing address.
• Payment information: processed by our third-party payment processor; we store only the last four digits and card brand.
• Communications: messages you send to support, sales, careers or legal, and the metadata of any sales calls.

Collected automatically when you use the Services

• Usage data: features accessed, dashboards viewed, API endpoints called, error states, IP address, browser type, device, locale.
• Cookies and similar technologies: see Section 5 for details.

From our customers (when end users interact with the Services)

• Call metadata: caller and called numbers, call duration, time, geographic origin, carrier and routing path.
• Call content: recordings and AI-generated transcripts when our customers enable those features.
• Conversation signals: intent, sentiment and topic classifications generated by our Conversation AI.

3. How we use information

We use the information described above to:

• Provide, secure and improve the Services;
• Process payments and manage billing;
• Communicate with you about your account, security, product updates and (if you've opted in) marketing;
• Detect, investigate and prevent fraud, abuse and illegal activity;
• Comply with legal obligations, respond to lawful requests and enforce our agreements;
• Develop new features and conduct internal analytics — always on aggregated or de-identified data where feasible.

4. Sharing and disclosure

We share personal information only as follows:

• With our customers — when you are an end user whose interaction was processed through our customer's use of the Services, your call data is shared back with that customer. Contact that customer directly to exercise rights against their controllership.
• Service providers — vetted vendors who help us run the Services (cloud hosting, payment processing, error monitoring, customer support tooling). All are bound by confidentiality and data-protection terms.
• Tier-1 US carriers — to terminate and originate calls. Carriers receive only the metadata required to route a call (caller number, called number, signaling).
• Legal requirements — when required by valid legal process (subpoena, court order, warrant) we will respond, and where lawful we will notify the affected customer before doing so.
• Business transfers — in connection with a merger, acquisition or asset sale, with appropriate confidentiality protections.

5. Cookies and tracking

Our website uses a small number of cookies and similar technologies:

• Strictly necessary: session cookies, CSRF tokens, login state. These cannot be disabled.
• Analytics: aggregated usage data via a privacy-respecting first-party analytics tool. You can opt out via the banner at first visit.
• Marketing: conversion tracking on selected paid-media campaigns; opt-out via the banner.

6. Data retention

We retain personal information only as long as necessary for the purposes described in this policy or as required by law. Specific retention windows are documented in our Data Processing Addendum and product documentation; customer-configured retention overrides our defaults.

7. Your rights — California (CCPA / CPRA)

California residents have the right to (a) know what personal information we collect about them, (b) request deletion, (c) correct inaccurate information, (d) opt out of any sale or sharing of personal information (note: we do not sell personal information), and (e) limit our use of sensitive personal information. To exercise these rights, contact us at privacy@teldrip.com or submit a request through our privacy portal. We do not discriminate against you for exercising these rights.

8. Your rights — GDPR & EU/UK

If you are in the European Economic Area, the United Kingdom or Switzerland, you have the right to access, rectify, erase, restrict or object to processing of your personal information, and to data portability. Where we rely on consent, you have the right to withdraw that consent at any time.

Our EU representative is Teldrip Privacy (EU) GmbH at Friedrichstraße 88, 10117 Berlin, Germany. You also have the right to lodge a complaint with your local supervisory authority.

9. International transfers

Teldrip is headquartered in the United States. When we transfer personal information from the EEA, UK or Switzerland to the U.S., we rely on Standard Contractual Clauses and supplementary technical and organizational measures, including end-to-end encryption in transit and at rest.

10. Children's privacy

The Services are not directed to children under 13 and we do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, contact us and we will delete it.

11. Changes and contact

We may update this Privacy Policy from time to time. For material changes, we will provide at least 30 days' notice via email or in-product banner. The "Last updated" date at the top of this page reflects the most recent revision.

For privacy-related questions or to exercise your rights, contact our Data Protection Officer at privacy@teldrip.com or write to Teldrip Inc., Attn: Privacy Office, 1209 Main Street, Austin, TX 78701, USA.