Privacy Policy

Last updated: March 18, 2026

This Privacy Policy explains how callflo.ai (“we,” “us,” or “our”) collects, uses, and protects information when you use the callflo.ai platform, website, and services (collectively, the “Service”). By using the Service, you consent to the data practices described below.

1. Information We Collect

Depending on how you interact with callflo.ai, we may collect the following categories of information:

  • Account information: Email address, business name, password, and phone number provided during registration.
  • Phone numbers: Phone numbers of callers who contact your business through the Service, as well as phone numbers you provide for SMS messaging and test calls.
  • Call data: Recordings, transcriptions, duration, timestamps, caller phone numbers, call summaries, and AI-generated analysis of calls processed through the Service.
  • Text message data: Content of SMS messages sent and received through the Service, including follow-up messages, appointment confirmations, and automated replies.
  • Payment information: Billing details processed through Stripe, our third-party payment processor. We do not store full credit card numbers on our servers.
  • Google Calendar data: When you connect Google Calendar, we access calendar metadata (event titles, times, attendees) to provide scheduling features. We request calendar and calendar.events OAuth scopes.
  • Website data: Business website URLs and scraped content used to train your AI voice agent.
  • Usage and device information: Log data such as timestamps, feature usage, IP addresses, and browser information for reliability and security.

2. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to operate and improve the Service. A cookie is a small data file stored on your device by your browser. You can manage your cookie preferences at any time using the cookie settings banner on our website.

We use the following categories of cookies:

  • Necessary cookies: Required for the site to function. These handle authentication, security, and session management. They cannot be disabled.
  • Analytics cookies: Help us understand how visitors interact with the Service so we can improve it. We use Firebase Analytics (Google) for this purpose. These cookies are only set if you opt in.
  • Marketing cookies: Used to measure the effectiveness of our advertising and personalize ad experiences. We use the Meta Pixel (Facebook) for this purpose. When enabled, the Meta Pixel collects information such as pages visited, actions taken (e.g., sign-up, registration), browser type, and IP address. This data is sent to Meta in hashed form and may be used by Meta to deliver targeted ads across its platforms. These cookies are only set if you opt in.

You can change your cookie preferences at any time by clicking the “Cookie Settings” link in the footer of any page. For more information about how Meta processes data collected through the Meta Pixel, see Meta's Privacy Policy.

3. How We Use Your Information

  • Provide and operate the Service: Process inbound and outbound phone calls, send and receive SMS messages, manage appointments, and deliver AI-powered voice interactions for your business.
  • Transactional communications: Send text messages related to calls handled by your AI agent, including follow-up information, appointment confirmations, booking links, and payment links.
  • Account management: Authenticate your identity, manage your subscription, and process payments.
  • Improve the Service: Analyze usage patterns, troubleshoot issues, and develop new features.
  • Calendar synchronization: Read and write calendar events to manage scheduling on your behalf.
  • Legal compliance: Satisfy applicable legal, regulatory, or security obligations.

4. SMS & Phone Data

callflo.ai processes phone numbers and text messages as part of its core business communication service. Specifically:

  • Phone numbers are collected when callers initiate inbound calls to businesses using the Service.
  • SMS messages are sent only as transactional follow-ups related to the content of a caller's interaction (e.g., appointment details, requested information, payment links). We do not send marketing or promotional text messages.
  • Phone numbers and message content are stored securely and are not sold, shared with third parties for marketing purposes, or used for any purpose unrelated to the Service.
  • Callers may opt out of receiving text messages at any time by replying STOP to any message.

5. Google API Services Compliance

callflo.ai's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We:

  • Use Google data strictly to provide and improve user-facing features in callflo.ai.
  • Do not sell Google user data or use it for advertising or marketing.
  • Share Google data only as necessary to provide callflo.ai's functionality, comply with law, or protect safety.
  • Do not permit humans to read Google user data except with your consent, for security/compliance purposes, or where required by law.

6. Sharing of Information

We do not sell your personal information. We may share limited information with:

  • Service providers: Third-party providers that help us operate the Service, including Twilio (telephony and SMS), ElevenLabs (voice synthesis), OpenAI (language processing), Stripe (payments), and cloud hosting providers. These providers process data under strict agreements and only as necessary to perform their services.
  • Legal requirements: When required by law, regulation, legal process, or governmental request, or to protect the rights, safety, and security of our users and the Service.

7. Data Retention

We retain your data only as long as necessary to provide the Service or as required by law. Call recordings, transcripts, and message logs are retained for the duration of your active account. If you delete your account, associated data is deleted or anonymized within a reasonable period. Google Calendar tokens are revoked and deleted when you disconnect the integration.

8. Security

We employ industry-standard safeguards to protect your data, including encryption in transit (TLS), access controls, and routine monitoring. No system is perfectly secure; we continuously improve our protections.

9. Your Choices & Controls

  • Opt out of SMS: Reply STOP to any text message from callflo.ai to stop receiving messages.
  • Revoke Google access: Visit myaccount.google.com/permissions to remove callflo.ai's access to your Google account.
  • Delete your account: Contact support@callflo.ai to request account and data deletion.

10. Children's Privacy

callflo.ai is not directed to children and is intended for business use by individuals of legal age. We do not knowingly collect personal information from children.

11. International Transfers

callflo.ai may process and store information on servers located in different countries. Where applicable, we implement measures to comply with local data-protection requirements for cross-border transfers.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be reflected by updating the “Last updated” date above and by providing notice through the Service or via email where appropriate.

13. Contact Us

If you have questions about this Privacy Policy, please contact us at support@callflo.ai

Privacy Policy · Terms of Use · Contact Us