CallTEC AI
Legal · Privacy

Privacy Policy

This policy explains what CallTEC AI collects, why we collect it, how we process it, and the rights you have over your data — across both our AI voice agents and AI text agents (WhatsApp, Messenger, Instagram DM, and web chat).

Effective: 29 May 2026 Controller: CallTEC AI Contact: privacy@calltecai.com

01 Introduction

CallTEC AI ("we", "us", "our") is an AI agent platform that builds production-ready voice and text agents for businesses. Our agents make and answer phone calls, reply on WhatsApp, Messenger, Instagram DM, and web chat — handling sales, support, bookings, and customer service for call centers, restaurants, medical clinics, real-estate teams, and contact centers across the MENA region, GCC, and Europe.

This Privacy Policy describes how CallTEC AI, as a data controller and (where applicable) as a data processor on behalf of our customers, handles personal data. It applies to the marketing website at www.calltecai.com, our dashboard, our agent runtime, and any integration that connects to our API.

Questions? Email info@calltecai.com for general inquiries or privacy@calltecai.com for data-protection questions, requests, or complaints.

02 Data we collect

The categories of personal data we collect depend on how you interact with CallTEC AI:

From customers (business accounts)

From end-users your agent interacts with

From website visitors

03 How we use data

We use personal data for the following purposes:

We do not sell personal data. We do not use end-user voice transcripts or message content to train third-party foundation models without explicit, separately-obtained consent.

04 Legal basis for processing

We process personal data under one of the following legal bases:

05 Third-party processors

We rely on the following sub-processors. Each is bound by a Data Processing Agreement and is contractually required to maintain confidentiality and security:

We review this list quarterly and will update this page when processors change. Customers may request the current list with regions and purpose at privacy@calltecai.com.

06 Cross-border data transfers

Some of our processors operate outside the country your data originates from. The main transfer routes are:

Where personal data leaves the European Economic Area, the United Kingdom, or other jurisdictions that require a legal transfer mechanism, transfers rely on Standard Contractual Clauses (SCCs) and equivalent safeguards recognised under GDPR Articles 46–49. Customers transacting under additional regional frameworks (e.g., PDPL in Saudi Arabia, Egyptian personal-data law) are covered under equivalent SCC-style addenda.

07 Data retention

We retain personal data only as long as we need it to deliver the service or meet a legal obligation:

Data category Retention window Then
Voice call recordings (raw audio) Discarded immediately after transcription Permanently deleted
Voice transcripts 12 months (active retention) Auto-deleted
Text-channel conversations (WhatsApp, Messenger, Instagram DM, web chat) 12 months (active retention) Auto-deleted
Order & invoice records 7 years (Egyptian tax requirement) Archived, then deleted
Customer profile & account data Until you request deletion or close your account Deleted within 30 days of request
Marketing-list subscribers Until you unsubscribe Suppression list kept for 3 years to honour unsubscribe
Website server logs 30 days Auto-rotated

Per-customer overrides: our customers can configure shorter retention windows for their accounts (e.g., delete transcripts after 30 days) via their dashboard. Contact your account manager or privacy@calltecai.com to set this up.

08 Your rights

If you're in a jurisdiction with personal-data protection law (GDPR, UK GDPR, Egypt PDPL, Saudi Arabia PDPL, UAE PDPL, and equivalent), you have the following rights over your data — in plain language:

09 How to exercise your rights

Email privacy@calltecai.com with your request. To protect against impersonation, we may ask you to verify your identity before fulfilling certain requests (especially erasure and access).

We respond within 30 days. If the request is complex we may extend by a further 60 days and will tell you why. Requests are free unless they're manifestly unfounded or excessive, in which case we may charge a reasonable administrative fee or refuse — and we'll explain why in writing.

If you're an end-user whose data was processed by an agent on behalf of one of our customers, please address your request to that customer first (they're the controller). We will support them in fulfilling your request.

10 Children's data

CallTEC AI is a business-to-business platform. We do not knowingly collect personal data from anyone under 16 years of age. Our customers are responsible for ensuring their agents do not solicit personal data from minors. If you believe we have collected data from a child, contact privacy@calltecai.com and we will delete it as soon as it's verified.

11 Security measures

We protect personal data using a layered set of technical and organisational measures, including:

12 Data breach notification

If a personal-data breach occurs that is likely to result in a risk to the rights and freedoms of natural persons, we will:

13 Changes to this policy

We may update this policy as our services evolve or as regulation changes. When we make material changes, we will:

Non-material changes (typographical fixes, formatting) may be made without notice.

14 Effective date

This policy is effective as of 29 May 2026.

15 Contact & complaints

For any privacy question, request, or complaint:

You also have the right to lodge a complaint with the data-protection authority in your country. If we cannot resolve your concern directly, please contact your local supervisory authority.