TL;DR: We take your privacy seriously. We collect only what's necessary to provide our service, never sell your data, and give you full control over your information. Fully GDPR, LGPD, and CCPA compliant.
1. Introduction
Welcome to VoxAgent ("we," "our," or "us"). This Privacy Policy explains how Epsylon Systems LLC collects, uses, discloses, and safeguards your information when you use our AI voice automation service at vox-agent.ai (the "Service").
2. Information We Collect
2.1 Information You Provide
- Account Information: Name, email, company name, phone, billing address
- Payment Information: Processed via Stripe (we don't store full card numbers)
- Call Data: Phone numbers, call recordings, transcripts, metadata
- Agent Configuration: AI prompts, voice settings, custom scripts
2.2 Automatically Collected
- Usage Data: IP address, browser type, device, pages visited
- Cookies: Session tokens, preferences, analytics (see Cookie Policy)
- API Logs: API requests, response times, error logs
3. How We Use Your Information
| Purpose |
Legal Basis (GDPR) |
| Provide and maintain the Service |
Contract performance |
| Process payments |
Contract & Legal obligation |
| Send service updates |
Contract performance |
| Improve AI quality |
Legitimate interest |
| Marketing (with consent) |
Consent (opt-out anytime) |
| Comply with law |
Legal obligation |
4. Data Security
- Encryption: TLS 1.3 for data in transit, AES-256 at rest
- Access Controls: Role-based access, 2FA for admins
- Infrastructure: Enterprise-grade cloud hosting within the EU (Ireland), encrypted at rest and in transit
- Call Recordings: Encrypted in secure S3 buckets (US/EU regions)
- Audits: Annual penetration testing and security reviews
5. Data Retention
- Active Accounts: Retained while account is active
- Call Recordings: 90 days by default (customizable: 30–365 days)
- Closed Accounts: Deleted within 30 days (backups purged in 90 days)
- Legal Holds: Retained longer if required by law
6. Your Privacy Rights
6.1 GDPR Rights (EU/UK Users)
- Access: Request a copy of your data
- Rectification: Correct inaccurate information
- Erasure: Request deletion ("right to be forgotten")
- Portability: Export data in machine-readable format
- Withdraw Consent: Opt out of marketing anytime
6.2 CCPA Rights (California Users)
- Know: What personal information we collect and why
- Delete: Request deletion of your personal information
- Opt-Out: We do NOT sell any personal data
- Non-Discrimination: No penalties for exercising your rights
6.3 How to Exercise Your Rights
Email us at privacy@vox-agent.ai. We'll respond within 30 days.
7. International Data Transfers
If you're outside the US, your data may be transferred to and processed in the US or other countries. We use Standard Contractual Clauses (SCCs) to ensure adequate protection for EU data.
8. Changes to This Policy
We may update this Privacy Policy periodically. Changes are effective immediately upon posting. We will notify you of material changes via email, in-app notification, or prominent website notice.
© 2025 VoxAgent. A product of Epsylon Systems LLC. All rights reserved.