Legal

Privacy Policy

Last updated: April 29, 2026

The short version: CallVeil never records your client calls, never sells your data, and never shares your business information with third parties outside the CallVeil network. What we do collect is data about the sales callers trying to reach you — not your clients. That data is used to improve protection for every office we serve.

1. Who This Applies To

This Privacy Policy applies to customers who use the CallVeil platform — professional offices including law firms, medical offices, accounting firms, financial advisors, contractors, and IT service providers — as well as visitors to callveil.com.

2. The Key Distinction — Caller Data vs Client Data

CallVeil makes a strict distinction between two types of data:

Caller data — information about people calling your office who have not been identified as clients or trusted contacts. This includes phone numbers, company names they identify during screening, call timestamps, and screening outcomes. This data is collected, stored, and may be shared across the CallVeil network to improve protection for all customers.

Client data — information about your actual clients, trusted contacts, and office settings. This data belongs entirely to you and is never shared, sold, or used for any purpose other than operating your CallVeil account.

Sales callers who identify their company during screening have no reasonable expectation of privacy in that interaction — they are calling a business number with a commercial purpose. CallVeil treats this data as business intelligence, not personal data.

3. What We Collect

When you create an account, we collect your name, work email address, company name, and phone number. This information is used to operate your account and communicate with you about the service.

When calls are screened, we may collect the caller's phone number, any company name they provide, the time and date of the call, and the outcome of the screening interaction. We do not record or store the content of calls that are passed through to your office.

When you use the admin dashboard, we store the trusted contacts, protected numbers, office hours, and flagged callers you add to your account.

We collect standard website analytics including page views, browser type, and referring URLs to understand how people use the site. We do not use tracking cookies for advertising purposes.

4. How We Use Your Data

Your account data is used exclusively to provide the CallVeil service — screening calls, managing your protected numbers, and operating your admin portal.

Caller data collected during screening interactions may be used to improve the CallVeil threat intelligence database, which benefits all customers. This data is anonymized before being added to the shared network — no information identifying your office or your clients is included.

We use your email address to send account-related communications including receipts, service updates, and support responses. We do not send unsolicited marketing emails.

5. What We Never Do

  • We never record calls that are connected through to your office
  • We never sell your data to third parties
  • We never share your client information, trusted contacts, or business details outside CallVeil
  • We never use your data for advertising purposes
  • We never store payment card details — all payments are handled by Stripe

6. Data Sharing

We share anonymized caller threat data within the CallVeil network to improve protection for all customers. This data contains no personally identifiable information about your office.

We use the following third-party services to operate the platform:

  • Supabase — database and authentication
  • Twilio — phone call routing and screening
  • Stripe — payment processing
  • Vercel — website hosting

Each of these providers has their own privacy policies and security standards. We do not share your data with these providers beyond what is necessary to operate the service.

We may disclose data if required by law, court order, or to protect the rights and safety of CallVeil and its customers.

7. Data Retention

Your account data is retained for as long as your account is active. When you cancel your account, your account data — including trusted contacts, protected numbers, and office settings — is deleted within 30 days.

Anonymized caller threat intelligence contributed to the shared network is retained indefinitely as it contains no personally identifiable information about your office.

8. Your Rights

You have the right to access, correct, or delete your account data at any time through the admin dashboard or by contacting support. You can export your data by submitting a request to hello@callveil.com.

If you are located in California, you may have additional rights under the California Consumer Privacy Act (CCPA). Contact us to exercise these rights.

9. Security

CallVeil uses industry-standard security practices to protect your data including encrypted connections, access controls, and regular security reviews. Our infrastructure is hosted in the United States.

No system is perfectly secure. If you believe your account has been compromised, contact us immediately at hello@callveil.com.

10. Regulated Industries

CallVeil is built with the needs of regulated industries in mind including law, medicine, and financial services. We understand the sensitivity of data in these industries and have designed our data practices accordingly.

CallVeil is not a HIPAA Business Associate by default. If your practice requires a formal Business Associate Agreement, please contact us at hello@callveil.com to discuss your needs.

11. Changes to This Policy

We may update this policy from time to time. We will notify customers of material changes via email. The date at the top of this page reflects the most recent update.

12. Contact

Questions about this policy? Email us at hello@callveil.com or visit our support page.