This Privacy Policy describes how TradeVoiceServices (a DBA of Rebeiz Holdings LLC) collects, uses, and protects information when you use our Service. We take privacy seriously and design our systems around the principle of collecting only what we need to provide the Service.
1. Who Is Covered
This policy covers (a) Subscribers — business owners who sign up for TradeVoice — and (b) Callers — end customers whose calls are answered by an AI agent on a Subscriber's line. Subscribers are responsible for informing Callers that their call may be handled by AI and may be recorded; we provide guidance for compliance with applicable state laws.
2. Information We Collect
2.1 From Subscribers
- Account information: email, password (hashed), business name.
- Business configuration: services offered, hours, agent personality, phrases, after-hours behavior, emergency handling instructions.
- Calendar OAuth tokens (Google Calendar), stored encrypted at rest.
- Payment information: handled directly by Stripe — we never see your full card number; we only store the Stripe customer/subscription IDs.
2.2 From Callers
- Audio of the call (processed in real time, retained only as transcript text — we do not persist raw audio).
- Transcript text: every turn of the conversation, with timestamps.
- Caller-provided details: name, phone number, email, and the service requested.
- Selected booking slot and any errors logged during the call.
2.3 Automatically Collected
- Standard log data when you visit our website (IP address, browser, referrer, pages viewed).
- Cookies and similar technologies used for authentication and session management. We do not run third-party advertising trackers.
3. How We Use Information
- To provide the Service: answer calls, book appointments, send confirmations, surface call logs in your dashboard.
- To improve the Service: aggregate analysis of call outcomes, voice quality, and conversion rates. We do not use Caller data to train AI models.
- To bill you: process subscription payments via Stripe.
- To communicate: occasional service updates, security notices, and (with your consent) product news.
- For security and legal compliance: detect abuse, prevent fraud, and respond to lawful requests.
4. How We Share Information
We do not sell personal information. We share information only with the third-party processors that make the Service work:
- Twilio — phone calls, SMS confirmations.
- Google — reading calendar free/busy availability and creating, updating, and cancelling appointment events, only on the calendar you connect.
- Deepgram — real-time speech-to-text transcription.
- ElevenLabs — text-to-speech for the AI's voice.
- Groq — language model inference (the AI's brain).
- SendGrid — email delivery for confirmations and notifications.
- Stripe — payment processing.
- Supabase — encrypted database and authentication.
Each processor has been chosen for its security posture and has its own privacy policy. We sign data processing agreements where applicable.
5. Google User Data and Limited Use
When a Subscriber connects a Google account, we access their Google Calendar via the https://www.googleapis.com/auth/calendar scope, used only to (a) read free/busy availability so the AI agent can offer open times, and (b) create, update, and cancel the appointment events the agent books. We access only the calendar of the account the Subscriber explicitly connects — never callers' calendars.
We store only the OAuth tokens needed for this connection, encrypted at rest. A Subscriber can disconnect Google Calendar at any time from their dashboard, which deletes the stored token.
TradeVoiceServices' use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. In particular:
- We use Google user data only to provide and improve the appointment-booking features described above.
- We do not transfer or sell Google user data to third parties, except as necessary to provide the Service, to comply with law, or as part of a merger or acquisition.
- We do not use Google user data for advertising.
- We do not allow humans to read Google user data except with the user's consent, for security (for example, investigating abuse), to comply with law, or when the data is aggregated or anonymized for internal operations.
- We do not use Google user data to train, develop, or improve generalized AI/ML models.
6. Where Data Is Stored
Subscriber and Caller data is stored in the United States (Supabase US regions). Some processors may transmit data through their global infrastructure during call handling; transcripts and bookings are retained only in our US-based systems.
7. Retention
- Call transcripts and booking data are retained for as long as your subscription is active, plus 12 months thereafter, unless you request earlier deletion.
- Account information is retained while your account is active.
- Payment records are retained as required by tax and accounting laws (typically 7 years).
8. Security
We use industry-standard security practices: TLS in transit, encryption at rest, row-level security on the database, scoped OAuth tokens with the minimum necessary scopes, and access controls on internal systems. No system is perfectly secure; if you believe your account has been compromised, contact us immediately.
9. Your Rights
9.1 All Users
You have the right to access, correct, or delete your data. To exercise these rights, email gabriel@tradevoiceservices.com. We will respond within 30 days.
9.2 California Residents (CCPA / CPRA)
If you are a California resident, you have additional rights:
- The right to know what personal information we collect, use, and disclose.
- The right to delete your personal information, subject to certain exceptions.
- The right to correct inaccurate personal information.
- The right to opt out of the sale or sharing of personal information. We do not sell your personal information.
- The right to non-discrimination — exercising these rights will not affect your service or pricing.
9.3 Callers
Callers whose data was collected via a Subscriber's TradeVoice line may contact us to request deletion of their data. We will coordinate with the Subscriber to honor such requests.
10. Cookies
We use first-party cookies for authentication and session management. We do not use third-party advertising or analytics cookies on authenticated pages. We may use minimal first-party analytics (page-view counts) on marketing pages to improve the website.
11. Children's Privacy
The Service is intended for businesses and is not directed at children under 13. We do not knowingly collect personal information from children.
12. Changes to This Policy
We may update this policy from time to time. Material changes will be communicated by email at least 14 days before they take effect.
13. SMS / Text Messaging Program
As part of the Service, we send transactional text messages on behalf of Subscribers to Callers who schedule an appointment through a Subscriber's AI phone line. This section describes that messaging program and your choices.
13.1 Types of Messages
- Appointment confirmations sent when a booking is made.
- Appointment reminders sent before a scheduled appointment (for example, 24 hours and 1 hour beforehand).
- New-booking notifications sent to the Subscriber (the business owner).
13.2 How Consent Is Obtained
Callers opt in to receive these messages verbally during the phone call, at the time they provide their mobile number to schedule a service. We do not purchase phone numbers and do not obtain them from third-party or rented lists. Message frequency varies based on appointment activity. Message and data rates may apply.
13.3 Opting Out and Help
You may opt out of text messages at any time by replying STOP to any message; you will receive a single confirmation and no further texts. Reply HELP for assistance, or contact us at gabriel@tradevoiceservices.com. Opting out of text messages does not affect your ability to be contacted by phone or email about your appointment.
For a standalone summary of this messaging program and the verbal opt-in, see our SMS Consent & Messaging Terms.
13.4 We Do Not Share Mobile Information for Marketing
No mobile information — including phone numbers — and no SMS opt-in or consent data is shared with, sold to, or rented to any third parties or affiliates for marketing or promotional purposes. Phone numbers and consent records are used solely to deliver the appointment-related messages described above. We share this information only with the communications provider that transmits the messages on our behalf (Twilio), strictly for message delivery and never for that provider's own marketing. SMS opt-in and consent data is excluded from any other sharing described in this Privacy Policy.
14. Contact
Questions or privacy requests: gabriel@tradevoiceservices.com
Rebeiz Holdings LLC
San Diego, California, USA