Privacy Policy

Last updated: June 18, 2026

1. Introduction

Kallglot ("we", "us", "our") provides real-time voice translation and telephony services. We only collect information required to operate the service, meet legal obligations, and support customers. This Privacy Policy describes the data we collect, how we use it, how we share it, and your rights.

1.1 Data Roles and Controller Information

Kallglot generally acts as a processor for customer call content, recordings, transcripts, translations, and related service data. Customers generally act as controllers for that data. Kallglot acts as an independent controller for limited business and operational data such as account administration, billing, security logs, abuse prevention, business communications, and required regulatory records. The Kallglot entity responsible for that controller data is:

Bridge Innovations LLC, 600 North Broad St, Suite 5 #4128, Middletown, DE 19709, USA

EU Representative (Article 27 GDPR): legal@kallglot.com — Spain (EU)

Contact: privacy@kallglot.com

2. Data We Collect

2.1 Account Information

  • Name
  • Email address
  • Phone number
  • Password (hashed)
  • Organization details (if applicable)

2.2 Company Information (Onboarding)

Some countries require verification before phone numbers can be provisioned. When necessary, we collect:

  • Company name
  • Company address
  • VAT or tax ID
  • Registered business documents
  • Proof of address
  • Authorized representative details
  • Industry and company size

This is collected only when required by telecommunication regulations.

2.3 Service Data (Telephony + Translation)

To provide real-time translation and call services we process:

  • Phone numbers involved in a call
  • Temporary audio streams (not stored unless recording is enabled)
  • Transcripts
  • Call metadata (duration, timestamps, direction)
  • Agent activity logs

2.4 Billing Information

Handled primarily by Stripe. For enterprise contracts we may collect:

  • Billing address
  • VAT/tax ID
  • Purchase order numbers
  • Billing contact details
  • Bank transfer details (IBAN/SWIFT)

2.5 Communication Data

Any emails, support messages, or conversations you send to us.

2.6 Cookies

We use only essential cookies required for the service to function (e.g. session cookies for authentication). We do not use tracking cookies, advertising cookies, or third-party analytics cookies. No cookie consent banner is required because we only use strictly necessary cookies.

3. What We Don't Do

To be clear about our approach to your data:

  • We do not sell your data to anyone
  • We do not use your data for advertising or profiling
  • We do not use customer call content, recordings, transcripts, translations, or voice data to train Kallglot-owned models by default. Any future customer-data-based model improvement will require customer opt-in, appropriate terms, and privacy safeguards
  • We do not share data with data brokers
  • We do not track you across other websites
  • We do not use third-party analytics that track individual users

4. How We Use Data

We use data for the following purposes:

  • To deliver and maintain our services
  • To translate calls in real time
  • To route calls and manage telephony
  • To authenticate users
  • To comply with telecom regulations in certain countries
  • To send security alerts, updates, and support messages
  • To improve stability, accuracy, and product performance
  • To generate usage analytics for the organization using Kallglot

5. Legal Bases (GDPR)

We rely on:

  • Contractual necessity (Art. 6(1)(b) GDPR) – to deliver the service you signed up for
  • Legitimate interest (Art. 6(1)(f) GDPR) – security, fraud prevention, service improvement
  • Legal obligation (Art. 6(1)(c) GDPR) – regulatory and telecom compliance
  • Consent (Art. 6(1)(a) GDPR) – only where explicitly required

6. Data Sharing

6.1 Sub-processors

We use third-party providers to operate Kallglot. They are listed in the Sub-processor List. DPAs are available where required.

6.2 Compliance Requirements

Some telecom providers require company documents to approve number provisioning. We share documents only when legally required.

6.3 Legal Requests

We may disclose data in response to lawful governmental or regulatory requests. We push back against overly broad or invalid requests.

7. Security

We use industry-standard security measures, including:

  • Encryption in transit (TLS 1.2+) and at rest (AES-256)
  • Role-based internal access controls
  • Audit logging
  • Strong authentication
  • EU-hosted core infrastructure where supported, with provider locations disclosed through the Trust Center

7.1 Data Regions

Organization administrators can select EU, US, or Global processing preferences. The selected region influences call processing, provider routing, and storage-at-rest preferences where technically supported. Some telephony, AI, transcription, translation, or voice services may have regional limitations based on language, feature availability, provider capability, or fallback routing.

8. Retention

We keep data only as long as necessary:

  • Call recordings: 30 days by default (configurable by customer)
  • Transcripts: 90 days by default (configurable by customer)
  • Call metadata: 365 days by default (configurable by customer)
  • Account data: until account deletion
  • Billing/invoice data: as required by tax law (typically 7-10 years)
  • Compliance/KYC documents: only as long as required by telecom regulations
  • Backups: encrypted and used only for resilience and disaster recovery; deleted data may remain until backups expire or are overwritten under the normal backup lifecycle

9. Your Rights (GDPR)

Under the GDPR, you can request:

  • Access – obtain a copy of your personal data
  • Correction – fix inaccurate data
  • Deletion – have your data erased
  • Restriction – limit how we process your data
  • Objection – object to processing based on legitimate interest
  • Data portability – receive your data in a machine-readable format

To exercise your rights, contact privacy@kallglot.com. We will respond within 30 days.

You also have the right to lodge a complaint with a supervisory authority in your EU member state.

10. Governing Law

This Privacy Policy is governed by the laws of Spain and the European Union, including the General Data Protection Regulation (GDPR).

11. Contact

Email: privacy@kallglot.com

GDPR Compliance Information

For detailed information about our GDPR compliance, data protection measures, legal entities, and EU-focused operations, visit our dedicated GDPR compliance page.

View GDPR Compliance Page