Privacy Policy
Last Updated: January 28, 2026
KC-SAAS ("Company", "we", "us", or "our") is committed to protecting your privacy.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you
use our AI-powered voice communication and business automation platform, including our website,
applications, and services (collectively, the "Service").
By using the Service, you consent to the data practices described in this Privacy Policy.
1. Information We Collect
We collect information in several ways when you use our Service.
1.1 Information You Provide to Us
(a) Account Information
- First and last name
- Email address
- Phone number
- Username and password
- Profile picture or avatar
- Time zone and language preferences
(b) Business Information
- Business name and legal entity details
- Business email and phone number
- Business address and postal code
- Industry and company size
- Website URL
- Business logo and branding assets
(c) Contact and Lead Data
- Names, emails, and phone numbers
- Company and job title information
- Physical addresses
- Birthdays and personal dates
- Tags, notes, and custom fields
- Lead scores and statuses
- Communication history and activity logs
(d) Communication Content
- Call recordings and transcripts
- Email, SMS, and chat content
- Documents and uploaded files
- Forms and survey responses
(e) Payment Information
- Billing name and address
- Payment card details (processed via Stripe)
- Transaction history
- Subscription information
1.2 Information Collected Automatically
(a) Usage Data
- Features accessed and actions taken
- Call duration and frequency
- Login times and session length
- Error logs and performance data
(b) Device & Technical Information
- IP address
- Browser type and version
- Operating system
- Device identifiers
- Screen resolution and device type
(c) Analytics Data
- Page views and navigation paths
- Click patterns and interactions
- Conversion metrics
- Performance analytics
1.3 Information from Third-Party Sources
(a) OAuth Integrations
- Google: Calendar data, email metadata, contacts, profile info
- HubSpot: Contacts, companies, deals
- Slack: Workspace and user data
- Other integrations: Data required for functionality
(b) Telecommunications Providers
- Call metadata
- Phone number verification
- Carrier information
2. How We Use Your Information
- Create and manage accounts
- Process billing and transactions
- Enable calls, messaging, and automation
- Store and organize contacts and data
- Analyze usage and improve performance
- Provide customer support and updates
- Prevent fraud and enhance security
- Comply with legal obligations
3. How We Share Your Information
3.1 Service Providers
- Stripe – Payments
- Twilio – Voice, SMS, phone services
- LiveKit – Voice infrastructure
- Supabase – Database and authentication
- OpenAI – AI processing
- Deepgram – Speech-to-text
- Cartesia – Text-to-speech
- Sentry – Error monitoring
- Email providers – Transactional emails
3.2 Third-Party Integrations
Data sharing is governed by your authorization and third-party privacy policies.
3.3 Business Transfers
Your data may be transferred during mergers or acquisitions.
3.4 Legal Requirements
We may disclose data to comply with law or protect rights, safety, and security.
3.5 With Your Consent
We share data when you explicitly authorize us to do so.
3.6 Agency & Sub-Accounts
Agency account holders may access sub-account data for administration.
4. Google API Services Disclosure
4.1 Google User Data Usage
- Google Calendar – Scheduling and bookings
- Gmail – Email sending and metadata
- Google Sheets – Data import/export
4.2 Limited Use Compliance
- Used only for stated purposes
- No advertising use
- No human access without consent or legal need
- No unauthorized third-party sharing
4.3 Retention
Google data is retained only as long as needed and can be revoked at any time.
5. Data Retention
- Account data: Active + up to 3 years
- Call recordings: Up to 1 year by default
- Payment records: 7 years
- Usage logs: Up to 2 years
- Marketing communications: Until opt-out
6. Data Security
- TLS/SSL encryption
- Encrypted data at rest
- Access controls and authentication
- Security monitoring and assessments
- Employee security training
No system is 100% secure.
7. Your Rights and Choices
- Access and portability
- Correction of inaccurate data
- Deletion requests
- Marketing opt-out
- Integration controls
- Data export
8. Cookies and Tracking
- Essential cookies
- Analytics cookies
- Functionality cookies
- Marketing cookies (if applicable)
We do not currently respond to “Do Not Track” signals.
9. International Data Transfers
Your data may be processed outside your country, including the United States, with appropriate safeguards.
10. Children’s Privacy
The Service is not intended for users under 18. We do not knowingly collect children’s data.
11. California Privacy Rights (CCPA)
California residents have rights to access, delete, and opt out of data sale (we do not sell personal data).
12. European Privacy Rights (GDPR)
Legal Bases: Contract, legitimate interests, legal obligation, consent.
Additional Rights: Restriction, portability, objection, withdrawal of consent, complaints.
Data Controller: KC-SAAS
13. Telecommunications Data
We collect call recordings, transcripts, metadata, and participant information.
You are responsible for obtaining lawful consent and AI disclosure where required.
14. Changes to This Policy
We may update this Privacy Policy and will notify you via the website, email, or Service notice.
15. Contact Us
KC-SAAS
Email: privacy@kc-saas.com
Support: support@kc-saas.com
Website: https://kc-saas.com
Data Protection Officer (GDPR)
Email: dpo@kc-saas.com
16. Additional Disclosures
AI & Machine Learning. Used for voice agents, transcription, analytics, and Service improvements.
Aggregated Data. Non-identifiable data may be used for analytics and research.
Third-Party Links. We are not responsible for external privacy practices.
By using the Service, you acknowledge that you have read, understood, and agree to this Privacy Policy.