Privacy Policy
Last Updated: April 16, 2026 Effective Date: April 16, 2026
Bizangle, LLC ("Bizangle," "we," "us," or "our") respects your privacy. This Privacy Policy describes how we and our affiliate Phatlinks collect, use, share, and protect personal information when you use our websites, mobile applications (including the Bizangle iOS and Android apps), APIs, voice and messaging services, and related products and services (collectively, the "Service").
This Policy is incorporated into our Terms of Service. Capitalized terms not defined here have the meanings given in the Terms. If you do not agree with this Policy, do not use the Service.
1. Who We Are
The controller of your personal information is:
Bizangle, LLC 1343 Main Street, Suite 705 Sarasota, FL 34236 Email: support@bizangle.com
Bizangle operates jointly with Phatlinks and its affiliates (collectively, the "Bizangle Group"). References to "we" include the Bizangle Group to the extent each entity processes your information.
2. Information We Collect
We collect the following categories of personal information:
2.1 Information You Provide
- Account Information: name, email, phone number, business name, business type, industry, billing address, payment method (processed by Stripe).
- Profile and Onboarding Data: personality assessment answers, business hours, service areas, contact preferences, SIP extension name.
- Communications: messages you send to us (support tickets, chat with our AI assistant, call recordings during onboarding).
- Uploaded Content: documents, images, PDFs, customer lists, and other files you upload to your knowledge base.
- Website Content: pages we crawl from your company website at your direction.
2.2 Information Generated Through Use
- Voice Calls: audio recordings, real-time audio streams, transcripts, caller phone numbers, called phone numbers, call duration, call direction, call outcomes (answered, transferred, message taken, escalated), SIP metadata, and derived signals (sentiment, topic).
- SMS and Email Messages: message bodies, sender/recipient identifiers, timestamps, conversation threads, and auto-replies generated by AI agents.
- AI Agent Interactions: prompts you send, AI outputs, tool-call inputs and outputs, conversation history, and memory/context used to personalize responses.
- Calendar and Appointment Data: events created, modified, or read through integrations.
- Caller Memory: facts, preferences, promises, and sentiment associated with specific phone numbers across calls, SMS, and email.
- Usage Data: features used, screens viewed, buttons tapped, session length, tokens consumed, billing events, errors, and diagnostic logs.
- Device Data: device type, operating system and version, app version, IP address, push-notification tokens (APNs / FCM), approximate device locale.
2.3 Information from Third Parties
- Google (OAuth): email (Gmail) and calendar data when you connect your Google account.
- Stripe: limited payment status (successful charge, failure, subscription state); full payment card numbers are never stored by Bizangle.
- VoIP.ms: call detail records, DID routing information.
- ElevenLabs and Groq: conversation IDs, call SIDs, usage metadata.
- Apple Push Notification Service and Firebase Cloud Messaging: delivery status of push notifications.
- Publicly Available Sources: information from the websites you direct us to crawl.
- FCC Complaint Data: phone numbers reported to the FCC for spam/robocall classification (used to protect all users of the Service).
2.4 Optional Permissions (Mobile App)
- Contacts: if you grant permission, we access your phone contacts so the assistant can help with contact-aware tasks.
- Location: if you grant permission, we may access coarse or precise location for features you request (e.g., directions, location-aware assistant responses).
- Microphone / Camera: used for voice conversations with the assistant and for media attachments.
- Notifications: used to deliver push alerts for incoming calls, messages, and escalations.
You may revoke these permissions at any time in your device settings; some features will stop working.
2.5 Cookies and Similar Technologies
On our websites, we use strictly necessary cookies for authentication and session management, and a limited set of analytics cookies to measure usage. We do not use cross-site advertising trackers. You can control cookies through your browser settings.
3. How We Use Information
We process personal information for the following purposes:
- Provide the Service: authenticate you, route calls and messages, run AI agents, process payments, deliver notifications, store and search your knowledge base, and personalize assistant behavior.
- Improve the Service: debug, monitor quality, measure latency and error rates, train internal quality heuristics, and develop new features. We may use aggregated or de-identified data for these purposes without restriction.
- Communications: send operational emails (account notices, billing receipts, security alerts, changes to terms or policy). We do not send marketing emails without your consent.
- Fraud and Abuse Prevention: detect and block spam, robo-callers, unauthorized access, and violations of our Acceptable Use Policy.
- Legal Compliance: comply with subpoenas, court orders, regulatory requests, tax obligations, and applicable laws (including TCPA, CAN-SPAM, wiretap statutes, CCPA/CPRA, and GDPR).
- Enforce Our Agreements: investigate suspected breaches of our Terms of Service.
- Corporate Transactions: evaluate, negotiate, or complete a merger, acquisition, financing, reorganization, or sale of assets.
3.1 AI Training
We do not sell your User Content to third parties for training general-purpose AI models. We may use your User Content to fine-tune AI models that operate within your account, and we may use aggregated, de-identified, and anonymized data to improve our shared infrastructure. Your raw call recordings, transcripts, SMS, and email content are not used to train any third-party foundation model.
4. Legal Bases for Processing (GDPR / UK GDPR)
If you are in the European Economic Area, United Kingdom, or Switzerland, we rely on the following legal bases:
| Processing Purpose | Legal Basis |
|---|---|
| Providing the Service you signed up for | Performance of a contract (Art. 6(1)(b)) |
| Billing and payments | Performance of a contract and legal obligation (Art. 6(1)(b), (c)) |
| Fraud prevention, security | Legitimate interests (Art. 6(1)(f)) |
| Service improvement, analytics | Legitimate interests (Art. 6(1)(f)) |
| Marketing communications | Consent (Art. 6(1)(a)) — you may withdraw at any time |
| Compliance with subpoenas, tax law | Legal obligation (Art. 6(1)(c)) |
Where we rely on legitimate interests, we have balanced those interests against your rights and freedoms; you may object as described in Section 8.
5. How We Share Information
We do not sell personal information. We share personal information only with the following categories of recipients:
5.1 Service Providers (Processors)
We use vetted third parties to operate the Service. Each is contractually bound to process data only on our instructions and to maintain appropriate security.
| Provider | Purpose | Data Categories |
|---|---|---|
| Stripe | Payment processing, subscription management | Name, email, billing address, last-4 / brand of card |
| Amazon Web Services / hosting | Infrastructure, storage, backups | All data stored on our systems |
| ElevenLabs | Voice AI (speech-to-text, LLM, text-to-speech, managed agents) | Call audio, transcripts, agent configuration |
| Groq | Optional alternative voice AI pipeline | Call audio, transcripts |
| OpenAI | Background LLM tasks (signal extraction, content categorization) | Conversation excerpts, uploaded documents (processed, not stored) |
| VoIP.ms | Phone-number routing, SIP trunking | Caller/called numbers, call duration |
| Twilio / SMS carrier partners | SMS delivery (where applicable) | Phone numbers, message bodies |
| Apple APNs / Google FCM | Push notification delivery | Push tokens, minimal notification payload |
| Google (via OAuth) | Gmail, Calendar integrations you connect | Only the scopes you grant |
| Qdrant | Vector storage for the knowledge base | Document embeddings, chunk text |
| Sentry or similar error-monitoring | Application diagnostics | Crash reports, stack traces, partial request data |
We update this list as providers change. Contact support@bizangle.com for the current, exhaustive list.
5.2 Affiliates
We share information with Phatlinks and its affiliates under this Policy for shared infrastructure, customer support, analytics, and security.
5.3 Legal and Safety
We may disclose information if required by law, legal process, or governmental request; to enforce our agreements; to protect the rights, property, or safety of Bizangle, our users, or the public; or to detect and prevent fraud, abuse, or security incidents.
5.4 Corporate Transactions
If Bizangle is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, personal information may be transferred as part of that transaction. We will notify affected users and post a notice in the Service.
5.5 With Your Direction
We share information as you direct — for example, by transferring a call to a human, sending an SMS from your account, posting to your calendar, or forwarding an email.
6. International Data Transfers
We are based in the United States and our service providers are located globally. If you access the Service from outside the U.S., your information will be transferred to and processed in the United States and other countries that may have different data-protection laws than your jurisdiction.
For transfers from the EEA, UK, or Switzerland to the United States, we rely on appropriate safeguards, including the European Commission's Standard Contractual Clauses and supplementary measures where required. You may request a copy of our SCCs by emailing support@bizangle.com.
7. Data Retention
We retain personal information for as long as your account is active and as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce our agreements.
Typical retention periods:
| Category | Retention |
|---|---|
| Account profile | Life of account + 90 days |
| Call recordings & transcripts | 12 months, then deleted unless legal hold |
| SMS & email content | 12 months |
| Billing records | 7 years (tax / audit compliance) |
| Security logs | 12 months |
| Anonymized analytics | Indefinite |
| Backups | Up to 90 days after deletion from primary systems |
You may request earlier deletion as described in Section 8.
8. Your Rights
Depending on where you live, you have some or all of the following rights:
- Access — ask what personal information we hold about you and receive a copy.
- Correction — ask us to fix inaccurate or incomplete data.
- Deletion — ask us to delete your personal information.
- Portability — receive your data in a portable, machine-readable format.
- Restriction — ask us to limit processing in certain circumstances.
- Objection — object to processing based on legitimate interests.
- Withdrawal of Consent — where processing is based on consent, withdraw it at any time.
- Complaint — lodge a complaint with a supervisory authority.
To exercise these rights, email support@bizangle.com from the email on file for your account, or use the privacy controls in your account settings. We will verify your identity before responding and will respond within the time frame required by applicable law (generally 30 days for GDPR and 45 days for CCPA).
We will not discriminate against you for exercising your rights.
9. California Residents (CCPA / CPRA)
This Section applies to California residents and supplements the rest of this Policy. In the past 12 months we have:
- Collected these CCPA categories of personal information: identifiers (name, email, phone, IP address); customer records (billing address, payment info); commercial information (subscription data); internet/network activity; geolocation (coarse, if granted); audio data (call recordings); professional/business information; and inferences (personality traits, preferences).
- Sources: directly from you; generated through your use; third parties (Stripe, Google, VoIP.ms, ElevenLabs, FCC data); device sensors where permitted.
- Business Purposes: providing the Service, security, debugging, fraud prevention, marketing (only where consented), compliance.
- Disclosed for business purposes to the service providers listed in Section 5.1.
- Sold or shared for cross-context behavioral advertising: No. We do not sell your personal information and do not share it for targeted advertising.
9.1 Your California Rights
- Right to know, delete, correct, and port your personal information.
- Right to opt out of sale/sharing (not applicable — we do none).
- Right to limit use of sensitive personal information. We use sensitive PI (precise location, if granted; audio of voice calls; account credentials) only as reasonably necessary to provide the Service; no additional opt-out is required.
- Right to non-discrimination.
Submit requests via support@bizangle.com or through your account settings. Authorized agents may submit requests on your behalf with a signed authorization.
9.2 "Shine the Light" (California Civil Code § 1798.83)
California residents may request information about our disclosure of personal information to third parties for their direct marketing purposes. We do not make such disclosures.
10. European, UK, and Swiss Residents (GDPR)
In addition to the rights in Section 8, you have the right to lodge a complaint with your local supervisory authority. If you are in the UK, that is the Information Commissioner's Office (ICO); in Ireland, the Data Protection Commission; and so on.
Controller: Bizangle, LLC, 1343 Main Street, Suite 705, Sarasota, FL 34236.
EU/UK Representative: We do not currently have an EU Representative designated under Article 27 GDPR because we do not offer the Service to individuals in the EEA/UK on a large scale. If that changes, we will update this Section. [REVIEW: confirm if any EEA/UK business customers exist; if so, appoint an Art. 27 representative.]
Contact for privacy matters: support@bizangle.com.
11. Children's Privacy
The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If we learn we have collected information from a child under 13, we will promptly delete it. Parents or guardians who believe a child has provided us information may contact support@bizangle.com.
12. Security
We use industry-standard administrative, technical, and physical safeguards, including encryption in transit (TLS) and at rest, access controls, role-based permissions, audit logging, and regular security reviews. No system is perfectly secure, and we cannot guarantee absolute security. If you believe your account has been compromised, contact support@bizangle.com immediately.
13. Automated Decision-Making
The Service uses AI to analyze calls, messages, and other content. While AI output may influence what the Service does (e.g., how it responds to a caller), significant decisions affecting your rights (such as suspending your account) are reviewed by a human. If you believe an automated decision has been made in error, contact support@bizangle.com.
14. Third-Party Websites and Services
The Service links to, and integrates with, third-party websites and services that have their own privacy policies. We are not responsible for those third parties. Review their policies before providing information.
15. Changes to This Policy
We may update this Policy from time to time. The "Last Updated" date at the top reflects the most recent change. Material changes will be communicated in the Service or via email at least seven (7) days before they take effect (or as required by law). Your continued use after the effective date constitutes acceptance.
16. Contact
For questions, concerns, or requests relating to your personal information:
Bizangle, LLC — Privacy 1343 Main Street, Suite 705 Sarasota, FL 34236 support@bizangle.com