Privacy Policy

What we store

Call audio, transcripts, structured AI summaries, caller phone numbers, and the metadata required to run the service (your account email, organization, plan). We use this data exclusively to operate Pivex for your organization.

Where it’s stored

Database and authentication are hosted on Supabase. Call recordings are stored in object storage with at-rest encryption. Network transport is TLS only. Data is partitioned per organization with row-level security so other Pivex customers cannot access your data.

Retention

You set the retention window in Settings → Recording retention. Recordings older than the window are permanently deleted nightly. Transcripts and summaries follow the same window unless you opt otherwise.

Sub-processors

Pivex relies on Vapi (voice infrastructure), Twilio (telephony), OpenAI / Anthropic (LLM inference), Cal.com (booking), and Supabase (DB + auth). We do not share your data with anyone outside this stack.

Your rights

You can export or delete your organization’s data at any time by emailing privacy@pivex.ai. Account deletion removes all associated calls, bookings, and messages.

Placeholder text — to be replaced with the lawyer-reviewed Privacy Policy before production billing goes live.