Skip to content

Legal

Privacy Policy

What personal data we collect, why we collect it, how we keep it secure, and the rights you have over it.

Last updated · June 2026

This Privacy Policy explains how TelVox collects, uses, shares and protects personal data when you visit telvox.dev, request a demo, contact us, or subscribe to updates. It also describes the rights you have over your personal data and how to exercise them. It does not cover how customers process personal data inside the TelVox platform as our customer — in those cases our customer is the controller and we act as a processor under a Data Processing Agreement (DPA).

Who we are

For the purposes of UK and EU data protection law, the controller of the personal data described in this policy is [TelVox legal entity name] (“TelVox”, “we”, “us”), operating the website at telvox.dev. You can reach us about privacy at privacy@telvox.dev. Our registered office is [registered office address] and we are established in [jurisdiction].

Information we collect

We aim to collect only what we need. The personal data we hold about you falls into the following categories.

  • Form submissions. When you request a demo or contact us, we collect the details you provide — your name, work email, company, the topic of your enquiry and your message. These are sent to our request endpoint and either forwarded to an internal notification channel or logged so our team can respond.
  • Newsletter sign-ups. If you subscribe to updates, we collect the email address you provide.
  • Technical & log data. Like most websites and services, our infrastructure automatically records technical data such as your IP address, user-agent (browser and device), the pages or endpoints requested, referring URLs and timestamps. We use this to operate the site, keep it secure and diagnose problems.
  • Locally-stored preferences.Your theme preference (light or dark) and your cookie-consent choice are stored in your browser’s localStorage on your own device. They are not transmitted to us as identifiers and stay under your control — see our Cookie Policy.

No third-party tracking. We do not currently use any third-party analytics, advertising or cross-site tracking technologies, and we do not build advertising profiles or sell personal data.

How we use your information

We use the personal data described above to:

  • respond to your enquiries, schedule and run product demos, and provide you with the information you ask for;
  • send you the updates you have subscribed to, and let you unsubscribe at any time;
  • operate, maintain, secure and improve our website and services, including detecting, preventing and investigating fraud, abuse and security incidents;
  • carry out legitimate business operations such as record-keeping, analysing demand for our products, and meeting our legal and regulatory obligations.

Under UK and EU GDPR we rely on the following legal bases, depending on the activity:

  • Consent — for sending you marketing updates by email where consent is required. You can withdraw consent at any time, for example by using the unsubscribe link or contacting us.
  • Legitimate interests — for responding to enquiries, securing and improving the site, and running our business, where those interests are not overridden by your rights and freedoms.
  • Steps to enter into a contract — for handling demo requests and pre-sales conversations you initiate with us.
  • Legal obligation — where we must process data to comply with a legal or regulatory requirement.

Sharing & subprocessors

We do not sell your personal data, and we do not share it with third parties for their own marketing. We do rely on a small set of trusted service providers (subprocessors) to operate — for example cloud hosting, object storage, transactional email and messaging providers. These providers process personal data only on our instructions and under appropriate contractual safeguards. You can review the categories we use on our subprocessors page.

We may also disclose personal data where required to comply with the law, enforce our agreements, or protect the rights, safety and property of TelVox, our users or others.

International transfers

Where personal data is transferred outside the UK or the European Economic Area, we put in place [appropriate safeguards / Standard Contractual Clauses] — such as the UK International Data Transfer Agreement or the EU Standard Contractual Clauses, together with any supplementary measures required — so that your data continues to receive an equivalent level of protection.

Data retention

We keep personal data only for as long as we need it for the purposes described in this policy. Enquiry and demo-request records are retained for as long as needed to respond and to manage the resulting business relationship; newsletter data is kept until you unsubscribe; and technical log data is kept for a limited period for security and operational purposes. Retention periods inside the TelVox platform are configurable and governed by our agreement with the relevant customer. When data is no longer required, we securely delete or anonymise it.

How we protect your data

Security is engineered into TelVox from the ground up. Stored data is protected with AES-256-GCM encryption at rest, sensitive operations are recorded on an append-only audit trail, and data is held under org-scoped tenant isolationso that one organisation can never access another’s records. Access is governed by short-lived credentials and least-privilege controls, and data in transit is encrypted with TLS. You can read more on our Security page. No method of transmission or storage is ever completely secure, but we work hard to protect your data and to respond quickly if something goes wrong.

Your rights

Subject to the conditions in UK and EU GDPR, you have the right to:

  • access the personal data we hold about you;
  • rectify data that is inaccurate or incomplete;
  • eraseyour data (the “right to be forgotten”) in certain circumstances;
  • restrict or object to certain processing, including direct marketing;
  • receive your data in a portable format (portability); and
  • withdraw consent at any time, without affecting processing carried out before withdrawal.

To exercise any of these rights, email privacy@telvox.dev— we will respond within the timeframes required by law. You also have the right to lodge a complaint with a supervisory authority (in the UK, the Information Commissioner’s Office; in the EU, your local data protection authority). We would, however, appreciate the chance to address your concerns first.

Cookies

We use only essential, locally-stored preferences today — we do not use analytics or advertising cookies. For the full breakdown, see our Cookie Policy.

Children’s privacy

Our website and services are intended for businesses and are not directed to children. We do not knowingly collect personal data from anyone under the age of 16. If you believe a child has provided us with personal data, please contact us and we will delete it.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology or legal requirements. When we do, we will revise the “last updated” date above and, where appropriate, notify you. We encourage you to review this page periodically.

Contact us

For any questions about this policy or how we handle your personal data, contact us at privacy@telvox.dev. Our Data Protection Officer can be reached at dpo@telvox.dev [Data Protection Officer — name & email].