1. Who we are
Voxera, Inc. is a Delaware corporation headquartered in San Francisco, California, with an engineering and operations team in Sfax, Tunisia. References to "Voxera," "we," "us," and "our" mean Voxera, Inc.
This policy explains what data we collect when you use this website (usevoxera.com), our app, and any related services (together, the "Service").
2. What we collect
2.1 You give us
- Account data: name, email, company name, role.
- Workspace data: the leads, contacts, calls, messages, notes, and recordings you put into Voxera. This is yours; we process it on your behalf.
- Billing data: handled by Stripe — we never see card numbers.
- Communications: emails you send us, support tickets, beta-signup form submissions.
3.2 We collect automatically
- Product analytics: which pages and features you use, error reports. We use Google Analytics 4 with anonymized IPs, and only after you accept the cookie banner.
- Server logs: IP, user agent, timestamps, paths. Retained 30 days for security and debugging.
3. Why we process it
- To run the Service — perform the contract you signed up for.
- To support and improve the Service — our legitimate interest in operating a working product.
- To bill you — required to collect payment.
- To meet legal obligations — tax, accounting, lawful requests.
- To send product updates — only with your consent; you can opt out any time.
4. GDPR status
We are working toward full GDPR compliance, not claiming it yet. What's in place today:
- Opt-in marketing only. Analytics fire only after consent.
- Right to access, correct, export, and delete your data — email privacy@usevoxera.com and we'll handle it in under 30 days.
- Data Processing Addendum available on request for customers.
- EU data residency option: workspace data can be pinned to Frankfurt or Amsterdam at workspace setup.
What's on the roadmap, not yet done: SOC 2 Type II, ISO 27001, formal DPIA documentation, EU representative appointment.
5. Who we share data with
We use a small set of subprocessors. Current list:
- Stripe — payments
- Cloudflare — hosting, DNS, CAPTCHA (Turnstile)
- Google — Analytics (only after consent), Workspace email
- OpenAI / Anthropic — LLM inference for the AI agents you configure
- Twilio — call origination and transcription
- Postmark / Resend — transactional email
We do not sell your data. We do not share it with advertisers.
6. How long we keep it
- Workspace data: as long as your account is active. 30 days after you cancel, we delete or anonymize it. Export anytime before that.
- Call recordings and transcripts: 90 days by default; configurable per workspace.
- Beta-signup emails (people who joined the waitlist): until we onboard you or until you ask to be removed.
- Server logs: 30 days.
7. Your rights
Depending on where you live, you have the right to access, correct, port, delete, restrict, or object to our processing of your personal data. EU/UK residents have these rights under GDPR; California residents have analogous rights under CCPA/CPRA.
To exercise any of these rights, email privacy@usevoxera.com. We respond within 30 days. There's no cost.
8. Security
What we do today:
- Encryption at rest (AES-256) and in transit (TLS 1.3).
- Workspace isolation at the database level.
- Role-based access controls.
- Quarterly review of subprocessor access.
What we don't yet have: SOC 2 / ISO 27001 attestation. We'll update this section when that changes.
9. Cookies
We set a single cookie (voxera-consent) to remember whether you accepted analytics. Until you accept, no analytics fire. You can revoke consent any time by clearing site data or running window.VoxeraAnalytics.resetConsent() in your browser console.
10. Children
Voxera is a B2B product. We do not knowingly collect data from children under 16.
11. Changes to this policy
If we materially change this policy we'll notify customers by email at least 30 days before it takes effect. Non-material updates (a typo, a clearer sentence) are posted here with a new "Last updated" date.
Questions about your data, this policy, or how we handle GDPR/CCPA requests:
Voxera, Inc.
Privacy: privacy@usevoxera.com
Security: security@usevoxera.com
San Francisco, CA · Sfax, Tunisia