Last updated: July 16, 2026
CallBackOrElse ("Company," "we," "us") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our storm-response and AI phone receptionist service ("Service"). Please read this policy carefully.
When you register, we collect: name, email address, phone number, business name, business address, and payment information (processed by Stripe).
When our AI handles calls for your business, we collect: caller phone number, call duration, call recordings, call transcripts, AI-generated summaries and analysis, and caller-provided information (name, address, service requested).
We collect: phone numbers, message content, opt-in/opt-out records, and delivery status for SMS messages sent through the Service. When customers interact with our automated SMS reply system, we may also collect caller-provided information (name, service address, service requested) and store it on the customer's contact record.
By providing your phone number and opting in (either verbally during a call with our AI receptionist or by submitting our online consent form), you agree to receive SMS text messages, and where you have separately indicated AI-powered voice calls, from CallBackOrElse regarding customer care, appointments, and service updates. The following SMS program terms apply:
Carriers are not liable for delayed or undelivered messages. For additional detail on how we capture and log messaging consent, including verbal opt-in during AI calls, see our Messaging Compliance FAQ.
We automatically collect: IP address, browser type, device information, pages visited, referral URLs, and interaction data (clicks, page views).
We use cookies and similar technologies as described in our Cookie Policy.
When you sign in using a third-party authentication provider (Google or Apple), we receive and store: a unique identifier from that provider, your name (if provided), and your email address. We do not receive or store your Google or Apple account password.
When you create an email and password account, we store your email address and a salted, one-way bcrypt hash of your password. We never store the plaintext password and cannot recover it; a forgotten password can only be reset. Your account password is separate from any third-party authentication provider's password.
When a technician creates a field-app login, we store the technician's chosen username and a salted, one-way bcrypt hash of the password. We never store the plaintext password and cannot recover it; a forgotten password can only be reset. The technician username is unique across the Service.
When you contact us — including through the support form on our website, the in-app support chat, or by emailing support@callbackorelse.com — we collect the information you provide: your name, email address, phone number (if provided), the topic you select, and the contents of your message. We use this information only to respond to your inquiry and to maintain a record of support requests. Support form submissions are stored in our Notion workspace (see Section 5) and forwarded by email to our support team. You may submit a support request without holding a CallBackOrElse account.
If you sign in with Apple and choose to use Apple's "Hide My Email" feature, we receive a private relay email address instead of your personal email. We treat this relay address as your account email and do not attempt to obtain your real email address. Service communications sent to the relay address are forwarded by Apple to your personal inbox.
When you use customer-map, storm, traffic, weather, or demand-surge features, we process service addresses, derived latitude/longitude coordinates, map viewport selections, weather-alert areas, forecast-grid locations, and related operational signals so the dashboard can show nearby customers, weather hazards, traffic layers, flood zones, tropical-cyclone overlays, and HVAC demand-surge indicators. We do not collect device GPS location for these features. Where geocoding is enabled, we may send service-address text to the U.S. Census Bureau geocoder and, if configured by us, Photon/OpenStreetMap geocoding services to derive coordinates. Weather and hazard features may send coordinates, grid points, or map-tile requests to the National Weather Service, NOAA, FEMA, and TomTom as described in Section 5.
When this feature is enabled and an inbound caller provides a service address or the call creates a service or appointment record, we may send the caller-provided service address to the Google Address Validation API after the call ends. We use the returned validation verdict and standardized address components only to determine whether the address should be flagged for review by the business account owner before dispatch. This review does not block or change a booking, automatically replace the stored address, or determine whether a call receives emergency handling. A possible correction, an address that cannot be verified, or an unavailable validation service creates an address-review flag for human follow-up.
When a business account owner enables field-app access for an employee or contractor, we process that worker's name, contact information, role, skills, assigned schedule, device display name, and field-app authentication records. The field app displays the customer and job information needed for assigned work, including customer contact information, service address, job notes, scheduled time, parts, and workflow requirements. It records operational events such as arrival, breaks, workflow answers, parts used, completion status, and confirmed technician actions.
Before a technician activates a phone, we display the business name, a summary of the work activity visible to that business, and links to the current Terms of Service and Privacy Policy. We record the technician, business account, approved device, date and time, and document versions associated with the technician's confirmation that the technician is at least 18, is authorized by the business, agrees to the Terms, and acknowledges this Policy. We do not collect a birth date or identity document for this confirmation.
When job-proof features are enabled, authorized users may upload before-and-after job photos and collect a customer's typed name, acknowledgment, and drawn signature image. Uploaded photos are decoded and re-encoded before storage to remove embedded camera and location metadata. Signature images are also re-encoded before storage. We do not use job photos or signatures for biometric identification or template generation. The field app does not collect a technician's device GPS location.
Field-app passkeys use public-key credentials. CallBackOrElse stores the public credential identifier, public key, usage counter, and related security records; a fingerprint, face scan, device passcode, and private cryptographic key remain on the technician's device and are not received or stored by CallBackOrElse.
The technician field-app provisions in this Section 2.10 and Section 3A.5 take effect August 13, 2026.
We do not train artificial intelligence models. CallBackOrElse is not an AI developer. We use third-party AI providers — ElevenLabs (real-time voice and transcription) and OpenAI (post-call analysis and summarization, inbox features, the in-dashboard AI assistant, and the technician field assistant) — to perform inference on call audio, transcripts, and, when you use an assistant, the account data you submit to it (such as your call and lead records, contacts, message drafts, job records, and operational data), on a per-request basis. Those providers process our API requests under their published API terms; in particular, OpenAI does not use API-submitted data to train its models by default (since March 2023), and ElevenLabs does not use customer audio submitted via its API to train its models. We do not run a training pipeline of our own and do not aggregate caller content into a model-training corpus. Improvements to "the Service" in the list above refer to human engineering work — prompt template revisions, code changes, infrastructure tuning — not machine learning on your data.
CallBackOrElse offers operational features that affect how caller data is processed and surfaced. We disclose them here so you and your callers know what happens during a call.
"Storm Mode" is a high-volume incident posture (e.g., severe weather event) that business owners can enable for a defined period. While Storm Mode is active, the AI receptionist uses a Storm-specific agent and a Storm-specific opening disclosure that identifies the AI, names the storm event, and notifies the caller that the call is being recorded (the verbatim disclosure script is published in our Messaging Compliance FAQ). Storm Mode may also enable additional outbound SMS workflows (engagement messages, scheduled engagements, surge digests) to opted-in contacts only. Storm Mode does not change the categories of personal information we collect or disclose; it changes the cadence and triage of how that information is processed.
To help business owners prioritize callbacks, the AI may classify a call as urgent, high-value, or involving a "vulnerable" caller. The vulnerable classification is derived from call content (transcripts and AI-generated tags) and groups the following non-exhaustive tag set: medical, elderly, infant_or_child, and pregnancy. Triage tags also include practical HVAC categories such as no_heat, no_cool, gas_smell, electrical, and similar safety-relevant categories. These classifications are inferences (Section 9A, category K) and, where they reflect health, age, or family status, are treated as sensitive personal information under CPRA § 1798.140(ae) and handled under the use-limitation rules described in Section 9A. Classifications are visible only to the business account owner and authorized members of their account; they are not sold, shared, or disclosed to advertisers, and they are not used to make decisions that produce legal or similarly significant effects on the caller.
Automated Decision-Making Technology (ADMT). The triage and classification system described above constitutes automated decision-making technology as defined under CPRA § 1798.185(a)(16). Classifications are used solely to suggest a callback priority order to the business owner; they do not deny, limit, or condition service to any caller. Human review is available for all classification decisions — the system flags low-confidence classifications for manual spot-check by the business account owner. Callers may request information about the logic involved in the classification by emailing support@callbackorelse.com with the subject line "ADMT Request." Business account owners may review and override any classification in their dashboard.
When a call meets owner-defined or system-defined alert criteria (for example, an emergency-flagged call, a high-value lead, or a missed-call follow-up), the Service may send an alert to the business owner or designated dispatcher containing call metadata and a summary. Alerts are delivered through the channels listed below, each of which is also disclosed in Section 5 as a subprocessor relationship:
The content of an alert is limited to the metadata and summary needed to triage the call (caller phone, business name, urgency flag, AI summary). Full call recordings and transcripts are not transmitted in alerts; they remain accessible only inside your account dashboard.
The in-dashboard AI assistant lets a business account owner review and act on their own account data through a conversational interface. When you use it, the content of your requests and the account data needed to answer them — for example, call and lead records, contacts, message drafts, and revenue or operational data — are sent to OpenAI on a per-request basis to generate a response, under the same no-training terms described in Sections 3 and 4 (OpenAI does not use API-submitted data to train its models by default, and may retain it for up to 30 days for abuse monitoring). The assistant operates only within your own account, surfaces only data you already have access to, and requires your explicit confirmation before it sends any message to your customers or takes other customer-facing actions. It does not create new categories of personal information; it changes how existing account data is processed and surfaced.
Assistant conversations are also stored on our servers so your chat history and the assistant's saved context survive across sessions and devices. This includes your messages, the assistant's responses, a record of the actions you asked it to take, and durable "memories" — business facts and preferences the assistant keeps so it does not re-ask what you have already told it (including details collected during setup, and summaries of calls your AI receptionist handled). Conversation history is retained for 400 days and then deleted automatically; memories are retained until you delete them. You can view and delete individual conversations and memories — or clear all memories at once — from the assistant's History panel in your dashboard. This stored history is separate from the per-request OpenAI processing described above: OpenAI receives conversation content per request under the no-training terms; the stored copy lives in our database under the safeguards in Section 7.
The technician field assistant lets an authorized field worker ask for information about their assigned schedule, jobs, parts, and workflow. When a technician uses it, the technician's request, limited recent conversation context supplied by that phone, and the account or job data needed to answer are sent to OpenAI on a per-request basis under the no-training and retention terms described in Sections 3 and 6. The field assistant is restricted to the technician's business account and assigned field tools. Technician actions that change job state require an explicit confirmation where the product presents one.
CallBackOrElse does not store the technician field-assistant transcript as server-side chat history. The phone holds recent conversation context only in the current app process, and it is lost when that process closes or reloads. We store aggregate daily usage counts and token totals, without prompt or response content, for rate limiting, cost control, and security monitoring.
Calls handled by our AI receptionist may be recorded. All calls include an automated disclosure that: (1) the call may be recorded, and (2) the caller is speaking with an AI assistant. Call recordings are accessible only to the business account owner. Recordings are retained for the duration of your account; see Section 6 for details on what happens after account deletion. You may request earlier deletion of any specific recording or all recordings at any time by contacting support@callbackorelse.com.
Call transcripts may be processed by OpenAI for analysis, summarization, and lead scoring. By default since March 2023, OpenAI does not use API-submitted data to train its models. OpenAI may retain submitted data for up to 30 days for abuse monitoring purposes before deletion. For details, see OpenAI's data usage policies.
We share information with the subprocessors below to deliver the Service. The "Processing location" column reflects each provider's primary processing region as disclosed by the provider; some providers operate global infrastructure and may route traffic through additional regions for redundancy. Where a provider processes outside the United States, see the international-transfers paragraph below this list.
Each subprocessor processes data under its own privacy policy and applicable contractual terms. Transfers of caller information to a Field Service Management provider you have connected (Jobber, HouseCall Pro, or ServiceTitan) are made at your direction as the controller of that data and are governed by your relationship with that provider; under CCPA/CPRA those transfers are not "sales" or "sharing."
We do not sell or share personal information. Some subprocessors listed above (notably OpenAI, ElevenLabs, Stripe, Google, and Apple) operate global infrastructure and may process data outside the United States. The Service itself is operated and hosted in the United States by a US-incorporated company; we are not established in, and do not direct the Service to, the European Economic Area, the United Kingdom, Switzerland, or Canada. See Section 11 for international-user disclosures (including how the CCPA/CPRA disclosures in Sections 9 and 9A apply to California residents who interact with the Service).
The account-closure, automated-deletion, export, and deletion-receipt disclosures in this Section 6 take effect August 14, 2026.
While your account is active, we retain the data we collect (call recordings, transcripts, AI-generated summaries, SMS message content, contact records, technician records, field workflows, and job-proof records) to provide ongoing service: lead history, revenue attribution, dispatcher review, field operations, dispute resolution, and product improvement. Business owners may request deletion of specific call recordings at any time by contacting support@callbackorelse.com. We periodically review our retention practices to align with applicable data minimization requirements.
When paid Service ends, the account enters a 30-day closure window. Operational access is disabled during that window, but an account owner may request an account export, reactivate through a successful payment, or choose immediate deletion. If the account is not reactivated, deletion begins automatically when the closure window ends. Choosing immediate deletion starts the same process without waiting for the remainder of the closure window.
When deletion begins:
Account exports are ZIP archives assembled from the account's available records and private job-proof objects. A ready export may be downloaded for 24 hours. The stored export object is deleted no later than 7 days after it is created. Exports are limited to 100 MB; if an account exceeds that limit, contact support@callbackorelse.com for a supported transfer method.
Deletion removes data from active production systems. Encrypted infrastructure backups may retain residual copies until they expire through the hosting provider's ordinary backup cycle. Backups are access-restricted, are not used to provide the Service after deletion, and any restored data remains subject to the original deletion request.
Technician field-app retention: job schedules, workflow answers, operational activity, job photos, and customer signature records are retained for the duration of the business account unless deleted earlier through an available product or support workflow. Technician usernames and password hashes remain while the login is active and are deleted when all app access is revoked, the technician is deactivated, or the business account is deleted. Passkey credentials and device records remain until revoked or the account is deleted. Technician activation acknowledgments are retained for the duration of the business account and its closure window, then deleted with the technician record. Automated cleanup removes expired passkey challenges and sessions; pseudonymous persistent rate-limit counters are removed within 2 days; single-use activation records are retained for up to 90 days; completed confirmation receipts are retained for up to 90 days; field-app authentication events are retained for up to 180 days; and aggregate field-assistant usage totals are retained for up to 400 days. The technician field-assistant transcript is not stored as server-side chat history. OpenAI may retain API inputs and outputs for up to 30 days under its API data retention terms, subject to legal and security exceptions.
Field Service Management data is treated separately and varies by provider. When you connect a third-party FSM, we sync job and invoice data to attribute revenue and maintain customer matching:
We implement industry-standard security measures including: encryption in transit (TLS 1.2+), access controls, rate limiting on authentication and registration endpoints, regular security audits, and secure hosting infrastructure. We apply application-level encryption-at-rest using AES-256-GCM with a master key managed in our production environment. As of June 2026, this application-level encryption covers: (a) OAuth refresh tokens and API keys for Field Service Management integrations (Jobber, HouseCall Pro, ServiceTitan); (b) AI call transcripts and AI-generated summaries from voice calls; (c) customer service addresses associated with calls and scheduled appointments; and (d) SMS message bodies stored on conversation threads. We continue to extend application- level encryption to additional categories on a rolling basis (authentication provider tokens, additional subprocessor API keys, and webhook signing secrets). Database storage is additionally encrypted at the infrastructure level by our hosting provider.
Technician field-app passwords are stored as salted, one-way bcrypt hashes; session and activation credentials are stored as one-way token hashes; and passkeys are stored as public credentials. Private passkey keys and biometric unlock data remain on the technician's device. Job photos and signature images are stored in private object storage and are available only through authenticated application endpoints. Uploaded job photos are re-encoded before storage to remove embedded camera and location metadata.
No method of transmission over the Internet, or method of electronic storage, is 100% secure.
In the event of a confirmed data breach affecting your personal information, we will notify affected users without undue delay and in any event within the time required by applicable law, targeting notification within 72 hours of discovery where practicable, except where notification within that window is prohibited by law-enforcement instruction, would compromise an active forensic investigation, or where good-faith additional time is required to determine the scope and nature of the breach. The notification will describe (to the extent then known): the categories of information affected, the approximate number of users affected, the steps we have taken to contain and remediate the breach, and the steps you can take to mitigate harm. We will also notify relevant regulatory authorities and applicable State Attorneys General (including those of Florida, Georgia, and Alabama) as required by applicable law.
Internally, our incident-response process triggers an automated alert pipeline to the account owner and the security operator on duty within minutes of detection (via email and SMS), so that human investigation and customer notification can begin immediately.
You have the right to:
To exercise these rights, use the available account settings or email support@callbackorelse.com. Account owners can initiate an export or deletion through the account-closure controls. We send a completion notice to the account email when the automated deletion process finishes.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):
To submit a CCPA request, email support@callbackorelse.com with the subject line "CCPA Request."
For the twelve months preceding the date of this Privacy Policy, we have collected the following statutory categories of personal information defined by Cal. Civ. Code § 1798.140. We provide this taxonomy as a transparency disclosure regardless of whether a given user is a California resident; the same data handling applies to all users. For each category we list the source of the data, the business purpose, the third parties with whom we disclose it, and the retention period.
We do not sell or share personal information. We have not sold or shared (as those terms are defined in Cal. Civ. Code § 1798.140) any personal information in the twelve months preceding the date of this Privacy Policy, and we have not sold or shared any personal information of consumers under sixteen years of age. We do not use or disclose sensitive personal information for any purpose other than those permitted under Cal. Civ. Code § 1798.121(a).
In addition to California, more than twenty U.S. states have enacted comprehensive consumer data privacy laws as of the date of this Privacy Policy, including Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Texas (TDPSA), Oregon (OCPA), Montana (MCDPA), Delaware, New Hampshire, New Jersey, Iowa, Nebraska, Tennessee, Minnesota, Maryland, Indiana, Kentucky, and Rhode Island. Several of these laws — notably the Texas Data Privacy and Security Act and the Nebraska Data Privacy Act — apply to all businesses regardless of revenue or data-volume thresholds.
CallBackOrElse honors the following consumer rights for residents of all states with applicable comprehensive privacy laws, not only California: access to personal data, correction of inaccurate data, deletion of personal data, data portability in a machine-readable format (JSON or CSV), and the right to opt out of targeted advertising, data sales, and profiling. The CCPA/CPRA disclosures in Sections 9 and 9A serve as our baseline transparency disclosure for all users regardless of state of residence. To exercise any of these rights, email support@callbackorelse.com with the subject line "Privacy Request" and your state of residence.
Where applicable state law provides a right to cure before enforcement action, we will cure any identified violation within the time period specified by that state's law. We do not sell personal information, share personal information for cross-context behavioral advertising, or process personal information for targeted advertising.
The Service, including business accounts and technician field-app access, is intended only for adults aged 18 or older. Business account owners must enroll only workers who are at least 18 and legally authorized to perform their assigned work, and each technician must confirm being at least 18 before activating a phone. The business owner is responsible for compliance with employment, apprenticeship, workplace-safety, and worker-notice laws. We do not collect a technician's birth date or identity document, and the owner's responsibility does not eliminate our obligations to protect and process technician information as described in this Policy. We do not direct the Service to children. If we learn that a registered account or field-app user is under 18, we will disable that access and delete the associated registration information as required by law.
Inbound callers are a separate category. Because the AI receptionist answers a public phone line on behalf of our business customers, we cannot prevent a minor from calling that line. If, in the course of answering an inbound call, the AI captures information from a person who self-identifies as, or is reasonably apparent to be, under 13 years old:
To request deletion of information you believe was collected from a minor, contact support@callbackorelse.com with the subject line "COPPA Request" and the date and phone number of the call in question.
CallBackOrElse is a U.S.-based service. Our customers (the businesses that subscribe to the Service) operate in Florida, Georgia, and Alabama. We do not market to, target, or solicit users in the European Economic Area, the United Kingdom, Switzerland, Canada, or California, and we do not have establishments in those jurisdictions. If you are accessing the Service from outside the United States, your information will be transferred to and processed in the United States and in the global processing regions of the subprocessors listed in Section 5. By using the Service from outside the United States, you acknowledge and consent to that transfer.
European Economic Area / United Kingdom / Switzerland. The Service is not intended for EEA, UK, or Swiss residents. We do not knowingly target or accept registrations from those jurisdictions. To the extent the General Data Protection Regulation (Regulation (EU) 2016/679, "GDPR"), the United Kingdom General Data Protection Regulation, or the Swiss Federal Act on Data Protection applies to a visitor's data because that visitor accessed our public website or called a customer's phone line, our lawful basis for processing is (a) the legitimate interest of operating and securing our Service and the customer's legitimate interest in handling inbound calls (Art. 6(1)(f) GDPR) and (b) where applicable, the data subject's consent (Art. 6(1)(a) GDPR). EEA / UK / Swiss data subjects may request access, correction, deletion, restriction, portability, and objection by emailing support@callbackorelse.com with the subject line "GDPR Request" or "UK GDPR Request." We will respond within thirty (30) days. Cross-border transfers to the United States from these jurisdictions are made in reliance on (i) the adequacy decision of the European Commission for the EU-U.S. Data Privacy Framework, the UK Extension to the DPF, and the Swiss-U.S. DPF where the receiving subprocessor is a self-certified participant; or (ii) the Standard Contractual Clauses (SCCs) approved by the European Commission for transfers to third countries, where applicable. Visitors who do not consent to U.S. processing should not use the Service. EU/UK residents have the right to lodge a complaint with their local supervisory authority.
Canada. The Service is not marketed to Canadian residents. If you access the Service from Canada, your information is transferred to and processed in the United States. To the extent the Personal Information Protection and Electronic Documents Act ("PIPEDA") or a substantially similar provincial law applies, you may request access, correction, or deletion of your information by emailing support@callbackorelse.com.
California. Although our customer base is in Florida, Georgia, and Alabama, callers calling our customers' phone lines or visitors to our website may occasionally be California residents. The CCPA/CPRA disclosures in Sections 9 and 9A apply to those California residents notwithstanding our service area, and the same data-handling commitments apply to all users regardless of state of residence.
Google Analytics and other US-routed analytics. Our website uses Google Analytics 4 (Section 5). When a visitor outside the United States loads our site, the GA4 SDK transmits truncated IP, device metadata, and event data to Google servers in the United States and Google's global cloud regions. Google self-certifies participation in the EU-U.S. Data Privacy Framework, the UK Extension to the DPF, and the Swiss-U.S. DPF. Visitors who do not want this telemetry can decline analytics cookies in our cookie consent banner (per-category controls), use browser-level Do Not Track or ad-blocking, or refrain from visiting the site.
We may update this Privacy Policy from time to time. We will notify you of material changes via email at least 30 days before they take effect.
For privacy-related questions or to exercise your rights, contact: support@callbackorelse.com