Isabel logo

Privacy Policy

Last Updated: 3/29/2026

1. Introduction

At Isabel ("we," "us," or "our"), we respect your privacy and are committed to protecting it. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Isabel AI voice assistant services, website, and related applications (collectively, the "Service").

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Service.

2. Information We Collect

2.1 Personal Data

We may collect personal information that you voluntarily provide to us when you register for the Service, express an interest in obtaining information about us or our products and services, or otherwise contact us. This may include:

  • Name and Contact Information (Email, Phone Number)
  • Account Credentials (Usernames, Passwords)
  • Billing Information (handled by our payment processors)

2.2 Call Data and Transcripts

As part of the Service, we process audio recordings and transcripts of calls made to or from your account. This data is necessary to provide the AI voice assistant functionality. We may store these recordings and transcripts for quality assurance, training our AI models, and improving the Service.

2.3 Usage Data

We may automatically collect certain information when you visit, use, or navigate the Service. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Service, and other technical information.

2.4 Security and Fraud Prevention Identifiers

To maintain the integrity of our platform and prevent unauthorized access or fraudulent account creation, we process technical identifiers including your IP address and browser characteristics (fingerprinting).

Pseudonymization: To protect your privacy, these identifiers are immediately transformed into cryptographic hashes using a secure salt. We do not store your raw IP address or hardware identifiers in our security database.

Legal Basis: This processing is conducted based on our Legitimate Interest (Art. 6(1)(f) GDPR / LGPD / APPI / CCPA) in ensuring the security of our Service and preventing abuse.

3. How We Use Your Information

We use personal information collected via our Service for a variety of business purposes described below:

  • To provide and maintain our Service (e.g., routing calls, generating AI responses).
  • To manage your account and subscriptions.
  • To communicate with you regarding security, privacy, and administrative issues.
  • To improve our AI models and the overall quality of the Service.
  • To enforce our terms, conditions, and policies.
  • To respond to legal requests and prevent harm.

4. Sharing Your Information

We may process or share your data that we hold based on the following legal bases:

Vendors, Consultants, and Other Third-Party Service Providers: We may share your data with third-party vendors, service providers, contractors, or agents who perform services for us or on our behalf and require access to such information to do that work. Examples include:

  • Payment processing (e.g., Stripe)
  • Telephony services (e.g., Twilio, Vapi)
  • Cloud hosting (e.g., Google Cloud)
  • Data analysis and AI model providers

Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

Legal Requirements: We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process.

5. Data Retention

We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy policy, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information.

6. Security of Your Information

We use administrative, technical, and physical security measures to help protect your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse.

7. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information, such as the right to access, correct, or delete your data. If you would like to make a request to exercise these rights, please contact us. We will consider and act upon any request in accordance with applicable data protection laws.

8. Policy for Children

We do not knowingly solicit information from or market to children under the age of 13. If we learn that we have collected personal information from a child under age 13 without verification of parental consent, we will delete that information as quickly as possible.

9. Updates to This Policy

We may update this privacy policy from time to time. The updated version will be indicated by an updated "Revised" date and the updated version will be effective as soon as it is accessible. We encourage you to review this privacy policy frequently to be informed of how we are protecting your information.

10. Contact Us

If you have questions or comments about this policy, you may contact us through our support channels.