Privacy Policy
Last Updated: 5/26/2026
This Privacy Policy describes how [Company Name] (“Company,” “we,” “us,” or “our”) collects, uses, discloses, and otherwise processes personal information in connection with your access to and use of [App Name] (the “Service”). This Privacy Policy applies to all users, including customers, end users, and visitors (“you” or “Customer”).
By accessing or using the Service, you acknowledge that you have read and understood this Privacy Policy.
1. Scope and Roles
This Privacy Policy applies to personal data processed by the Company in its capacity as both a data controller and, where applicable, a data processor. When you submit phone numbers or other Customer Data for validation, you act as the data controller, and the Company acts as a data processor on your behalf. For account, billing, and usage data, the Company acts as the data controller.
2. Categories of Personal Data Collected
2.1 Information You Provide
We collect personal information that you provide directly when using the Service, including your name, email address, company name, and account credentials. We also collect billing and payment information necessary to process transactions, as well as any information you submit through support requests, communications, or feedback. Additionally, we collect phone numbers and related data that you submit for validation.
2.2 Automatically Collected Information
We automatically collect certain information when you access or use the Service, including your IP address, device type, browser type, operating system, and related technical identifiers. We also collect usage data such as pages visited, API requests, timestamps, referring URLs, log files, and performance metrics in order to monitor, maintain, and improve the Service.
2.3 Customer Data Submitted for Processing
The Service processes Customer Data, including phone numbers and any associated metadata that you submit. You represent and warrant that you have all necessary rights, consents, and lawful bases required to provide such data to us for processing.
3. Purposes of Processing
We process personal data for legitimate business purposes, including providing, operating, maintaining, and improving the Service. This includes validating phone numbers, generating associated metadata, and enhancing system performance and reliability.
We also process personal data to manage accounts, process payments, provide customer support, detect and prevent fraud, enforce our agreements, comply with legal obligations, and communicate with you about updates, service notices, and administrative matters.
Where permitted by law, we may use aggregated or de-identified data for analytics, benchmarking, and service improvement purposes.
4. Legal Bases for Processing (GDPR)
Where the General Data Protection Regulation (GDPR) or similar laws apply, we process personal data under recognized legal bases. These include processing necessary for the performance of a contract with you, such as delivering the Service. We also rely on legitimate interests, including improving, securing, and maintaining the Service, provided such interests are not overridden by your rights. In certain cases, we process data to comply with legal obligations or based on your consent where required.
5. Data Sharing and Disclosure
5.1 Service Providers and Subprocessors
We engage trusted third-party service providers to support the operation of the Service, including cloud infrastructure providers, payment processors, analytics vendors, and security providers. These service providers act as subprocessors where applicable and are contractually bound to process personal data in accordance with our instructions and applicable law.
5.2 Third-Party Data Providers
We may rely on third-party data sources to perform validation, enrichment, or verification of phone numbers. While we select reputable providers, we do not control and are not responsible for their accuracy, availability, or data practices.
5.3 Legal and Regulatory Disclosures
We may disclose personal data where required to comply with applicable law, regulation, legal process, or enforceable governmental request. We may also disclose data to enforce our Terms, protect our rights or property, and ensure the safety of our users and the public.
5.4 Corporate Transactions
In the event of a merger, acquisition, financing, or sale of assets, personal data may be transferred as part of that transaction, subject to appropriate confidentiality safeguards.
We do not sell personal information as defined under applicable privacy laws.
6. International Data Transfers
Your personal data may be transferred to, stored in, and processed in countries outside your jurisdiction, including the United States. Where required by law, we implement appropriate safeguards for cross-border data transfers, such as Standard Contractual Clauses (SCCs), data processing agreements, or equivalent legal mechanisms to ensure an adequate level of data protection.
7. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy, including providing the Service, complying with legal obligations, resolving disputes, and enforcing agreements. Customer Data submitted for validation is retained in accordance with our internal retention policies and may be deleted within a defined period, typically between thirty (30) and ninety (90) days following account termination, unless otherwise required by law or agreed in writing.
We may retain anonymized or aggregated data indefinitely for lawful business purposes.
8. Data Security
We implement commercially reasonable technical, administrative, and organizational measures designed to protect personal data against unauthorized access, disclosure, alteration, or destruction. These measures include encryption in transit, access controls, authentication mechanisms, monitoring systems, and security incident response procedures. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.
9. Your Rights and Choices
9.1 California Privacy Rights (CCPA/CPRA)
If you are a California resident, you may have the right to request access to personal data we collect about you, request deletion, request correction of inaccurate information, and receive information about our data practices. You also have the right to opt out of the sale or sharing of personal data; however, we do not sell personal data.
9.2 European Economic Area and UK (GDPR)
If you are located in the EEA or UK, you may have rights including access, rectification, erasure, restriction of processing, objection to processing, and data portability. You also have the right to lodge a complaint with a supervisory authority.
9.3 Exercising Your Rights
You may exercise your rights by contacting us at [privacy@yourdomain.com]. We will respond to requests in accordance with applicable law. We may require verification of your identity before fulfilling certain requests.
10. Cookies and Tracking Technologies
We use cookies and similar technologies to operate the Service, maintain sessions, analyze usage, and improve performance. Depending on your jurisdiction, you may be presented with options to manage cookie preferences. Disabling cookies may impact certain features of the Service.
11. Children’s Privacy
The Service is not intended for individuals under the age of eighteen (18), and we do not knowingly collect personal data from children. If we become aware of such collection, we will take appropriate steps to delete the data.
12. Third-Party Links and Services
The Service may contain links to third-party websites or services that are not controlled by the Company. This Privacy Policy does not apply to such third parties, and we are not responsible for their privacy practices or content.
13. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices, technologies, legal requirements, or other factors. When we do so, we will revise the “Last Updated” date and, where required by law, provide appropriate notice. Continued use of the Service after such updates constitutes acceptance of the revised Privacy Policy.
14. Contact Information
If you have any questions, requests, or concerns regarding this Privacy Policy or our data practices, you may contact us at:
[Company Name]
Email: privacy@yourdomain.com
Address: [Company Address]