How Do I Call
+1 (512) 882-4109
Book Demo

Personal Data Processing Policy

The Site operator provides specialized cloud-based communication infrastructure designed specifically for dental practices. Because our services involve the transmission of sensitive professional communications and the management of patient-related contact details, we maintain a rigorous framework for the processing of personal data. This policy outlines how we collect, utilize, and safeguard information transmitted through https://howdoicall.com and our associated software ecosystem.

By utilizing our platform, you acknowledge that the Site administrator processes data according to the principles of transparency, purpose limitation, and data minimization. We act as a data processor when handling information on behalf of dental clinics, and as a data controller regarding the account information of the practitioners who subscribe to our services.

Categories of Information Collected

To ensure the seamless operation of a cloud call center, we process several types of data. These are categorized based on their origin and purpose:

  1. Account Registration Data: This includes the professional identity of the clinic owner, administrative email addresses, billing details, and professional credentials required to establish a secure account.
  2. Communication Metadata: We track call durations, timestamps, originating numbers, and destination numbers. This is necessary for billing, quality assurance, and technical troubleshooting.
  3. Call Recordings and Transcripts: Depending on the configuration chosen by the client, our system may record audio interactions. This data is processed solely for the purpose of improving patient care and maintaining a record of professional appointments.
  4. Technical Log Data: Our servers automatically capture IP addresses, browser types, and interaction patterns to prevent fraudulent access and optimize the performance of the cloud interface.

Purpose and Legal Basis for Processing

We do not process data arbitrarily. Every action taken with personal information is tied to a specific operational necessity:

The primary objective is the fulfillment of the service contract. We cannot provide cloud telephony services without processing the voice data and contact lists of the users. Furthermore, we process data to comply with legitimate business interests, such as protecting our network from cyber-attacks or refining the user interface based on aggregated usage patterns.

In instances where the Site operator must process sensitive health-related data (incidental to the dental niche), we rely on the dental practice having obtained the necessary consents from their patients, as the practice remains the primary data controller for patient records.

Data Storage and Security Protocols

Our team employs industry-standard encryption methods to ensure that data is protected both while in transit across the internet and while stored on our servers. We recognize that cloud call center software is a high-value target for unauthorized access; therefore, we implement multi-layered security barriers.

Data is stored on secure servers located in jurisdictions that provide adequate protections for privacy. We utilize logical separation of data, meaning that one clinic's information is strictly isolated from another's to prevent accidental leakage. We regularly review our security architecture to adapt to emerging threats in the cloud computing landscape.

Third-Party Disclosures and Sub-Processors

To maintain a global communication network, the Site operator utilizes third-party infrastructure providers. This may include cloud hosting services, VoIP gateway providers, and secure payment processors.

We ensure that any third party granted access to data is bound by strict confidentiality agreements and adheres to data protection standards equivalent to our own. We do not sell, rent, or trade personal information to marketing firms or external data brokers. Data is only shared with external entities under the following conditions:

  1. To facilitate the core technical delivery of the call center software.
  2. When required by a legitimate legal order from a competent authority.
  3. When necessary to protect the physical safety of individuals or the integrity of our systems.

User Rights and Control

We believe that individuals should maintain a level of autonomy over their digital footprint. Depending on the user's relationship with https://howdoicall.com, the following rights are supported:

Users may request a copy of the personal data we hold about them to verify its accuracy. If any information is found to be incorrect or outdated, our team will rectify it promptly. Users also have the right to request the erasure of their account data, provided that such erasure does not conflict with legal obligations to retain financial records for auditing purposes.

For those who wish to limit the processing of their data, we provide settings within the software dashboard to toggle recording features or manage notification preferences.

Data Retention Periods

We do not store personal data longer than is necessary for the purposes for which it was collected. Account information is retained for the duration of the active subscription. Once a contract is terminated, we initiate a decommissioning process where data is archived for a limited legal window before being permanently deleted.

Call logs and metadata are typically kept for a shorter window to facilitate monthly billing and performance reporting, after which they are anonymized or purged from our active databases.

Modifications to this Policy

The Site administrator reserves the right to update this processing policy to reflect changes in technology, service offerings, or evolving privacy standards. Any significant changes will be communicated to users via the dashboard of https://howdoicall.com or through a direct electronic notification. We encourage users to review this page periodically to stay informed about how their data is managed.