Last updated: April 2026

What this notice covers

This notice describes how VoxRidge ("we", "us") processes personal data when you use VoxRidge Cloud or visit our website. Self-hosted installations process data on your infrastructure under your control — VoxRidge has no visibility into them.

What we process

• Account data: name, email, company, billing details.
• Operational data: CDRs, call metadata, agent activity, configuration changes — these are your customers' data, processed on your behalf as a processor under GDPR.
• Telemetry: error reports (PII-scrubbed), aggregate usage metrics, feature flags.
• Audio & recordings: only if you explicitly enable recording. Stored encrypted at rest with BYOK on Enterprise.

Lawful basis

• Contract: we process account and operational data to provide the service you signed up for.
• Legitimate interest: security telemetry, anti-abuse, product analytics.
• Consent: marketing email — opt-in only, easy to revoke.

Sharing

We share data only with the sub-processors listed on our trust center. We do not sell, rent, or trade personal data to anyone, ever.

Retention

Account data is retained while your account is active and for 12 months after closure (legal / tax). Operational data follows the retention you configure — you can delete it earlier on request. Telemetry is retained 90 days. Recordings are retained for whatever you configure; default is 30 days.

Your rights

You have the right to access, rectify, erase, restrict, and port your personal data, and to object to processing. Contact privacy@voxridge.com for any data-protection request. We respond within 30 days.

Transfers

Data is hosted in the EU (Frankfurt) or US (Virginia) depending on the region you select. Cross-border transfers (where required) are covered by Standard Contractual Clauses.

Contact

Questions about this notice or any privacy matter: privacy@voxridge.com.