Welcome to Covex (“Covex,” “we,” “our,” or “us”). This Privacy Policy explains how we collect, use, share, and protect information when you visit our website, use our AI phone receptionist services, and otherwise interact with us. By using our Services, you agree to the practices described here.
Quick summary: We process caller audio, transcriptions, contact details, scheduling information, and operational metadata to provide and improve the service. We do not sell personal information. We may use trusted processors (e.g., telephony, calendar, analytics, and email providers) to operate the service.
Appointment data (availability, booked slots, confirmations, reminders)
Rules, routing, and configuration you provide
c) Payment & account
Billing contact and plan details
Payment tokens are handled by our payment processor (e.g., Stripe). We do not store full card numbers.
3) How we use information
Provide, operate, and secure the Services
Answer and route calls; capture intake; schedule and confirm appointments
Communicate with you about the Service, invoices, updates
Monitor performance, prevent fraud/abuse, and enforce policies
Improve accuracy and quality (including model evaluation and tuning)
Comply with legal obligations
4) Legal bases (EEA/UK)
We process personal data under these bases: contract (Art. 6(1)(b)), legitimate interests (Art. 6(1)(f)) such as service security and improvement, consent (Art. 6(1)(a)) for certain optional features (e.g., marketing emails), and legal obligation (Art. 6(1)(c)).
5) Sharing & processors
We share information with vendors who help us run the Service, such as:
Telephony and messaging providers (e.g., Twilio) for calls/SMS
Calendar and productivity providers (e.g., Google) to book appointments
Email and notification providers (e.g., SendGrid/SES)
Hosting and infrastructure (e.g., Vercel, cloud providers)
Analytics and error monitoring (e.g., Google Analytics, Sentry)
Payment processors (e.g., Stripe)
We may disclose information to comply with law, protect rights, or in connection with a merger, acquisition, or asset sale. We do not sell personal information.
6) International transfers
We may process and store information in countries outside your own. Where required, we use appropriate safeguards such as Standard Contractual Clauses.
7) Retention
We keep personal data for as long as needed to provide the Services and for legitimate business purposes (e.g., auditing, security, legal compliance). You may request deletion, and we’ll honor it unless we’re required to keep the data.
8) Security
We use administrative, technical, and organizational measures designed to protect personal data. No method of transmission or storage is 100% secure.
9) Your choices & rights
Marketing opt-out: you can unsubscribe from marketing emails.
Cookie controls: manage via your browser settings.
Access/erase/rectify (EEA/UK/GDPR) and CPRA rights (California): request at privacy@covex.app.
10) Call recording & consent
Where enabled, calls may be recorded or transcribed to provide the Service (e.g., quality, coaching, and dispute resolution). You are responsible for ensuring the appropriate consent notices are provided to callers, including in two-party consent jurisdictions. We can help enable a pre-call or in-call disclosure message.
11) Children
Our Services are not directed to children under 13, and we do not knowingly collect their personal information.
12) Changes
We may update this Policy. We’ll post the new version with an updated “Last updated” date and, if material, notify you.