1. Who we are & how to contact us
Controller: AltCalls (“we”, “us”, “our”).
Primary contact for privacy matters: admin@altcalls.com
If applicable law requires a local representative or Data Protection Officer, we will publish those details here.
2. What this policy covers
This policy describes what personal data we collect, why, the legal bases we rely on, how long we retain it, with whom we share it (including advertising partners), how we transfer it internationally, and the rights you have. It also explains how we honor “Do Not Sell/Share” and Global Privacy Control signals where required.
3. Personal data we collect
- Identifiers & contact details: name, email, IP address, device IDs.
- Commercial & usage data: pages viewed, links clicked, referral URLs, purchase/subscription history.
- Cookies & tracking: cookies, pixels, SDKs (including from Google, Meta, X/Twitter, Reddit).
- Geolocation data: approximate location (e.g., via IP).
- User-generated content: messages, comments, support tickets.
We collect data directly from you (forms, emails), automatically (cookies, scripts), and from third-party partners. Where required, we disclose the source of data not collected directly from you.
4. Why we process your data & legal bases
- Provide & improve our services: operating the site, troubleshooting, enhancing features (Contract / Legitimate Interests).
- Personalized ads & analytics: serving and measuring ads, remarketing (Consent where required; otherwise Legitimate Interests).
- Security & fraud prevention: detect, investigate, prevent incidents (Legitimate Interests / Legal Obligation).
- Compliance & legal requests: respond to lawful requests, enforce terms (Legal Obligation).
- Marketing communications: newsletters/updates with your consent or where allowed by law (Consent / Legitimate Interests).
When we rely on Legitimate Interests, we conduct balancing tests. You can request information about those tests.
6. “Do Not Sell or Share” / Global Privacy Control (GPC)
California residents (and others where similar rights exist) may opt out of “sale” or “sharing” of personal information, including for cross-context behavioral advertising. We honor browser/device signals such as the Global Privacy Control (GPC). Look for the “Do Not Sell or Share My Personal Information” link in our footer or settings.
7. Your rights (varies by jurisdiction)
EEA/UK/Switzerland (GDPR/UK GDPR)
Access, correction, deletion, restriction, portability, objection (including to marketing), and consent withdrawal.
California (CCPA/CPRA)
Right to know/access, correct, delete, opt out of sale/sharing, limit use of sensitive data, non-discrimination for exercising rights, and GPC recognition.
Brazil (LGPD)
Confirmation, access, correction, anonymization, portability, deletion, information on sharing, and review of automated decisions.
Canada (PIPEDA)
Access, correction, and information about how we verify identity when responding to requests.
Singapore (PDPA)
Access, correction, withdrawal of consent; obligations on us to notify purposes and protect data (business contact info generally excluded).
South Africa (POPIA)
Right to be notified of collection purposes and sources; rights to access, correct, and request deletion.
Australia (Privacy Act / APPs)
Access and correction rights; complaints process as required by the Australian Privacy Principles.
Other regions may provide similar rights. Contact us and we’ll assist according to applicable law.
8. How to exercise your rights
Email admin@altcalls.com with your request and state your jurisdiction. We may ask for additional information to verify your identity (or your authorized agent’s authority). We will respond within the timeframe required by applicable law.
9. Data retention
We retain personal data only as long as necessary for the purposes described above or as required by law (e.g., tax and accounting). We document retention periods or criteria and regularly review stored data for necessity.
10. Advertising partners & disclosures
We work with advertising and analytics partners such as Google, Meta, X (Twitter), Reddit, and others. These partners may set cookies or collect data via tags/pixels to deliver interest-based advertising and measure performance. Their processing is governed by their own privacy policies. You may also use tools like the Network Advertising Initiative (NAI) or Digital Advertising Alliance (DAA) for broader opt-outs where available.
11. International transfers
We may transfer your data to countries outside your own (e.g., the United States or where our service providers operate). We implement appropriate safeguards (e.g., Standard Contractual Clauses, adequacy decisions, or equivalent mechanisms) as required by applicable law.
12. Children’s privacy
Our services are not intended for children where parental consent is required (e.g., under 13 in the U.S., under 16 in parts of the EU). We do not knowingly collect data from such children without appropriate consent. If you believe we have collected data without consent, contact us immediately.
13. Security
We use technical and organizational measures to protect personal data from unauthorized access, alteration, disclosure, or destruction. If a breach occurs that is likely to result in a risk to your rights and freedoms, we will notify the relevant authority and affected individuals where required.
14. Complaints
Contact us first so we can resolve your concern. You may also lodge a complaint with your local data protection authority (e.g., ICO in the UK, OAIC in Australia, PDPC in Singapore, Information Regulator in South Africa, national DPAs in the EU, CPPA in California).
15. Changes to this policy
We may update this policy to reflect changes in law, technology, or our practices. The “Last updated” date will change, and we will provide additional notice of significant changes when required.
16. Region-specific addenda (summary)
California Addendum (CCPA/CPRA)
- Categories of personal information collected/sold/shared in the past 12 months.
- Right to know/access, delete, correct, opt out of sale/share, limit use of sensitive data.
- At least two methods to submit opt-out requests; respond within statutory deadlines.
- Honor Global Privacy Control signals.
EEA/UK/Switzerland (GDPR/UK GDPR)
- Legal bases under Article 6; special-category data only on valid grounds.
- Transparency at collection (Arts. 13–14), data minimization & purpose limitation (Art. 5).
- Right to lodge complaints with your supervisory authority.
Brazil (LGPD)
- Rights to confirmation, access, correction, anonymization, portability, deletion, info on sharing, and review of automated decisions.
Canada (PIPEDA)
- Compliance with 10 Fair Information Principles; clear notice of rights and verification process.
Singapore (PDPA)
- Consent and notification obligations; access/correction rights; security safeguards.
South Africa (POPIA)
- Section 18 notice requirements; Sections 19–22 security safeguard obligations.
Australia (Privacy Act / APPs)
- APP 1: Maintain a clear, up-to-date privacy policy; complaint handling process.
- APP 12–13: Access and correction rights.
17. How to reach us
Questions, complaints, or rights requests:
admin@altcalls.com