GleamGleamBack to Home

Privacy Policy

Last Updated: January 4, 2026

Note: This document is provided for informational purposes and explains how we collect, use, and protect your information.

1. Introduction

Gleam ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered voice and messaging platform.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email, password, phone number
  • Billing Information: Payment card details, billing address (processed by Stripe)
  • Business Information: Company name, industry, use case
  • Agent Configuration: Scripts, prompts, voice settings
  • Contact Lists: Phone numbers, names, custom fields for campaigns

2.2 Information Collected Automatically

  • Usage Data: Features used, call volumes, timestamps
  • Log Data: IP address, browser type, device information
  • Call/Message Data: Recordings, transcripts, message content
  • Analytics: Page views, click patterns, session duration

3. How We Use Your Information

  • Provide and maintain the AI calling/messaging platform
  • Process transactions and send billing notifications
  • Generate AI responses and agent behaviors
  • Facilitate calendar bookings and integrations
  • Improve our services and develop new features
  • Send service-related communications
  • Comply with legal obligations

4. Call Recording and Transcription

Calls may be recorded based on your agent configuration. Recordings are stored securely with encryption. You are responsible for obtaining required consent for call recording and configuring appropriate disclosures in your agent scripts.

5. AI Training and Data Use

AI responses are generated using your agent configuration and third-party AI providers (OpenAI, Groq, etc.). Your conversations may be processed by these providers subject to their respective privacy policies. Enterprise plans include options to opt out of AI training data usage.

6. Data Sharing and Disclosure

We may share data with:

  • Service Providers: Infrastructure, payments, analytics
  • Twilio: Voice/SMS delivery
  • AI Providers: To generate AI responses
  • Your Integrations: CRMs, calendars you choose to connect

We do not sell your personal information or share data with advertisers for ad targeting.

7. Data Security

  • Encryption in transit (TLS 1.2+) and at rest (AES-256)
  • Regular security assessments
  • Access controls and authentication requirements
  • Secure data centers

8. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Call recordings and transcripts are retained according to your plan settings. You may request deletion at any time, subject to legal retention requirements.

9. Your Privacy Rights

Depending on your location, you may have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate or incomplete data
  • Deletion: Request deletion of your data
  • Portability: Export your data in a standard format
  • Objection: Object to certain processing activities

California residents (CCPA) and EU/EEA residents (GDPR) have additional rights as specified by applicable law.

10. International Data Transfers

Primary data storage is in the United States. For international transfers, we use Standard Contractual Clauses (SCCs) and other legally approved mechanisms.

11. Children's Privacy

The Service is not intended for children under 18. We do not knowingly collect personal information from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy and, where appropriate, by email notification.

13. Contact Us

For privacy-related questions or to exercise your rights, contact us at: privacy@gleamai.dev