Privacy Policy

Effective: 1 July 2026

Operated by Call to Remind, a service of [Legal Entity Name], India.

1. What this is

This is the privacy policy for Call to Remind, a service that places scheduled phone calls to a recipient (usually an elderly parent) and plays a voice message recorded by the caregiver (usually their adult child).

This policy explains what data we collect about the caregiver and the recipient, why we collect it, and what you can do about it. It applies to our website, our mobile app, and our WhatsApp interface (when launched).

We are based in India and comply with the Digital Personal Data Protection Act, 2023 (DPDP Act) and applicable rules under it.

2. What we collect

From the caregiver (the account holder)

  • Your phone number (verified via OTP).
  • Your name (you tell us when setting up reminders).
  • Your country and approximate location, derived from your phone number’s country code.
  • Your payment details — handled and stored by Razorpay or Stripe. We never see or store your card number.
  • Your voice recordings (each one is a short audio file you recorded for a reminder).
  • Reminder schedules (who, what, when) and the data you type into reminders.
  • Device information: app version, OS, device model, language, time zone.
  • Logs: when you opened the app, which screens, when calls were placed.

From the recipient (your parent)

  • Their phone number (you give it to us when adding them).
  • Their name (you give it to us).
  • Their relationship to you (e.g. “Mom”).
  • Call outcome data: whether the call was answered, what key they pressed (1, 7, 8, or 9), call duration.

We do not collect the recipient’s email, location, contacts, or anything from their phone. The recipient installs nothing.

3. Why we collect it

  • Phone numbers: to place calls and send OTPs. Without these, the service does not function.
  • Names: so the reminder feels personal (“Reminder for Mom”).
  • Voice recordings: to play to the recipient. This is the core of the product.
  • Payment data: to process payments and prevent fraud, handled by Razorpay/Stripe.
  • Call outcomes: to tell you whether your reminder was heard.
  • Logs and device info: to keep the service running, debug issues, and detect abuse.

We do not use your data to train AI voice clones. We do not sell your data. We do not share it with advertisers.

4. How long we keep it

Data Retention
Phone numbers and account data While your account is active; deleted within 30 days of account closure.
Voice recordings (demo on website) Auto-deleted within 24 hours.
Voice recordings (paid app) Kept while the linked reminder is active; deleted within 30 days of reminder deletion.
Call outcome logs 90 days, then aggregated and anonymized.
Payment records 7 years, as required by Indian tax law.
Backups Up to 60 days.

You can delete your account at any time from the app’s Settings screen. This wipes your voice recordings, reminders, and recipient phone numbers within 30 days.

5. Who we share it with

We share data only with vendors that help us run the service:

  • Twilio Inc. (USA) — places the phone calls and sends OTPs. They receive the destination phone number, the voice recording URL, and call metadata.
  • Supabase Inc. (USA) — our database and file storage. Hosts our records and your recordings.
  • Razorpay Software Pvt Ltd (India) — processes Indian payments.
  • Stripe Inc. (USA) — processes international payments (USD, GBP, AED).
  • Vercel Inc. (USA) — hosts our website and API.
  • Anthropic PBC (USA) — processes the text of your voice-note transcript when you use the AI-parse feature (so we can extract who/what/when). We do not send your audio.

These vendors process your data on our behalf, under contractual data-protection terms. We do not authorize them to use your data for their own marketing.

Some of these vendors are based outside India. By using the service, you consent to your data being transferred to and processed in those countries, in accordance with the DPDP Act’s cross-border transfer rules.

We will share data with law enforcement only when legally required by a valid Indian court order or equivalent process.

6. The voice recordings

This deserves its own section because it is the most sensitive thing we handle.

  • Each recording is a short audio file (typically under 30 seconds).
  • It is stored encrypted at rest in our database.
  • It is played to the phone number you specified, at the time you scheduled.
  • We do not use it to train any AI voice model.
  • We do not allow voice cloning of any kind on this platform.
  • We do not share recordings with anyone except Twilio, which needs the audio URL to play it on the call.
  • Recipients of calls can press 9 on the keypad to stop receiving calls from your reminder; we honour this and stop calls within minutes.

If you delete a reminder, the recording linked to it is deleted within 30 days. If you delete your account, all your recordings are deleted within 30 days.

7. Your rights

Under the DPDP Act and similar laws, you have the right to:

  • Access the data we hold about you.
  • Correct inaccurate data.
  • Delete your data (this generally means closing your account).
  • Withdraw consent for processing, at which point we must stop using your data for the service (which will end the service for you).
  • Nominate a person to exercise your rights if you are unable to do so.
  • Lodge a grievance with our Grievance Officer (see Section 12) and, if unresolved, with the Data Protection Board of India.

To exercise any of these rights, email legal@calltoremind.com from the phone-linked email or, if none, contact us via the in-app support. We will verify your identity and respond within 30 days (often sooner).

8. Children and elderly recipients

We do not knowingly collect data from anyone under 18. The service is intended for adult caregivers to set up reminders for adult recipients (typically elderly parents).

For elderly recipients: the caregiver who adds them is responsible for confirming that the recipient consents to receiving these calls. Recipients can press 9 on the keypad of any call to stop receiving future calls immediately. We honour this irrevocably for that phone number unless the recipient themselves contacts us to re-enable it.

9. Cookies and analytics

Our website uses a small number of essential cookies for login state and security. We use Plausible Analytics, a privacy-respecting, cookieless analytics tool that does not track individual visitors and does not use third-party cookies. We do not use Google Analytics, Facebook Pixel, or any advertising tracker.

Our app does not contain advertising SDKs.

10. Security

  • All connections to our service use HTTPS / TLS.
  • Voice recordings, phone numbers, and personal data are encrypted at rest.
  • Access to the production database is restricted to named employees and logged.
  • Payment information is handled by Razorpay and Stripe under PCI-DSS; we never see your card number.
  • We use OTP verification to ensure only the real owner of a phone number can use it on our platform.

No system is perfectly secure. If we discover a breach affecting your personal data, we will notify you and the Data Protection Board of India within the timeframes required by the DPDP Act.

11. Changes to this policy

We may update this policy. When we do, we will change the “Effective” date at the top and, if the changes are material, notify you in the app or by SMS. Continued use of the service after a material change indicates acceptance of the updated policy.

12. Grievance Officer

In accordance with the DPDP Act, our Grievance Officer is:

[Grievance Officer Name]

Email: legal@calltoremind.com

Address: [Registered Address]

Response time: within 30 days of receipt.

Questions? Email us at hello@calltoremind.com.

For privacy or data concerns specifically: legal@calltoremind.com.

We respond within 3 working days.