dialsheet.io

Privacy Policy

Last Updated: December 12, 2025

Dialsheet.io ("we," "our," or "us") respects your privacy. This policy explains how we handle your data and the data of your contacts.

1. Data Processing vs. Data Controller

Dialsheet.io acts as a Data Processor providing software tools. You, the user, are the Data Controller of the lead lists and contact information you upload. You are responsible for the legal basis of processing this data.

2. Information We Collect

  • Account Information: Name, business email, company name.
  • Telephony Credentials: Encrypted storage of your Twilio SID and Auth Token.
  • Uploaded Data: CSV/Spreadsheet data you import for workflow management.
  • Usage Metadata: Call logs, duration, timestamps, disposition statuses, and user notes.

3. What We Do NOT Collect

  • Call Audio: We do not record calls by default. If you enable recording, files are stored either in your own Twilio storage bucket or, if configured, temporarily on our secure servers before compliance archiving. We do not listen to or transcribe your calls for our own purposes.

4. How We Use Your Information

  • To provide the dialing workflow service.
  • To authenticate your connection to third-party carriers.
  • To detect fraud, spam, and abuse of our platform (e.g., monitoring Aggregate call stats).
  • To comply with legal obligations.

5. Third-Party Processors

We share data with the following sub-processors to deliver the service:

  • Twilio Inc.: For telephony signaling and media carriage.
  • [Cloud Provider, e.g., AWS/Vercel]: For hosting infrastructure.
  • [Supabase/Database Provider]: For secure database hosting.

6. Data Retention

  • Active Accounts: Lead data is retained as long as your account is active to facilitate your workflow.
  • Deleted Accounts: Upon account termination, contact data is permanently deleted from our live systems within 30 days. Metadata (logs) may be retained for up to 1 year for audit and legal compliance purposes.

7. Security

We use commercial-grade encryption (TLS/SSL) for data in transit and encryption-at-rest for sensitive credentials. However, no specific security guarantee is implied against sophisticated state-level actors.

8. Your Rights

You may export your data ("The Dialsheet") at any time via the dashboard. You may request permanent deletion of your account and data by contacting privacy@dialsheet.io.