VibeCall

Privacy Policy — VibeCall.io

Last edited 15th of September, 2025

Controller

Controller: VibeCall.io

Address: Midlock Street, Glasgow, G51 1SF, Scotland, UK

Email: info@vibecall.io

Quick links

1) Scope2) What we collect3) Purposes & legal bases4) How we use your data5) Address book6) Cookies & analytics7) Sharing data8) International transfers9) Retention10) Security11) Your rights12) Communications13) Changes14) Contact

We respect your privacy. This policy explains what we collect, why we collect it, the legal bases we rely on, and your rights.

1) Scope

This policy applies to the VibeCall.io mobile app, website, and related services (the “Services”).

2) What we collect

Account & Identity

  • Phone number (used as your caller ID and for verification)
  • Email (if you contact support or register with email)

Device & Network

  • IP address, device identifiers (e.g., OS, model), network type, app version
  • Google Advertising ID (Android) or similar ad identifiers (where enabled)

Address Book (Contacts)

If you grant permission, the app can access names and phone numbers on your device solely to format international calling and show names for your contacts. We do not upload your address book to our servers.

Usage & Call Detail Records (CDRs)

  • Calling and receiving party numbers/identifiers, timestamps, duration, call quality metrics, outages, routing metadata
  • App interaction data (e.g., pages/screens viewed, traffic, diagnostics)

Payments

If/when in-app purchases or top-ups are available: payment status, amount, currency, limited transaction metadata (handled by payment processors; we don’t store full card numbers)

Support Communications

Emails, messages, tickets, logs you submit for troubleshooting

  • Provide and operate the Services (set up calls, show contacts locally, verify your number, handle billing, provide support) — Contract
  • Security & fraud prevention (detect abuse, enforce limits, prevent chargebacks) — Legitimate interests + Legal obligation where applicable
  • Service quality & analytics (performance, crash logs, call quality improvement) — Legitimate interests
  • Personalisation & marketing (where permitted) — Consent (you can opt out)
  • Compliance (tax/VAT invoices, accounting, lawful requests) — Legal obligation

If we rely on consent (e.g., marketing cookies/identifiers), you can withdraw it at any time in‑app, in OS settings, or via email.

4) How we use your data

  • Verify identity and enable outbound calling (your number is used as VibeCall caller ID)
  • Manage your account, send service notices, alerts, and updates
  • Process payments/top-ups (through PCI-compliant processors)
  • Improve quality (debug issues, measure call quality, reduce dropped calls)
  • Prevent fraud and misuse (including checks with fraud-prevention partners)
  • Generate aggregated, anonymised insights (no identification)

5) Address book permission (important)

Access is optional and local: the app reads names and numbers on your device to:

  • Format numbers for international calls
  • Display your saved contact names in the dialer and call history

We do not upload, store, or sell your address book. If you disable permission, those features won’t work, but the app still functions.

6) Cookies, analytics, and ads identifiers

  • We may use analytics (e.g., Google Analytics/Firebase) to measure usage and stability.

Android: you can reset or opt out of interest-based ads in Settings → Google → Ads (or device-specific equivalent).

Website cookies (if used) will be disclosed in a separate Cookie Notice or banner.

7) Sharing data (who gets it and why)

We share only what’s necessary:

  • Telecom carriers and routing partners (to connect calls and ensure quality)
  • Payment processors (to process top-ups/purchases)
  • Messaging/verification providers (to send verification codes/alerts)
  • Analytics & anti-fraud providers (service performance, abuse prevention)
  • Professional services (legal, accounting, auditors) where needed
  • Law enforcement/regulators if required by law
  • Corporate events (merger, acquisition, restructuring): your data may transfer under the same protections

Good to know: We do not sell your personal data.

8) International transfers

We may process data outside the UK/EU. Where we do, we use lawful safeguards (e.g., UK IDTA/EU SCCs, adequacy decisions, and technical/organisational measures).

9) Retention

  • Account & core logs: as long as you have an active account and for a reasonable period after closure (to resolve disputes, comply with law)
  • CDRs and usage logs: up to 24 months unless longer is legally required
  • Support tickets: as needed to resolve the issue and for audit/compliance

When no longer required, we delete or anonymise.

10) Security

We use administrative, technical, and organisational measures (encryption in transit, access controls, least privilege, monitoring). No system is 100% secure; we work to prevent, detect, and respond to incidents.

11) Your rights (UK/EU GDPR)

You can:

  • Access your data
  • Rectify inaccuracies
  • Erase data (where applicable)
  • Restrict or object to processing
  • Port data to another provider
  • Withdraw consent (where processing relies on consent)

To exercise rights, email info@vibecall.io. We may need to verify your identity. You also have the right to complain to the UK ICO.

UK ICO: ico.org.uk

12) Communications

We send service messages (verification codes, security alerts, critical updates). You can opt out of marketing messages at any time (links in the message or email info@vibecall.io). Service messages are mandatory while you use the app.

13) Changes to this policy

We update this policy as our Services or laws change. If changes are material, we’ll notify you in-app or on the website. Continued use means you accept the updated policy.

14) Contact

Questions or requests: info@vibecall.io

Address: Midlock Street, Glasgow, G51 1SF, Scotland, UK