1. Roles
The client is the controller (or processor acting on instructions of a controller). PreCallAI acts as a processor providing managed calling services.
2. Processing details
- Subject matter: outbound calling and qualified meeting booking.
- Duration: the term of the engagement.
- Nature & purpose: contacting approved leads, qualifying, and booking meetings.
- Data types: contact details, company data, call recordings, dispositions.
3. Processor obligations
- Process personal data only on documented client instructions.
- Ensure personnel are bound by confidentiality.
- Implement appropriate technical and organizational security measures.
- Assist clients with data subject requests and impact assessments.
4. Sub-processors
We engage sub-processors (e.g. telephony, CRM, calendar providers) under written agreements with equivalent data protection obligations. Clients may object to new sub-processors per the notice mechanism agreed on the order form.
5. International transfers
Where data is transferred across borders, we rely on appropriate safeguards such as Standard Contractual Clauses or another lawful transfer mechanism.
6. Security incidents
We notify clients of a personal data breach without undue delay and provide information reasonably required to meet regulatory obligations.
7. Deletion on exit
On termination, we return or delete personal data per the client’s choice and applicable law, except where retention is legally required.
8. Contact
DPO / privacy inquiries: privacy@precallai.com.