Last updated: January 13, 2026
1. Introduction
Heilo.io ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.
2. Information We Collect
Personal Information
- Name and email address (for account creation)
- Phone numbers (your business number and customer numbers)
- Payment information (processed by Stripe)
- Business address and company name
Call Data
- Audio recordings of voicemail messages
- Transcriptions of voice messages
- AI-generated summaries and lead scores
- Call metadata (duration, timestamps)
Usage Data
- Browser type and version
- Pages visited and time spent
- Clicks and interactions
- Session recordings (for support and UX improvement)
3. How We Use Your Information
- To provide and maintain the Service
- To process call recordings and generate transcriptions
- To use AI for lead scoring and analysis
- To process payments and manage subscriptions
- To send service-related communications
- To improve and personalize the Service
- To provide customer support
4. Third-Party Services
We use the following third-party services:
- Twilio - For phone call handling and recording
- Google Gemini - For AI transcription and analysis
- Supabase - For data storage and authentication
- Stripe - For payment processing
- Sentry - For error tracking and monitoring
- PostHog - For analytics and session replay
- Crisp - For customer support chat
- Vercel - For hosting
5. Data Retention
We retain your personal data only for as long as necessary to provide the Service and fulfill the purposes described in this policy. Call recordings are retained for the duration of your subscription unless you request earlier deletion.
6. Data Security
We implement appropriate security measures to protect your data, including:
- Encryption of data in transit (HTTPS/TLS)
- Secure authentication mechanisms
- Regular security audits
- Access controls and monitoring
7. Your Rights (GDPR/RODO)
Under applicable data protection laws, you have the right to:
- Access - Request copies of your personal data
- Rectification - Request correction of inaccurate data
- Erasure - Request deletion of your personal data
- Restrict processing - Request limitation on how we use your data
- Data portability - Request transfer of your data to another service
- Object - Object to processing of your personal data
To exercise these rights, contact us at privacy@heilo.io
8. Cookies
We use essential cookies for authentication and session management. Analytics cookies (PostHog) help us understand how you use the Service. You can control cookie preferences through your browser settings.
9. Children's Privacy
Our Service is not intended for use by children under the age of 16. We do not knowingly collect personal information from children.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.
11. Contact Us
If you have any questions about this Privacy Policy, please contact us: