This Privacy Policy describes how TrustCaller, operated by Hiclass LTD, collects, uses, and protects your personal data when you use our platform and services. It applies to data processed from the moment of registration through account closure, and to the retained records required for legal and operational purposes afterwards.
Section 01Scope
Applicability
This policy applies to all personal data processed through the TrustCaller platform, including data collected during registration, account management, call routing, and payment processing.
Data Controller
Hiclass LTD, located in Ramallah, Palestine, is the data controller for all personal data processed through the TrustCaller platform. For questions, contact us at [email protected].
Section 02Data Collected
Account Information
Name, email address, phone number, country of residence, and payment details (bank account, PayPal, or Bitcoin address) provided during registration and profile setup.
Call Detail Records
Caller ID, destination number, call start/end time, duration, route information, and termination status. These are generated automatically during call processing.
Usage Data
IP address, browser type, pages visited, login timestamps, and actions performed on the dashboard. Collected via server logs and session tracking.
Payment Data
Invoice records, payout amounts, payment method details, and transaction history. Processed for billing and revenue distribution purposes.
Section 03Purpose of Processing
Service Delivery
To provide number allocation, call routing, real-time statistics, and payout services as described in the Terms of Service.
Fraud Prevention
To detect, prevent, and investigate fraudulent or unauthorized use of the Platform, including analysis of traffic patterns and caller behavior.
Billing & Payments
To calculate revenue, generate invoices, process payouts, and maintain accurate financial records.
Communication
To send service-related notifications, payment confirmations, rate changes, and important platform updates via email or dashboard alerts.
Section 04Legal Basis
Contract Performance
Processing of account, call, and payment data is necessary for the performance of the contract between you and TrustCaller (the Terms of Service).
Legitimate Interest
Fraud detection, platform security, and service improvement are carried out based on our legitimate interest in maintaining a safe and reliable service for all Users.
Section 05Data Retention
Active Accounts
Personal data and call records are retained for the duration of your account's active status and are accessible through your dashboard.
After Closure
Account data and CDRs are retained for a minimum of 12 months after account closure for legal, regulatory, and dispute resolution purposes, then securely deleted.
Section 06Data Sharing
Carriers & Partners
Call routing data is shared with upstream telecommunications carriers as required for service delivery. Carriers receive only the technical data necessary to route and bill calls.
Legal Requirements
We may disclose personal data to law enforcement or regulatory authorities when required by law, court order, or to protect the rights and safety of TrustCaller and its Users.
Section 07Security
Technical Measures
We use HTTPS encryption for all data in transit, secure server infrastructure, access controls, and regular security audits to protect your personal data.
Breach Notification
In the event of a data breach that poses a risk to your rights, we will notify affected Users and relevant authorities within 72 hours of becoming aware of the breach.
Section 08User Rights
Access & Correction
You may access, review, and update your personal data at any time through your dashboard profile settings. For data not accessible via the dashboard, contact [email protected].
Deletion
You may request deletion of your account and personal data by contacting support. Deletion is subject to our data retention obligations for legal and regulatory compliance.
Data Export
You may export your call statistics and invoice data in CSV format from the dashboard at any time during your active account period.
Objection
You may object to processing based on legitimate interest by contacting us. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests.
Section 09Cookies
Essential Cookies
We use session cookies and CSRF tokens required for the Platform to function. These cannot be disabled without breaking core functionality.
Preference Cookies
We use localStorage to save your theme preference (light/dark mode), sound settings, and DataTable state. No personal data is stored in these preferences.
Section 10Updates to This Policy
Notification
We may update this Privacy Policy from time to time. Material changes will be communicated via email or dashboard notification at least 14 days before taking effect.
Effective Date
This policy is effective as of the date displayed at the top of this page. The latest version is always available at this URL.