Privacy & data handling

How Callina stores, processes and deletes call data — GDPR-compliant by design.

Callina is hosted exclusively in EU regions (Austria + Germany). All call audio, transcripts and structured data live within the EU at all times — no cross-border transfer to non-adequate jurisdictions.

What we store

Audio recording: 90 days by default, configurable to 1–365 days. Stored encrypted at rest.
Transcript: 365 days by default. You can purge any individual call earlier via dashboard or API.
Structured fields: as long as the call exists.
Caller phone number: hashed for analytics; full number kept only inside the call record.

Data subject requests (DSAR)

Callers can request what data Callina holds about them by contacting privacy@callina.ai. We respond within 15 business days. Tenant admins can also fulfil requests directly via Settings → Privacy → DSAR export.

Sub-processors

The full sub-processor list is published at callina.ai/legal/dpa. All sub-processors are EU-based; we notify customers 30 days before any new sub-processor takes effect.

Audits

ISO 27001 (DEKRA), ISO 42001 (DEKRA), GDPR readiness (independent attestation by intersoft consulting). Reports available in the trust center under NDA.

Privacy & data handling

What we store

Data subject requests (DSAR)

Sub-processors

Audits

On this page