Privacy Policy

Last updated: 2026-05-01

1. Data Controller

Volta AI, operated by Orçun Tandoğan ([email protected]), in handoff to client operators.

2. Data We Collect

• Call audio — recorded for compliance and quality (consent collected at call start).
• Transcripts — speech-to-text output, PII-redacted.
• Call metadata — caller number, duration, agent decisions, tool calls.
• Telemetry — temperature readings, GPS coordinates from container devices via ConIQ.
• Customer profile — name, contact, tier, consent records.

3. Legal Basis

• NZ Privacy Act 2020 — IPP 1, 2, 3, 6, 11.
• EU GDPR Art. 6(1)(b) (contract performance) and Art. 6(1)(f) (legitimate interest in compliance).
• US TCPA — explicit double opt-in for outbound calls.

4. Retention

• Call audio: 30 days default; 7 years for audit-flagged compliance calls.
• Transcripts: 90 days hot storage; 7 years archived (encrypted, cold).
• Audit log: 7 years permanent (FSIS / FDA 21 CFR Part 11 / EU 1169/2011).
• Session state: 24 hours.

5. Sub-processors

• Twilio (telephony)
• OpenAI (Realtime API — voice + LLM)
• ElevenLabs (TTS for cached prompts & outbound)
• Deepgram (speech-to-text fallback & language detection)
• Backblaze B2 (encrypted cold storage backups)

6. Your Rights

You have the right to: access (Art. 15), rectify (Art. 16), erase (Art. 17), restrict (Art. 18), export (Art. 20), and object (Art. 21). Contact your operations administrator to file a request, or email [email protected].

7. International Transfers

Data may be processed outside NZ/EU under Standard Contractual Clauses. Tenant data residency configurable per customer (NZ, EU, US, TR).

8. AI Disclosure

Volta is an AI assistant. Decisions provided are operational guidance; final responsibility lies with the user. AI verdicts are based on deterministic backend logic for safety-critical decisions (temperature tolerance evaluation).

9. Contact

Email: [email protected]