Dialpad Logo

Privacy Policy - Archive August, 2025

EFFECTIVE DATE: AUGUST 14, 2025 

VIEW ARCHIVED VERSIONS

Dialpad Privacy Policy

Overview

This Privacy Policy describes how we at Dialpad, Inc. and its worldwide affiliates and subsidiaries (“Dialpad”, “we”, “our”, or “us”) process the Personal Data related to your (“User”, “you”, or “your”) use of our services. This Policy covers all interactions with Dialpad services, such as directly via the website, mobile or desktop application, web application, extensions, desk phone, or indirectly through interactions with companies that use Dialpad services (collectively “Services”). We are committed to protecting your privacy when you use our Services.

To exercise your data protection rights or for more information about Dialpad’s data protection practices, please contact us at [email protected]

This Privacy Policy covers the following topics:

This Privacy Policy covers the following topics:

Overview

Types of Data We Collect

When and How Dialpad Collects Data

How does Dialpad use Personal Data?

Messaging & MFA

Dialpad Ai Training

Automated Decision Making

What is “Legal Basis”?

Data Subject Rights

How We Keep Your Data Secure

Personal Data Disclosures

Disclosure With Your Consent

Disclosure Without Your Consent

International Data Transfers

Data Retention

Cookie Policy, Third Party Analytics, and Tracking

Other Vendor-specific Privacy Terms

Google Workspace

Data Privacy Framework

Privacy of Minors

Changes and Amendments

Where can I ask questions about this policy?

Acceptance of this Privacy Policy

Region Specific Provisions

Your use of Dialpad’s Services is also subject to the Terms of Service or the General Terms and Conditions associated with the Master Services Agreement that governs your account, each of which may be amended from time to time and are effective as of the date posted. Any terms we use in this Policy without defining them have the definitions given to them in the Terms of Service or the Applicable Data Protection Laws.

Applicable Data Protection Laws” means all laws and regulations that are applicable to the processing of Personal Data under the Agreement, including European Data Protection Laws and the CCPA, as well as any future amending acts of the above-mentioned data protection laws any other applicable international, federal, national and state privacy and data protection laws, rules, and regulations pertaining to privacy, data processing and use, data protection, data security, encryption, or confidentiality.

Personal Data” means all data which is defined as ‘Personal Data’, ‘personal information’, or ‘personally identifiable information’ (or analogous terms) under the Applicable Data Protection Laws. 

Types of Data We Collect

  • Contact: Information that facilitates communication between you and Dialpad, such as name, email and physical address, telephone number, and password

  • Billing: Payment information

  • Location: Information about a specific location, such as physical address or IP address

  • Identifiers: Information that may identify a specific individual, such as name, profile picture, and birthdate

  • Device and Session: Information about your browser or device, which may include your IP address, device IDs, or other unique identifiers, cookie information, the type of browser and/or device you’re using to access our Services, and the page or feature you requested

  • Telephony: Information concerning customer call records such as time, duration, the number of the called party

  • Session audio, video, and messaging: The audio, video, and messaging (including SMS, in-app chat, and other messaging channels) that you send through Dialpad, and the information contained therein, should you opt-in to recording or otherwise storing that information

  • Integrations: Information regarding integrating third-party services such as Google, Salesforce, Zendesk, HubSpot, and others, including credentialing information. 

When and How Dialpad Collects Data

Dialpad may collect Personal Data through our communications with you or through your use of the Services. Consequently, Personal Data can be directly provided by you or indirectly collected by us from, for example, user interactions and use of the Services. You can always opt not to disclose information to us, but keep in mind some information may be needed to register with us or to take advantage of some of our features within the Services.

  • When you create an account with Dialpad:

    • Data you provide: Contact, Billing

  • When you integrate with a third-party service:

    • Data you provide: Integration details

    • Data Dialpad collects: Integration details

  • When you use our Services:

    • Data Dialpad collects: Device and session information, telephony information, session audio, video, and messaging, location, integrations

  • When you use Dialpad Ai:

    • Data Dialpad collects: Device and session information, telephony information, session audio, video, and messaging, integrations

  • When you browse pages of our website:

    • Data Dialpad collects: Device and session information, location

  • When you request information from us:

    • Data you provide: Contact

    • Data Dialpad collects: Contact

  • When you opt-in for marketing messages:

    • Data you provide: Contact, Identifying information

    • Data Dialpad collects: Contact, Identifying information

All permanent data, such as contact lists, call records, recordings, and transcripts, are stored in the United States via Google Cloud Storage unless your Dialpad Services Administrator has selected a different region. Dialpad may also temporarily process Personal Data in other regions for purposes such as technical support, customer support, and sales. In-transit and temporary data associated with calls is processed through Dialpad's Data Centers and may be stored there for no more than 72 hours.

How does Dialpad use Personal Data?

  • Deliver the services, including placing and receiving voice and video calls, and providing recordings, transcriptions, and analytics of calls; determining your geographic location for efficient call routing, and organizing your contacts

    • Legal Basis for Processing (under GDPR): Contract

    • Data Subjects: Customers, End-Users

    • Personal Data: Location, Identifying Information, Device and Session Information, Telephony, Session Audio, Video, and Messaging, Communication

    • Dialpad’s Role: Processor

  • Manage your account and billing, to enable secure login and single sign-on, and allow third-party integrations

    • Legal Basis for Processing (under GDPR): Contract

    • Data Subjects: Customers

    • Personal Data: Contact Information, Billing Information, Integrations

    • Dialpad’s Role: Processor

  • Communicate with You. If you do not want to receive marketing communications from us, you can always opt-out by unsubscribing through the link at the bottom of our emails.

    • Legal Basis for Processing (under GDPR): Contract, Consent

    • Data Subjects: Customers

    • Personal Data: Contact Information, Communication

    • Dialpad’s Role: Processor

  • Prevent, detect, and investigate potentially prohibited or illegal activities, including fraud and violations of our Terms of Service and Acceptable Use Policy

    • Legal Basis for Processing (under GDPR): Compliance, Public Interest

    • Data Subjects: Customers, End-Users

    • Personal Data: Location, Identifying Information, Device and Session Information, Telephony, Session Audio, Video, and Messaging, Communication, Billing

    • Dialpad’s Role: Processor

  • Perform backups, disaster recovery, and system status monitoring)

    • Legal Basis for Processing (under GDPR): Contract

    • Data Subjects: Customers, End-Users

    • Personal Data: Telephony, Session Audio, Video, and Messaging

    • Dialpad’s Role: Processor

  • Market our Services

    • Legal Basis for Processing (under GDPR): Consent

    • Data Subjects: Customers

    • Personal Data: Communication, Identifying Information, Location

    • Dialpad’s Role: Processor

  • Integrate with Third-Parties We will share your Personal Data with affiliated businesses only if you or your Dialpad Services administrator set up an integration, and we will only share your information to the extent that it is related to the transaction or service.

    • Legal Basis for Processing (under GDPR): Contract, Consent

    • Data Subjects: Customers, End-Users

    • Personal Data: Integration Information

    • Dialpad’s Role: Processor

  • Improve the Services. Such as A/B testing of new features, improvement of AI speech recognition and language processing, and performance monitoring.

    • Legal Basis for Processing (under GDPR): Legitimate Interest

    • Data Subjects: Customers, End-Users

    • Personal Data: Location, Identifying Information, Device and Session Information, Telephony, Session Audio, Video, and Messaging, Communication, Billing

    • Dialpad’s Role: Controller

We may anonymize, de-identify, and/or aggregate your Personal Data so that you are not individually identifiable (“De-Identified Personal Data”), and provide De-Identified Personal Data to certain of our partners to help us improve our Service, such as sending anonymized samples of audio or text to a third party to improve speech-to-text transcription and reading comprehension. We may also provide aggregate usage information to our partners to understand how often and in what ways people use our Services. However, we never disclose aggregate usage information to a partner in a manner that would identify you personally, as an individual. De-Identified Personal Data may be aggregated for system administration and to monitor usage of the Website. It may be utilized to measure the number of visits to our Website, average time spent, and number of pages viewed and to monitor various other Website statistics. This monitoring helps us evaluate how visitors use and navigate our Website so we can improve the content. We may share De-Identified Personal Data or anonymous information (including, but not limited to, anonymous usage data, referring/exit pages and URLs, IP address, platform types, number of clicks, etc.) with interested third parties in any way we choose and for any purpose.

Messaging & MFA

If you opt-in to receive text messages from Dialpad for multi factor authentication (MFA), any opt-in data is not shared or sold to third parties or affiliates for marketing purposes. Messages will only come from Dialpad., MFA message frequency will vary and message & data rates may apply. Replying to an MFA message with STOP will disable MFA text messages. Learn more about MFA messaging on our Help Center.

Dialpad Ai Training

Dialpad’s Ai features are uniquely useful because they are based on real business conversations by real Dialpad users. By allowing Dialpad Ai to learn from your conversations, such as segments of call audio, video, transcriptions, and messaging, you can help us improve communication through enhanced call quality, more accurate transcriptions, and real-time insights. Allowing your data to be used to improve Dialpad Ai is not necessary for using AI features, and you may set your Ai training preferences at any time.

Automated Decision Making

Dialpad does not use Personal Data to make automated decisions.

What is “Legal Basis”?

When we process Personal Data about you in connection with our Services, our legal basis for processing depends on the Personal Data involved and the specific context in which we collect it.

Generally, we collect Personal Data from you to perform a contract for you (such as when you order a Service), or where the processing is in our legitimate interests (i.e. consistent with your use of the Service and overridden by your data protection interests or fundamental rights and freedoms, such as to market and provide our Services). We may also have a legal obligation to process Personal Data, or request your consent to do so. You may withdraw your consent at any time as explained in communications from us, in the Services, or by contacting us at [email protected].

Data Subject Rights

You have various rights related to the Personal Data we process and may exercise those rights by utilizing our Data Subject Access Request (DSAR) Portal. Following the submission of your request, Dialpad will verify your identity and respond to you within 30 days of the receipt of the request. When you update information, we may maintain a copy of the unrevised information in our records.

If you have a concern about our privacy practices, you can report it to the data protection authority that is authorized to hear those concerns, but we hope you will contact us first so that we may address any issues. 

Below is a summary of rights for those individuals subject to the GDPR and guidance on how to exercise them:

  • Right of Access

You can request access to the Personal Data we hold about you, including:

  • The categories of data we process

  • The purposes of the data processing

  • The period during which we retain that data

  • Third parties to which we disclose that data

Upon request, we can either provide an overview of the data we hold or we can provide you with a copy of your Personal Data

  • Right to Rectification

If your Personal Data is inaccurate or incomplete, you are entitled to ask that we correct or complete it. If we shared your Personal Data with others, we will tell them about the correction where possible. If you ask us, and where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so you can contact them directly.

  • Right to Erasure

You may ask us to erase your Personal Data in the following circumstances:

  • in case your Personal Data is no longer needed for the purposes for which it was collected;

  • if you have withdrawn your consent and there is no other legal basis for the processing of your Personal Data;

  • if you have filed an objection to our processing of certain of your Personal Data and there are no overriding legitimate reasons for continued processing such Personal Data;

  • if your Personal Data is being processed unlawfully;

  • if your Personal Data must be deleted to fulfill a legal obligation.

If we share your Personal Data with others, we will alert them to the need for erasure where possible. If you ask us, and where possible and lawful to do so, we will also tell you with whom we shared your Personal Data with so you can contact them directly.

  • Right to Restrict Processing

You may ask us to restrict or ‘block’ the processing of your Personal Data in the following circumstances:

  • we processed or will process inaccurate Personal Data

  • we processed your Personal Data unlawfully

  • we don't need to process your Personal Data, but we need to keep it to allow you to establish, exercise, or defend a legal claim

  • you exercised your right to object processing, but we are still validating your request

We will tell you before we lift any restrictions on processing. If we share your Personal Data with others, we will tell them about the restriction where possible. If you ask us, and where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so you can contact them directly.

  • Right to Data Portability

You have the right to obtain your Personal Data from us that you consented to give us or that was provided to us as necessary in connection with our contract with you where we process that Personal Data in an automated way. We will give you your Personal Data in a structured, commonly used and machine-readable format. You may reuse it elsewhere.

  • Right to Object

You may ask us at any time to stop processing your Personal Data, and we will do so if we are relying on a legitimate interest to process your Personal Data — unless we demonstrate compelling legitimate grounds for the processing. 

If your objection is related to receiving marketing communications or our newsletter, please hit the unsubscribe link on the communication you no longer wish to receive.

  • Rights in Relation to Automated Decision-Making and Profiling

You have the right to be free from decisions based solely on automated processing of your Personal Data, including profiling, unless this is necessary in relation to a contract between you and us or you provide your explicit consent to this use. Dialpad does not perform automated decision-making.

  • Right to Withdraw Consent

If we rely on your consent to process your Personal Data, you have the right to withdraw that consent at any time, but this will not affect any processing of your data that has already taken place.

Through your account settings, you may access, and, for some information, edit, or delete the following information you’ve provided to us:

  • name and password

  • email address

  • phone number(s)

  • location

  • time zone

  • place of employment

  • devices

  • recorded/transcribed messages and calls

  • call history including incoming/outgoing number and duration

  • user profile information, including images you have uploaded

  • billing information

  • contacts

  • other third-party account information you have linked to the site

To delete your accounts, please follow the instructions on How to Cancel Your Dialpad Account. After the deletion of your account, some information may remain in our records for a period that is consistent with the purpose it was collected for. 

How We Keep Your Data Secure

  • Compliance

Dialpad strives to comply with the controls set out in Applicable Data Protection Laws.

  • Infrastructure Security

Dialpad has implemented appropriate technical and organizational security measures to protect your data, including:

  • Data encryption in transit and at rest

  • SOC 2 Type II Certification

  • Certification under ISO Standards 27001, 27017, and 27018

  • Internal Best Practices

Dialpad has implemented practices in line with industry standards, including 

  • Role-based access

  • Single sign-on

  • Internal security and privacy training 

A description of our data security practices is available on our Trust page and such security guarantees are incorporated into our Data Processing Agreement (which is available for signature within the Admin Portal of existing customers).

Personal Data Disclosures

To provide, maintain, improve, secure, and promote our Services, Dialpad needs to disclose certain Personal Data to third parties. We do not license or sell your Personal Data to third parties, including advertisers, without your consent. As described below, when we share any information about you with third parties, we pseudonymize and aggregate any information about you before we share it unless more detail is necessary to the function of the Services. Although our Privacy Policy does not apply to the practices of companies we don’t own or people that we don’t manage, our Data Processing Agreements define how these third parties can use and store your information, consistent with this Privacy Policy. 

This section provides further details about the specific disclosures we make to other third parties, such as vendors, governmental authorities, or because of corporate restructuring.

  • Sub-Processors (Processors)

Certain Personal Data may be disclosed to our vendors who are essential for the functioning of the Services. Vendors that have access to Personal Data are considered sub-processors and nearly all our sub-processors are categorized by law as processors. This means that these sub-processors may process Personal Data on our behalf solely in accordance with our instructions and pursuant to a written agreement. For example, we use suppliers for webhosting, secure cloud storage, analytics, email delivery, customer relationship management, and other services. 

  • Disclosure of Personal Data to these sub-processors is limited to what is strictly required for the sub-processor to perform the service it provides.

  • These disclosures of Personal Data are either necessary for the purpose of performing our contract with you or necessary for the purposes of our legitimate interests (that are to provide, maintain, improve, secure, and promote our Services). 

  • We only disclose Personal Data to sub-processors in accordance with a written contract and based upon a legal basis.

  • Our sub-processors may change over time, but Dialpad maintains an up-to-date list of sub-processors here

  • Sub-Processors (Controllers)

In a few rare circumstances, our sub-processors may act as an independent controller of Personal Data. This means that these sub-processors process Personal Data in accordance with their own privacy policies; however, our contracts with such sub-processors require them to comply with applicable data protection laws when processing any Personal Data they receive from us.

  • Disclosure of Personal Data to these sub-processors is limited to what is strictly required for the sub-processor to perform the service it provides.

  • These disclosures of Personal Data are either necessary for the purpose of performing our contract with you or necessary for the purposes of our legitimate interests (that are to provide, maintain, improve, secure, and promote our Services). 

  • We only disclose Personal Data to sub-processors in accordance with a written contract and based upon a legal basis.

  • Our sub-processors may change over time, but Dialpad maintains an up-to-date list of sub-processors here.

  • Governmental Authorities

Various authorities such as regulators, tax authorities, law enforcement agencies, courts of law, and others may legally require us to produce information that may include Personal Data, for example through a subpoena or warrant. If Dialpad becomes aware of any government data demands requesting Personal Data, then Dialpad, in accordance with its Government Data Demands Policy, will:

  • immediately notify Customer of the government data demand unless such notification is legally prohibited; 

  • Take all reasonable steps to ensure the validity and enforceability of any governmental data demand; 

  • disclose Personal Data only in response to a valid and enforceable government data demand; and

  • to the extent Dialpad provides access to or discloses Personal Data in response to valid and enforceable government data demand, then Dialpad will disclose the minimum amount of Personal Data to the extent it is legally required to do so and in accordance with the applicable legal process.

We reserve the right to access, read, preserve, and disclose any personal information that we believe is necessary to comply with the law; to respond to lawful requests by public authorities, a court order or subpoena; to enforce or apply our Terms of Service and other agreements; or to protect the rights, property, or safety of Dialpad, our employees, our users, or others, including to meet national security or law enforcement requirements. In such cases, unless prohibited by law, we will provide notification to the user prior to such disclosure.

More information may be found on our Governmental Data Demand Page

  • Corporate Restructuring

If we (or our assets) are acquired, or if we go out of business, enter bankruptcy, or go through some other change of control, Personal Data could be one of the assets transferred to or acquired by a third party.

  • Further Information

We would be happy to address any specific questions you may have about your Personal Data. This Privacy Policy is intended to provide as much relevant information as possible; however, if you need more specific information, please contact us at [email protected].

Disclosure With Your Consent

Where we are processing your information as a processor on behalf of a Customer, the Customer determines their own policies and practices for the sharing and disclosure of your information and Dialpad does not control how a Customer or any other third parties choose to share or disclose information. Where we are processing your information on our own behalf as a controller, we may disclose your information with your consent, which we may obtain in several ways, including:

  • In writing;

  • Verbally;

  • Online, by clicking on a link or button; or, 

  • Other mechanisms.

Our Services permit you to submit information which may be displayed to other authorized users in the same or different Customer Account. The sharing and other controls applied to such information may be determined by you, other users and/or an administrator of your Account.

Disclosure Without Your Consent

In general, we may disclose or transfer your information without your consent to disclosure when we reasonably believe disclosure is appropriate to:

  • Comply with the law (e.g., lawful subpoena or court order);

  • Cooperate with or report to law enforcement agencies in investigations that involve users who use our Service Offerings for activities that are or seem illegal or illegitimate activities;

  • Enforce or apply agreements for our Service Offerings; or

  • Protect our rights or property or that of our affiliates, including respective officers, directors, employees, agents, third party content providers, suppliers, sponsors, or licensors (e.g., to address allegations about fraudulent or unlawful activity related to a Miro account).

  • In connection with a merger, acquisition, public offering, sale of company assets, insolvency, bankruptcy, or receivership, subject to standard confidentiality requirements.

  • To defend Dialpad and our affiliates, licensors, officers, agents and representatives from legal claims and processes brought to us by third parties (including takedown notices);

  • Use or disclose De-identified Personal Data in our sole discretion.

International Data Transfers

Dialpad operates at a global level and therefore Personal Data may need to be transferred to countries outside of where it was originally collected. In such a case, Dialpad only makes such cross-border transfers according to applicable laws. For example, to transfer data outside of the EEA or the UK, our Data Processing Agreement (which is available for signature within the Admin Portal of existing customers) incorporates the EU and UK Standard Contractual Clauses and supporting documents, as applicable, or other inter-company agreements. For transfers out of other jurisdictions operating transfer restriction regimes, we take similar steps to ensure compliance with local law.

Data Retention

In accordance with applicable data protection laws, we do not store your Personal Data for longer than needed for the purposes of the respective processing activity.

Dialpad, by default, will retain your data for as long as your account is active. Upon closure of your account, Dialpad will automatically delete your data within 180 days of account termination. You always have the right to implement a customizable retention policy that will delete data routinely based on your specific retention requests. For more information on how to set up a customizable retention policy, please visit our Help Center.

This retention policy ensures that Dialpad is completely deleting your data if it is no longer needed, unless its further temporary storage is still necessary to:

  • fulfill Dialpad’s obligations pursuant to the agreement between Dialpad and you;

  • establish, exercise, and defend a legal claim; or

  • fulfil statutory obligations to which Dialpad is subject.

For more detailed information about the retention periods of the Personal Data, please contact us at [email protected].

Cookie Policy, Third Party Analytics, and Tracking

Dialpad uses third-party service providers to understand how users enter, navigate, and leave the website and Services, the frequency and length of visits to the Services or third-party websites, application or device usage data, and your product or service preference indicated by the number of times and the length of time you view a product, as well as assist in providing information like chat and video. Dialpad and its third-party providers gather this data using cookies, web beacons, tags, video and chat windows, and other similar techniques which allow these networks to provide website capabilities, research, and reporting for us and advertisers.

Dialpad uses third-party services that help us understand traffic on our website in various ways, including:

  • Google Analytics and Google Adwords

These cookies help Dialpad understand who is visiting Dialpad’s websites and to show relevant ads on other websites to people who have visited Dialpad’s websites. You can control what ads you see through the Google Ad Settings Manager. More information on how Google uses information collected when you use Google’s partner sites is available at Google’s Partner Technologies page.

Marketo is a marketing automation tool that handles various marketing tasks, such as contacting visitors who provide their contact information and requesting additional information. You can read more about Marketo's Privacy Policy and opt-out options here via Marketo’s Privacy Notice.

  • Nextroll

Nextroll is a marketing automation tool that handles various marketing tasks, such as contacting visitors who provide their contact information and requesting additional information. You can read more about Nextroll’s Privacy Policy and opt-out options here via Nextroll’s Privacy Policy

  • Qualified

Qualified provides in-page chat services that connect potential customers with Dialpad personnel that can answer their questions. By sending a message, you agree that this session may be monitored, recorded, and shared with our third party service providers for personalization, analytics, and other business purposes as described in the Qualified Privacy Policy

In general, it is important to note the following regarding the use of cookies:

  • Cookies cannot be used to run programs or deliver viruses to your computer. 

  • Cookies are uniquely assigned to you and can only be read by a web server in the domain that issued the cookie to you.

  • We may use cookies to collect, store, and track information for statistical purposes to operate our Website and Services. You can accept or decline cookies.

  • Most web browsers automatically accept cookies, but you can modify your browser settings to disable cookies if you prefer (check your browser's Help page).

  • If you choose to decline cookies, you may not be able to experience all the features of the Website and Services.

For more information on cookies and how to manage them, please visit Internet Cookies.

You may be able to opt out of tracking conducted by third parties through our Services by adjusting the Do Not Track settings on your browser, but we don’t control whether or how these third parties comply with Do Not Track requests. Our Services do not support Do Not Track requests at this time, which means that we collect information about your online activity both while you are using the Services and after you leave our Services.

For more information on how to manage or restrict the use of cookies and to opt-out of all interest-based advertising, please visit the Network Advertising Initiative or Your Ad Choices. For End Users located in European Territories, the EDAA opt-out page here: https://youronlinechoices.eu/.

Other Vendor-specific Privacy Terms

Google Workspace

Dialpad users may enable Google Workspace integrations with some Dialpad products. Dialpad transfers Google user data to third parties solely to provide user requested services and support. Dialpad does not transfer Google user data for advertising, sale, or determining credit-worthiness.

Dialpad does not transfer Google user data to third parties for prohibited purposes such as targeted advertising, selling to data brokers, or determining credit-worthiness. Any data transferred to third-party AI tools, as enabled by the user, is exclusively for the purpose of providing the requested service and is not used to train or improve those third-party models.

Data Privacy Framework

Dialpad complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce.  Dialpad has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF.  Dialpad has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. 

If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern.  To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov/ 

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Dialpad commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs) and the UK Information Commissioner’s Office (ICO) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF.

Investigatory and Enforcement Powers of the FTC The Federal Trade Commission has jurisdiction over Dialpad’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF). Failing to follow the Data Privacy Framework principles could result in U.S. FTC enforcement measures against Dialpad.

Binding Arbitration Under certain conditions, and as a last resort, individuals may invoke binding arbitration to resolve complaints not resolved by other DPF mechanisms. Dialpad is obligated to arbitrate claims and follow the terms as set forth in Annex I of the DPF Principles, provided that an individual has invoked binding arbitration by delivering notice to Dialpad and following the procedures and subject to the conditions outlined in Annex I of the Principles. 

Onward Transfers and Liability Dialpad remains liable under the DPF Principles if a subprocessor processes your information on our behalf in a manner that is inconsistent with the DPF Principles, unless Dialpad proves that we are not responsible for the event giving rise to the damage

Privacy of Minors

Dialpad does not provide services designed for use by children under the age of 18, nor does it knowingly collect or solicit Personal Data from anyone under the age of 18. If we learn that we have collected such information we will delete that information as quickly as possible. If you believe that a child under 18 has provided us with Personal Data, please contact us at [email protected].

Changes and Amendments

We’re constantly trying to improve our Services, so we may need to change this Privacy Policy from time to time as well. We will alert you to changes by placing a notice on the Dialpad website, by sending you an email, and/or by some other means. Please note that if you’ve opted not to receive legal notice emails from us (or you haven’t provided us with your email address), those legal notices will still govern your use of the Services, and you are still responsible for reading and understanding them. Use of information we collect now is subject to the Privacy Policy in effect at the time such information is used.

Contact & Questions

If you have any questions, concerns, or complaints about this Privacy Policy or our data protection practices, please do not hesitate to contact our Data Protection Officer by emailing us at [email protected] or by writing to us at the following address:

Dialpad, Inc.
Attn: Data Protection Officer
2700 Camino Ramon
Suite 490
San Ramon, CA 94583

Acceptance of this Privacy Policy

By using the Website or its Services, you agree to be bound by this Privacy Policy.

If you do not agree to abide by the terms of this Privacy Policy, you are not authorized to use or access the Website and its Services.

Region Specific Provisions

California and US States

Under some U.S. state laws, including the California Consumer Privacy Act of 2018 (as amended by the California Consumer Privacy Rights Act) (CCPA), businesses that collect personal data of residents are required to make certain disclosures regarding how they collect, use and disclose such information, as well as rights available to residents. This section addresses those requirements.

Dialpad does not sell or share your Personal Data. Dialpad will only disclose your Personal Data as detailed in this Privacy Policy.

Residents have the right to make requests with regard to certain information we collect about them, at no charge, two times every 12 months, including the right to request disclosure and/or a copy of data collected by Dialpad, as well as the right to delete any such data and/or opt-out of the sale or sharing of such data. At all times, you have the right not to be discriminated against when exercising any of these rights. You may exercise those rights by utilizing our Data Subject Access Request (DSAR) Portal.