Overview
LIBS.CC is committed to protecting your privacy. This Privacy Policy explains what personal data we collect, how we use it, and your rights regarding that data. By using the Service, you agree to the collection and use of information as described in this policy.
Information We Collect
We collect the following categories of data:
- Account data: Email address, display username, and password (stored as a secure hash — never in plain text)
- Contact data: Your callback phone number, required for SIP call routing
- Billing data: Payment records, top-up amounts, and subscription status. Card details are handled directly by our payment processor and are never stored on our servers
- Call records: Destination number, call duration, timestamp, and route used — retained for billing and compliance
- Caller ID configuration: The outbound caller ID numbers you set and your history
- Technical data: IP address used to register with our service, for security and fraud prevention
How We Use Your Data
Your data is used exclusively for the following purposes:
- Operating and delivering the Service to you
- Processing payments and maintaining your account balance
- Routing your outbound calls through our infrastructure
- Providing customer support and responding to tickets
- Detecting and preventing fraud, abuse, and unauthorised access
- Complying with legal obligations, including requests from law enforcement where legally required
- Sending service-related communications (account creation, billing, security alerts)
We do not send marketing emails without your explicit consent.
Caller ID & Call Data
The outbound caller ID you configure is transmitted to destination telecommunications networks as part of the SIP protocol. This is the core function of the Service. Once transmitted to a carrier network, we have no control over how that number is displayed or stored by the recipient's carrier.
Your real callback number is used internally only for SIP call routing and is never transmitted to or displayed to call recipients.
Call content is not recorded or stored by default. Where call recording is enabled by you, recordings are stored in encrypted cloud object storage — see the Call Recordings & Voicemail section below. We retain call metadata (destination, duration, timestamp) for billing and compliance purposes.
Data Security
We implement industry-standard security practices to protect your data:
- Passwords are hashed using a strong cryptographic algorithm and are never stored or accessible in plain text
- SIP credentials are generated per-account and can be regenerated at any time on your request
- All data transmission between your device and our servers uses encrypted connections
- Access to customer data is restricted to authorised personnel only
No system is 100% secure. If you believe your account has been compromised, contact support immediately.
Data Retention
We retain your data for the following periods:
| Data Type | Retention Period |
|---|---|
| Account data (profile, settings) | Life of account plus 30 days after closure |
| Call logs | 12 months |
| Call recordings and voicemail | 90 days from creation |
| Payment records | 7 years (legal requirement) |
| Webhook logs | 30 days |
You may request early deletion of your account data by contacting support. Billing records required for legal compliance cannot be deleted early.
Third-Party Processors
We work with a limited number of trusted third-party service providers strictly necessary to operate the Service. These providers are contractually bound to process your data only as directed by LIBS.CC and may not use it for their own purposes. Categories of providers include:
- Cloud infrastructure & database providers — Store user account data, call logs, and settings on secure, encrypted infrastructure.
- Cloud storage providers — Store call recordings and voicemail audio files in encrypted object storage accessible only to the account holder.
- Transactional email providers — Deliver account notifications, verification emails, and service alerts on our behalf.
- Licensed telecommunications carriers — Route calls through regulated network operators who handle call routing data under their own regulatory obligations.
- Payment processors — Handle billing transactions using industry-standard encryption. Your payment card details are never stored on our servers.
We do not use advertising networks, analytics platforms that track individual users, or any third party whose purpose is marketing or profiling. A current list of sub-processors is available upon request at support@libs.cc.
Call Recordings & Voicemail
Call recordings (if enabled) and voicemail messages are stored encrypted in secure cloud object storage. Recordings are accessible only to the account holder. LIBS.CC staff do not access recordings unless required for a legitimate support request or legal obligation.
Recordings are retained for 90 days from creation, after which they are automatically deleted. You may delete individual recordings at any time from your dashboard.
Cookies
We use session cookies only — strictly for maintaining your authenticated session on the dashboard. These cookies expire when you sign out or close your browser.
We do not use tracking cookies, advertising cookies, analytics cookies, or any persistent cookies beyond session authentication.
Your Rights (GDPR)
If you are located in the European Economic Area or United Kingdom, you have the following rights regarding your personal data:
- Right to access — Request a copy of the personal data we hold about you
- Right to rectification — Request correction of inaccurate or incomplete data
- Right to erasure — Request deletion of your data ("right to be forgotten"), subject to legal retention requirements
- Right to data portability — Request your data in a structured, machine-readable format
- Right to restrict processing — Request that we limit how we use your data in certain circumstances
- Right to object — Object to processing of your data in certain circumstances
To exercise any of these rights, contact us at support@libs.cc. We will respond within 30 days.
Data Breach Notification
In the event of a data breach affecting your personal data, LIBS.CC will notify affected users within 72 hours of becoming aware of the breach, in accordance with applicable law (including the UK GDPR and EU GDPR where applicable).
International Data Transfers
Your data may be processed outside your country of residence. Our cloud infrastructure and storage providers may store data in the United States or other countries. Where required by law, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses under GDPR, to protect your data when it is transferred internationally.
Contact
For privacy-related enquiries or to exercise your rights: