Legal
Privacy Policy
Last updated: 18 June, 2026
Converc ("we", "our", "us") respects your privacy. This Privacy Policy explains how we collect, use, and protect your information. Converc is a product operated by Kaizen Ventures (see "Who We Are & Contact" below).
1. Information We Collect
a. Information You Provide
- Name, email address, and account details
- Billing and subscription information
- Support communications
b. Automatically Collected Information
- IP address and device information
- Usage data (call duration, timestamps, feature usage)
- Browser and operating system details
c. Call Data
- Call metadata (not content by default)
- Recordings only if explicitly enabled by the Customer
2. How We Use Information
We use your information to:
- Provide and operate the Service
- Track usage and billing
- Improve performance and reliability
- Provide customer support
- Comply with legal obligations
3. Legal Bases for Processing (EEA/UK)
Where the GDPR or UK GDPR applies, we process personal data only where we have a lawful basis to do so:
- Performance of a contract — to create and operate your account and provide the Service.
- Legitimate interests — to secure, maintain, and improve the Service, prevent fraud and abuse, and communicate about the Service, where not overridden by your rights.
- Consent — for optional cookies/analytics and any marketing, where required. You may withdraw consent at any time.
- Legal obligation — to comply with applicable laws, tax requirements, and lawful requests from authorities.
4. Our Role: Controller and Processor
Converc plays two different roles depending on the data:
- As a processor. When our Customers (the businesses that embed the Converc widget on their websites) collect information from their website visitors through the widget — such as a visitor's name, email, the questions they answer, and call content — Converc processes that information on behalf of the Customer, under the Customer's instructions. The Customer is the controller of that visitor data and is responsible for having a lawful basis and providing appropriate notice to its visitors. This processing is governed by our Data Processing Agreement.
- As a controller. When we collect information about our Customers' own accounts — names, email addresses, billing details, and how Customers use our dashboard — Converc is the controller of that data, and this Privacy Policy governs it.
5. How We Share Information
We do not sell personal data.
We may share information with:
- Trusted infrastructure and service providers
- Payment processors
- Legal authorities if required by law
All third parties are required to protect your data.
6. Sub-Processors
We use a limited set of trusted third parties to provide the Service — for example, cloud hosting and database, real-time audio/video infrastructure, payment processing, email delivery, and notification integrations. These sub-processors process personal data only as needed to perform their functions and are bound by contractual confidentiality and data-protection obligations.
A current list of our sub-processors is available on request at mehul@converc.com and is updated when we add or replace a sub-processor.
7. Data Retention
We retain personal data only as long as necessary for the purposes described in this Policy. As a general guide:
- Account & profile data — for the life of your account, then deleted within 30 days of account closure.
- Call metadata (duration, timestamps, participants, usage) — up to 24 months for billing, analytics, and support.
- Call recordings (only if enabled by the Customer) — controlled by the Customer; deleted on Customer request or account closure.
- Billing records — for as long as required by applicable tax and accounting law.
- Support communications — up to 24 months.
When you or your organization deletes an account, we soft-delete the data and permanently purge it after a 30-day grace period, except where we must retain it to comply with law or resolve disputes.
8. Security
We implement industry-standard security measures including:
- Encrypted communication
- Access controls
- Secure infrastructure providers
However, no system is 100% secure.
9. Cookies
We may use cookies and similar technologies to:
- Maintain sessions
- Improve user experience
- Analyze usage trends
You can control cookies through your browser settings and, where we provide one, through our cookie consent banner.
10. International Data Transfers
We may process and store personal data in countries other than the one in which you reside, including India and the United States. Where we transfer personal data out of the EEA, UK, or Switzerland, we rely on appropriate safeguards, such as the European Commission's Standard Contractual Clauses (and the UK Addendum where applicable), or transfers to countries recognized as providing an adequate level of protection. A copy of the relevant safeguards is available on request at mehul@converc.com.
11. Your Rights
Depending on your location, you may have the right to:
- Access your data
- Correct inaccuracies
- Request deletion
- Object to processing
Requests can be sent to: mehul@converc.com
12. Your California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have the right to: (a) know the categories and specific pieces of personal information we collect and the purposes; (b) request deletion of your personal information; (c) request correction of inaccurate information; and (d) not receive discriminatory treatment for exercising these rights.
We do not sell or share your personal information as those terms are defined under the CCPA/CPRA, and we have not done so in the preceding 12 months. The categories of personal information we collect are described in "Information We Collect" above (identifiers, internet/network activity, and commercial/billing information). To exercise your rights, contact us at mehul@converc.com. We will verify your request before responding and will respond within the timeframes required by law. You may use an authorized agent to submit a request on your behalf.
13. Children's Privacy
The Service is intended for business use and is not directed to children. We do not knowingly collect personal data from anyone under 18. If you believe a child has provided us personal data, contact us at mehul@converc.com and we will delete it.
14. Data Breach Notification
We maintain safeguards designed to protect personal data. In the event of a personal data breach that affects your information, we will notify affected Customers and, where required, the relevant supervisory authority and data subjects, without undue delay and in accordance with applicable law.
15. Automated Decision-Making
We do not use your personal data to make decisions based solely on automated processing that produce legal or similarly significant effects on you.
16. Changes to Privacy Policy
We may update this Privacy Policy periodically. Changes will be posted on this page.
17. Who We Are & Contact
The Service is operated by Kaizen Ventures, located at 771/A, Sethia Niwas, 4 Pandit Tarapada Chakravarty Sarani, New Alipore, Kolkata, West Bengal, India - 700053.
For any privacy questions or to exercise your rights, contact us at:
mehul@converc.com