Your business data and customer information deserve the highest level of protection. We implement industry-leading security measures at every layer.
ReceptionOS handles sensitive customer calls and business data. Here's how we keep it secure.
All voice calls are processed through Twilio's enterprise-grade infrastructure with real-time encryption. Call recordings are stored encrypted and access-controlled.
Customer data including phone numbers, emails, and addresses are encrypted at rest using AES-256. All data in transit uses TLS 1.3 encryption.
Your business data is never used to train AI models for other customers. Conversations are processed in isolated environments with strict data boundaries.
Each organization's data is logically isolated with row-level security policies. Your leads, bookings, and call data are only accessible to your team.
Supabase-powered authentication with secure session management. Support for strong password policies and account recovery flows.
All significant actions are logged for accountability. Track who accessed what data and when for complete audit trails.
Configurable call recording with automatic disclosure announcements. Comply with two-party consent laws in your jurisdiction.
Configure how long call recordings and lead data are retained. Request complete data deletion at any time.
Export all your data including leads, bookings, call logs, and recordings. Your data belongs to you.
We follow industry standards to ensure your data remains protected.
Your data is encrypted everywhere
Strict authentication & authorization
Full visibility into your data
All calls are handled through Twilio's SOC 2 compliant infrastructure. Voice data is encrypted in transit and recordings are stored in encrypted cloud storage with access controls.
Powered by Supabase with PostgreSQL. Row-level security (RLS) policies ensure data isolation between organizations. All database connections use SSL.
AI conversations are processed through secure API connections to Anthropic and OpenAI. No customer data is used for model training. Conversations are processed in isolated contexts.
Hosted on Vercel's edge network with automatic HTTPS. Environment variables are encrypted. No sensitive data is exposed to the client.
Payment processing is handled entirely by Stripe. We never store credit card numbers or sensitive payment data on our servers.
We build on enterprise-grade cloud infrastructure from industry leaders.
Edge hosting & CDN
SOC 2 Type 2Database & Auth
SOC 2 Type 2Voice & SMS
SOC 2 Type 2Payments
PCI DSS Level 1We help you stay compliant with regulations
Configurable recording announcements to comply with one-party and two-party consent laws. Easy to disable recording for specific regions.
Data portability, right to deletion, and consent management features help you meet GDPR requirements for EU customers.
Support for California Consumer Privacy Act requirements including data access requests and opt-out mechanisms.
Configurable AI disclosure messages to inform callers they're speaking with an AI assistant, meeting emerging AI transparency requirements.
Our team is here to answer any questions about our security practices or help with your compliance requirements.