How can we help?

Are you a UK company?

Yes. We are a UK-registered company, our team is based in the UK, all customer data is held in UK / EU data centres, we are registered with the ICO, and our support runs on London business hours. Look for the trust badges at the bottom of our homepage.

Are you GDPR compliant?

Yes. We are ICO-registered, hold all data in the UK / EU, encrypt at rest and in transit, and provide a Data Processing Agreement on request. Email privacy@autoreceptionist.ai for our DPA.

How is my data protected?

All data is encrypted in transit (TLS 1.2+) and at rest (AES-256). API keys and sensitive settings are encrypted with a separate key. Access requires email and password (or Google OAuth). We are based in the UK and fully GDPR compliant.

Where is my data stored?

All data (calls, transcripts, recordings, bookings, customer details) is stored on UK-based servers. We never transfer personal data outside the UK or EEA without your consent.

Who can access my call recordings?

Only you (via your dashboard) and our small UK-based engineering team for support purposes. Recordings are retained for 90 days then automatically deleted unless you export them.

Are call transcripts shared with third parties?

No. We use Vapi.ai for call processing under strict data processing agreements. Transcripts are never shared, sold, or used to train external AI models. Read our full privacy policy at /privacy.

Is the service GDPR compliant?

Yes. We are registered with the UK ICO, have a Data Processing Agreement available on request, support data subject access requests, and offer full account deletion within 30 days.