callmine.
§ Legal · Privacy

callmine Privacy Policy

Last updated: May 16, 2026

This Privacy Policy describes how Discera Inc., doing business as callmine ("callmine," "we," "us," or "our"), collects, uses, shares, and protects personal information.

This policy applies to:

  • ·our marketing website at callmine.ai;
  • ·our application at app.callmine.ai;
  • ·our APIs and related services (together, the "Service"); and
  • ·communications with us by email, in-app messaging, or other means.

This policy does not cover any third-party site, product, or service, even one that links to or integrates with callmine.

1. Our role under privacy law

callmine acts in two different roles depending on the personal information involved.

We act as a controller for personal information about:

  • ·visitors to callmine.ai;
  • ·people who fill out contact forms or contact us by email;
  • ·administrators and Authorized Users who hold callmine accounts; and
  • ·billing contacts and payment-related information.

For this information, this Privacy Policy describes how we handle it.

We act as a processor (or "service provider") for personal information contained in Customer Data — for example, names, emails, job titles, phone numbers, voice transcripts of call participants, and CRM contact and deal records that our Customers connect through Gong or HubSpot.

When we act as a processor, our Customer (the organization that holds the callmine workspace) is the controller and decides what data is uploaded, analyzed, retained, and deleted. Our handling of Customer Data in this role is governed by our Data Processing Addendum and by the Customer's own privacy notices.

If your personal information appears in callmine because you took a sales call with one of our Customers, met with one of their teams, or are a contact in their CRM, please contact that Customer directly to exercise access, correction, deletion, or other rights. We will assist Customers in responding to your request as required by law.

2. Information we collect

2.1 Information you provide

  • ·Account information, via Clerk: your name, email address, password (handled by Clerk), workspace name, and organization role.
  • ·Billing information, via Stripe: billing contact name and email, address, and payment-method details. Stripe processes payment card data; we do not store full card numbers.
  • ·Integration credentials: Gong API keys/secrets/OAuth tokens, HubSpot Private App Tokens, Slack Incoming Webhook URLs. These are encrypted at the application layer.
  • ·Content you submit: prompts, schedules, configuration choices, support messages, and any other content you provide.

2.2 Customer Data we process on your behalf

When you use the Service, we process the following categories of personal information that you direct into the Service through integrations or analysis runs:

  • ·Gong call metadata, including call IDs, titles, scheduled times, participant lists, durations, and Gong URLs;
  • ·participant information from Gong, including names, email addresses, phone numbers, job titles, and company affiliation;
  • ·transcript text generated by Gong;
  • ·HubSpot CRM data, including contact records (names, emails, phone, job title, owner), account and company records, and deal records associated with calls; and
  • ·any other content surfaced through Gong or HubSpot as part of analysis.

We process this information as a processor for the Customer. Our Data Processing Addendum governs that processing.

2.3 Information collected automatically

  • ·Usage data: pages visited, features used, actions taken, IP address, browser type, device information, referring URL, and timestamps.
  • ·Cookies and similar technologies: we and PostHog use cookies and similar technologies for authentication, security, preferences, and product analytics. On our marketing site at callmine.ai, we also use RB2B (operated by Retention.com) and similar marketing-identification vendors that may use cookies and similar technologies to associate your visit with personal information (including your email address) that they or their data partners have about you, so that we — or service providers on our behalf — may send marketing communications. See Section 10 for opt-out details.
  • ·Log data: server logs, error logs, and security logs.

2.4 Information from third parties

  • ·Authentication providers (Clerk) confirm your identity.
  • ·Payment processors (Stripe) confirm payment status.
  • ·Integration providers (Gong, HubSpot, Slack) return data we are authorized to access.

3. How we use information

We use personal information to:

  • ·provide, operate, maintain, secure, and improve the Service;
  • ·create and manage accounts, workspaces, and subscriptions;
  • ·run analyses you request, generate reports, send notifications, and store outputs you can retrieve;
  • ·process payments and prevent fraud;
  • ·communicate with you about the Service, including service announcements, security alerts, and support;
  • ·send marketing communications, which you can opt out of at any time;
  • ·understand product usage and improve features; and
  • ·comply with law, respond to legal process, and enforce our Terms.

We do not sell personal information for monetary consideration. However, our use of RB2B and similar marketing-identification vendors on our marketing site at callmine.ai may constitute "sharing" personal information for cross-context behavioral advertising under the CCPA/CPRA — see Section 9.1 for details and opt-out instructions. We do not use Customer Data to train our own foundation models, and we do not authorize our AI subprocessors to use Customer Data to train their general-purpose models, except as permitted by your written instructions.

4. Legal bases (EEA, UK, and Switzerland)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, we rely on the following legal bases:

  • ·Contract: to provide the Service to you and your organization.
  • ·Legitimate interests: to secure and improve the Service, prevent fraud, communicate with users, and conduct business operations, where those interests are not overridden by your rights.
  • ·Consent: where required, for marketing communications and certain cookies.
  • ·Legal obligation: to comply with applicable laws, court orders, and lawful government requests.

You can withdraw consent at any time without affecting the lawfulness of prior processing.

5. How we share information

We share personal information with:

  • ·Subprocessors and service providers. Our current subprocessor list is published at callmine.ai/subprocessors and includes Google Cloud (hosting and storage), OpenAI (AI analysis), Clerk (authentication), Stripe (payments), Mailgun (transactional email), PostHog (analytics), and Slack (where you connect a webhook). Customer-configured integrations such as Gong and HubSpot are governed by your agreements with those providers.
  • ·Marketing and website-analytics partners. On our marketing site at callmine.ai, we use RB2B (Retention.com) to identify business visitors at the person and company level for B2B outreach. RB2B and its data partners may associate your visit with personal information — including your email address — and provide that information to us. These partners are not Subprocessors under our DPA because they process website-visitor data for which callmine is the controller, not Customer Data. See Sections 9.1 and 10 for opt-outs.
  • ·Customers and Authorized Users. Workspace data is visible to admins and Authorized Users of the same workspace.
  • ·Legal, safety, and compliance. We may disclose information if required by law, valid legal process, or to protect our rights, safety, or property, or those of our users or others.
  • ·Business transfers. In connection with a merger, acquisition, financing, reorganization, or sale of assets, information may be transferred to a successor entity. We will provide notice consistent with applicable law.
  • ·With your direction. When you authorize sharing — for example, by connecting an integration.

We do not sell personal information for monetary consideration. See Section 9.1 for our CCPA/CPRA disclosures regarding "sharing" personal information for cross-context behavioral advertising.

6. International transfers

callmine is based in Canada and uses subprocessors located in Canada, the United States, and other countries. Where we transfer personal information out of the EEA, the UK, or Switzerland, we rely on appropriate safeguards including the European Commission's Standard Contractual Clauses, the UK International Data Transfer Addendum, and equivalent Swiss mechanisms, or adequacy decisions where available. A copy of the safeguards used for a specific transfer is available on request to privacy@callmine.ai.

7. Retention

We retain personal information for as long as needed to provide the Service, comply with our legal obligations, resolve disputes, enforce agreements, and maintain security.

  • ·Account and workspace records: for the life of the account, plus a limited period after closure for legal and operational purposes.
  • ·Customer Data: retained per the Customer's instructions. We delete or de-identify Customer Data within 30 days of termination, with backups rolling off within 90 days through normal backup rotation, subject to legal retention requirements.
  • ·Billing and tax records: as required by applicable tax and accounting law, typically six to seven years in Canada.
  • ·Logs and security records: typically up to 12 months, longer if needed for investigation.

8. Security

We maintain administrative, technical, and organizational safeguards designed to protect personal information. Current safeguards include HTTPS in production, workspace-scoped authorization, role-based admin controls, signed webhook verification, OIDC verification for worker requests, and app-layer encryption of stored integration credentials.

No system is perfectly secure. You are responsible for the security of your account credentials and devices, and for choosing appropriate workspace admins and integration scopes.

9. Your rights

Depending on where you live, you may have the following rights:

  • ·Access: ask what personal information we hold about you.
  • ·Correction: ask us to correct inaccurate or incomplete information.
  • ·Deletion: ask us to delete your personal information.
  • ·Portability: ask for a copy of your information in a portable format.
  • ·Objection or restriction: ask us to stop or restrict certain processing.
  • ·Withdraw consent: where we rely on consent.
  • ·Complaint: file a complaint with your data protection authority or, in Canada, the Office of the Privacy Commissioner.

To exercise these rights, email privacy@callmine.ai. We may need to verify your identity before responding. If your personal information appears in callmine because of a Customer's use of the Service, we will direct your request to the Customer; please contact the Customer directly for the fastest response.

We will not discriminate against you for exercising your privacy rights.

9.1 California (CCPA/CPRA)

In the past 12 months, callmine has collected the following categories of personal information from controller-role data (account holders and website visitors):

  • ·identifiers (name, email, account ID);
  • ·commercial information (subscription history, payment activity);
  • ·internet activity (usage data, logs);
  • ·geolocation (approximate, derived from IP); and
  • ·inferences (product engagement signals).

We collect this information for the business purposes described in Section 3. We do not sell personal information for monetary consideration. However, our use of RB2B (Retention.com) and similar marketing-identification vendors on our marketing site at callmine.ai may constitute "sharing" personal information for cross-context behavioral advertising as that term is defined under the CCPA/CPRA. The categories of personal information involved are identifiers (including email addresses derived by RB2B's data partners) and internet activity (visit signals). The business purpose is B2B marketing and outreach. We do not knowingly collect or process sensitive personal information for the purpose of inferring characteristics about consumers.

California residents have the right to opt out of this "sharing" by visiting https://app.retention.com/optout and may also email privacy@callmine.ai. We do not have actual knowledge that we share personal information of consumers under 16 years of age.

California residents may exercise the other rights described above. To verify a request, we may ask you to confirm information already associated with your account.

9.2 EEA, UK, and Switzerland (GDPR, UK GDPR, FADP)

You have the rights listed above. You may also lodge a complaint with your local supervisory authority. Our processing is based on the legal bases described in Section 4.

9.3 Canada (PIPEDA and Québec Law 25)

callmine's privacy contact is our designated Privacy Officer, reachable at privacy@callmine.ai. You have the right to access and correct your personal information and to challenge our compliance with PIPEDA. You may also contact the Office of the Privacy Commissioner of Canada or, for Québec residents, the Commission d'accès à l'information.

10. Cookies

We use cookies and similar technologies to keep you signed in, remember preferences, understand product usage (via PostHog), and secure the Service. You can control cookies through your browser settings; blocking necessary cookies may prevent parts of the Service from working.

On our marketing site at callmine.ai, we also use RB2B and similar marketing-identification vendors as described in Sections 2.3 and 5. When you visit or log in to our website, cookies and similar technologies may be used by our online data partners or vendors to associate these activities with other personal information they or others have about you, including by association with your email. We (or service providers on our behalf) may then send communications and marketing to these email addresses. You may opt out of receiving this advertising by visiting https://app.retention.com/optout. You also have the option to opt out of the collection of your personal data in compliance with GDPR by visiting https://www.rb2b.com/rb2b-gdpr-opt-out.

11. Children's privacy

The Service is intended for business users and is not directed to children. We do not knowingly collect personal information from children under 16, or under the age of digital consent in your jurisdiction. If you believe a child has provided us with personal information, contact privacy@callmine.ai.

12. Changes to this Policy

We may update this Privacy Policy from time to time. If changes are material, we will notify you by email, in-app notice, or a prominent notice on callmine.ai. The updated policy becomes effective on the date stated in the notice, or when posted if no date is stated.

13. Contact us

For privacy questions, requests, or complaints:

Discera Inc. d/b/a callmine 1386 Larchview Trail Mississauga, Ontario, Canada privacy@callmine.ai