← Back to Home

Privacy Policy

Last Updated: August 1, 2025

Your Privacy Matters: This Privacy Policy explains how Voca collects, uses, protects, and shares your personal information when you use our blockchain telecommunications platform and AI voice services.

1. Information We Collect

1.1 Personal Information

We collect information you provide directly to us, including:

Account registration details (name, email address, username)
Payment and billing information for NFT purchases
Voice recordings and audio data for voice cloning services
Communications with our support team
Profile information and preferences

1.2 Voice and Biometric Data

Important: We collect and process voice recordings, which may constitute biometric data in some jurisdictions. This includes:

Voice samples provided for cloning services
Voice interactions with AI agents
Audio recordings during service usage
Voice pattern analysis and characteristics

1.3 Technical Information

We automatically collect certain information when you use our services:

Device information (IP address, browser type, operating system)
Usage data (pages visited, features used, time spent)
Blockchain wallet addresses and transaction data
Cookies and similar tracking technologies
Log files and error reports

2. How We Use Your Information

Purpose	Legal Basis	Data Categories
Provide voice cloning services	Contract performance	Voice recordings, account data
Process NFT transactions	Contract performance	Payment info, wallet addresses
Improve AI algorithms	Legitimate interests	Usage data, voice patterns
Customer support	Contract performance	Communications, account data
Security and fraud prevention	Legitimate interests	All data categories

3. Voice Data and Biometric Information

Special Notice for Voice Data: Voice recordings may be considered biometric data under laws such as the Illinois Biometric Information Privacy Act (BIPA) and similar regulations.

3.1 Voice Data Collection

We collect voice data only with your explicit consent for the following purposes:

Creating personalized voice agents
Improving voice synthesis technology
Providing voice-based authentication (if enabled)
Enhancing user experience and service quality

3.2 Voice Data Protection

We implement enhanced security measures for voice data:

End-to-end encryption during transmission and storage
Limited access on a need-to-know basis
Regular security audits and vulnerability assessments
Automatic deletion after specified retention periods

3.3 Your Rights Regarding Voice Data

You have the right to:

Withdraw consent for voice data processing at any time
Request deletion of your voice recordings
Receive information about how your voice data is used
Object to automated decision-making based on voice analysis

4. Data Sharing and Disclosure

4.1 Third-Party Service Providers

We may share your information with trusted third parties who assist us in operating our platform:

Crossmint: Payment processing for NFT transactions
Play.AI: AI voice synthesis and processing
Cloud Storage Providers: Secure data storage and backup
Analytics Providers: Platform usage analysis and improvement

4.2 Legal Requirements

We may disclose your information when required by law or to:

Comply with legal processes or government requests
Protect our rights, property, or safety
Investigate potential violations of our Terms of Service
Prevent fraud or other illegal activities

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction, subject to equivalent privacy protections.

5. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure adequate protection through:

Standard Contractual Clauses approved by regulatory authorities
Adequacy decisions by relevant data protection authorities
Certification schemes and codes of conduct
Binding corporate rules for intra-group transfers

6. Data Retention

We retain your information for as long as necessary to provide our services and fulfill legal obligations:

Data Type	Retention Period	Reason
Account information	Duration of account + 7 years	Legal compliance, taxation
Voice recordings	Duration of service + 3 years	Service improvement, legal claims
Transaction records	7 years after transaction	Financial regulations, tax obligations
Usage analytics	26 months	Service optimization

7. Your Privacy Rights

7.1 General Rights

Depending on your jurisdiction, you may have the following rights:

Access: Request copies of your personal information
Rectification: Correct inaccurate or incomplete data
Erasure: Request deletion of your personal information
Portability: Receive your data in a structured format
Objection: Object to certain types of data processing
Restriction: Limit how we process your information

7.2 California Privacy Rights (CCPA)

California residents have additional rights including:

Right to know what personal information is collected
Right to delete personal information
Right to opt-out of the sale of personal information
Right to non-discrimination for exercising privacy rights

7.3 European Privacy Rights (GDPR)

EU residents have rights under the General Data Protection Regulation, including all rights listed above plus the right to lodge complaints with supervisory authorities.

8. Security Measures

We implement industry-standard security measures to protect your information:

8.1 Technical Safeguards

AES-256 encryption for data at rest
TLS 1.3 encryption for data in transit
Multi-factor authentication for sensitive operations
Regular security audits and penetration testing
Secure key management and rotation

8.2 Administrative Safeguards

Employee privacy training and confidentiality agreements
Access controls and principle of least privilege
Incident response procedures
Vendor security assessments

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

9.1 Types of Cookies

Essential Cookies: Required for basic site functionality
Performance Cookies: Help us understand how you use our site
Functional Cookies: Remember your preferences and settings
Targeting Cookies: Deliver relevant content and advertisements

9.2 Cookie Management

You can control cookies through your browser settings. Note that disabling certain cookies may affect site functionality.

10. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete such information promptly.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the updated policy on our website
Sending email notifications to registered users
Providing in-app notifications
Publishing notices on our social media channels

Your continued use of our services after such changes constitutes acceptance of the updated policy.

12. Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our privacy compliance. You can contact our DPO with any privacy-related questions or concerns.

Contact Information

For privacy-related inquiries or to exercise your rights, contact us:

Privacy Officer: privacy@voca.com

Data Protection Officer: dpo@voca.com

General Inquiries: support@voca.com

Mailing Address:
Voca Privacy Department
1234 Innovation Drive
Tech City, Delaware 19801
United States

EU Representative:
Voca EU Privacy Representative
123 Data Protection Street
Dublin, Ireland