Centuria Core LogoBack to Home

Privacy Policy

Last Updated: 24/02/2026

1. Information We Collect

We collect information to provide better services to all our users:

  • Account Information: Name, email, and business details for Partners and Clients.
  • Payment Data: Processed securely via Stripe. We collect "Metadata" (transaction amounts, status) but not raw PCI data.
  • Interaction Data: Audio recordings, text transcriptions, call duration, and metadata generated during interactions between AI agents and End Users.
  • Technical Data: IP addresses, browser type, and usage logs.

2. How We Use Information

  • To facilitate the deployment and tracking of AI agents.
  • To provide transcriptions and analytics to Clients regarding their End Users.
  • To process payments and payouts via Stripe.
  • To improve our AI models and platform performance.

3. Data Sharing and Sub-processors

We share data with the following essential sub-processors to provide the service:

  • Stripe: For payment processing and KYC identity verification.
  • Retell AI / Vapi: For processing voice-to-text, LLM logic, and text-to-speech.
  • Cloud Providers: (e.g., AWS/Google Cloud) for secure data storage of transcriptions.

4. Data Retention

  • Transcriptions/Recordings: We store these as long as the Client's account is active or as required to fulfill the Service. Clients may delete this data via the dashboard.
  • Financial Records: Retained according to statutory requirements dictated by Stripe and financial regulators.

5. Your Rights (GDPR/CCPA)

Depending on your location, you may have the right to:

  • Access the personal data we hold about you.
  • Request the deletion of your data.
  • Object to the processing of your data.

Note for End Users: If you are an End User of one of our Clients, you must contact that Client directly to exercise your data rights, as we act as a "Data Processor" on their behalf.

6. Security

We implement industry-standard encryption (AES-256) for data at rest and TLS for data in transit. However, no method of transmission over the internet is 100% secure.

7. International Data Transfers

Data may be transferred to and processed in the United States or other countries where our sub-processors (Stripe, Retell, Vapi) operate. We ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs).

8. Platform-Specific Disclosures

  • Recording Consent: Clients are responsible for legally required notice and consent (e.g., informing End Users that calls are recorded).
  • Stripe Connect: Partners using Connected Accounts enter into a direct legal relationship with Stripe.
  • Data Processing Addendum (DPA): A DPA may be offered for applicable jurisdictions, including for European Clients.
  • Sensitive Data Considerations: In some jurisdictions, voice biometrics may be considered sensitive personal data.
  • Bot Disclosure: Clients are responsible for ensuring End Users are informed when they are interacting with an AI system where required by law.