What we collect

Account details (name, email, phone), billing information processed by Stripe, project content you provide, and usage data needed to operate hosting and support.

How we use it

To deliver services, billing, support, security, and — with consent — marketing about CORE offers and educational content.

Sharing

We use subprocessors (hosting, email, SMS, payments) under contracts. We do not sell personal information.

Your choices

Update profile details in your portal. Opt out of marketing in notification settings. Contact privacy@core.example for access or deletion requests.

Governing law

This policy is governed by the laws of the State of Florida.

Voice & Biometric Data

CORE's service architecture includes voice synthesis and inbound call handling. In the course of providing these services, CORE may collect and process voice data, including audio recordings of telephone and voice interactions, synthesized and captured voice prints, and transcripts generated from call audio. This data may originate from CORE Clients and from end users or callers who interact with a Client's automated voice agents through the CORE platform.

Voice recordings, voice prints, and call transcripts are used to deliver and operate the voice and call-handling services, route and respond to inbound calls, generate transcripts, improve service reliability, and maintain records required for security, quality assurance, billing, and dispute resolution. Audio recordings and voice prints are encrypted at rest and in transit consistent with the safeguards described in this Policy.

Voice recordings, voice prints, and call transcripts are retained only for as long as necessary to provide the services or to satisfy applicable legal, accounting, or dispute-resolution obligations, after which they are deleted or anonymized. You may request deletion of voice data associated with your account by emailing legal@coretv.agency with the subject line 'Voice Data Deletion Request'; verified requests are processed in accordance with the deletion timelines described in this Policy, subject to the backup-purge window and any legally required retention.

Biometric-privacy laws, including the Illinois Biometric Information Privacy Act (BIPA) and similar statutes adopted by other states, may treat voice prints and related identifiers as protected biometric information and impose significant penalties, including private rights of action and statutory damages, for non-compliant collection or use. The Client is solely responsible for obtaining all legally required consents from its end users and callers, including consent to be recorded and consent to interact with an AI or automated voice agent, before those individuals interact with the CORE-powered voice services. The Client agrees to indemnify CoreTV LLC against any claims arising from the Client's failure to obtain such consents.

AI Processing & Model Training

CORE's service architecture uses artificial-intelligence systems to deliver its features. Client data and end-user data submitted to or generated by CORE may be processed through this AI architecture solely to provide, operate, and support the services requested by the Client.

CORE relies on enterprise large-language-model APIs provided by third parties, including Anthropic (Claude), OpenAI, and Google (Gemini). Under the enterprise terms applicable to these APIs, the providers do not use customer data submitted through the API to train or improve their models by default. CORE does not use Client data or end-user data to train, fine-tune, or otherwise improve any third-party model.

In the event CORE ever elects to fine-tune or train a model on data specific to a particular Client, CORE will first obtain that Client's explicit, opt-in consent before doing so. Absent such consent, Client-specific data will not be used for model training or fine-tuning of any kind.

Florida Digital Bill of Rights & State Privacy Rights

CoreTV LLC is a Florida limited liability company, and its data-handling, retention, and deletion protocols are designed to align with the Florida Digital Bill of Rights (FDBR) and other applicable U.S. state privacy laws. Where a state privacy law grants you rights with respect to your personal data, CORE will honor those rights to the extent required by that law.

Subject to verification of your identity and the statutory and contractual retention requirements described in this Policy and in the CORE Terms of Service, you may request to access the personal data CORE holds about you, correct inaccurate or incomplete personal data, and request the deletion or purge of your personal data. Certain records, including billing, tax, voice, domain, and dispute-related records, may be retained in original or anonymized form where retention is required by law or by a legitimate business necessity.

To exercise any of these rights, email legal@coretv.agency identifying the right you wish to exercise and the email address associated with your account. CORE will acknowledge and respond to verified requests within the timeframes required by applicable law, consistent with the deletion-request process described elsewhere in this Policy. If CORE declines a request in whole or in part as permitted by law, it will explain the basis for that decision.

Communications Data — Calls, SMS & Email

To provide telephony, messaging, voice, AI-conversation, and email features, CORE collects and processes communications data. For calls and voice interactions this may include phone numbers, caller-ID information, call metadata and call-detail records (date, time, duration, direction, routing), audio recordings, and transcripts. For SMS/MMS and other messaging this may include sender and recipient phone numbers, message content, attachments, and delivery and engagement status. For email this may include sender and recipient email addresses, message content and headers, and delivery, bounce, complaint, open, and click events generated through tracking pixels and wrapped links. This data may originate from CORE Clients and from the end users, callers, and recipients who interact with a Client's communications and automated agents through the CORE platform.

CORE uses communications data to deliver and operate the requested services, route and respond to calls and messages, generate transcripts, measure deliverability and engagement, provide support, prevent abuse and fraud, and maintain records required for security, billing, and dispute resolution. Communications data is encrypted in transit and at rest consistent with the safeguards described in this Policy and is retained only for as long as necessary to provide the services or to satisfy applicable legal, accounting, or dispute-resolution obligations, after which it is deleted or anonymized. This section supplements the Voice & Biometric Data section above.

Communications Subprocessors

CORE relies on the following third-party subprocessors to deliver communications features, and Client and end-user communications data is shared with them solely to provide the services: Twilio Inc. (programmable voice, SMS/MMS and A2P messaging, and AI/conversation services); Twilio SendGrid (transactional and marketing email delivery); and Amazon Web Services, Inc., including Amazon Simple Email Service (SES) (email delivery) and cloud hosting. These providers process data as subprocessors under their respective terms and data-processing agreements and maintain their own security and privacy programs. CORE does not sell communications data, and CORE does not use Client or end-user communications data to train third-party models, consistent with the AI Processing & Model Training section above.

Email Open & Click Tracking

When Clients send email through CORE, the platform may embed a small, typically invisible tracking pixel and may rewrite (wrap) links in order to measure whether a message was opened and whether links were clicked. This engagement data is used to operate campaigns, gauge deliverability and performance, manage sender reputation, and support suppression of unengaged or complaining recipients. Recipients can generally limit open tracking by configuring their mail client to block remote images. Where CORE acts as the email-sending platform for a Client, the Client is the sender and controller of its campaigns and is responsible for the lawful use of engagement tracking and for any required disclosures to its recipients.