Your conversations are yours. We keep it that way
CallCopilot is designed so that we never have access to your call content. No audio recordings, local-first storage, and zero training on your data.
The basics
CallCopilot is a native macOS app that listens to your sales calls and gives you real-time coaching suggestions, MEDDPICC scoring, and deal intelligence. Here's what matters from a security perspective:
We never record your calls. Audio is processed via streaming transcription and immediately discarded. No audio files are ever created, stored, or uploaded.
Transcripts stay on your Mac. Call transcripts, coaching history, and meeting notes are stored locally in an encrypted SQLite database in your macOS Application Support directory. They never leave your device.
We never train on your data. Your conversations are never used to train or fine-tune any AI models — on any plan, free or paid.
No bots in your meetings. CallCopilot doesn't inject a bot, show a recording banner, or notify other participants. It works silently in the background.
Encryption
All data in transit is encrypted using TLS 1.3. Account data at rest on our servers is encrypted using AES-256. Local data on your Mac is stored in an encrypted SQLite database.
Infrastructure
Our backend runs on Cloudflare Workers with edge computing across 300+ data centers globally. We use Cloudflare R2 for object storage and KV for key-value data — both encrypted at rest. No single point of failure.
Data minimisation
We collect only what we need to run the service: your email, calendar metadata (if connected), and anonymous usage analytics. We never access call content. See our Privacy Policy for the full breakdown.
Authentication
We support Google OAuth for secure sign-in. Passwords are never stored in plaintext. Session tokens are short-lived and scoped. All authentication flows use HTTPS.
Third-party services
CallCopilot uses third-party AI providers (Anthropic, OpenAI, Google, xAI) for real-time coaching and analysis. When we send data to these providers, we send only the minimum context required — typically short transcript excerpts needed to generate a coaching suggestion. We use API agreements that prohibit these providers from training on your data.
We use Deepgram for streaming transcription. Audio is processed in real-time and never stored by Deepgram or by us.
Frequently asked questions
Can my manager see my transcripts or coaching data?
No. Transcripts and coaching data are stored locally on your device. We don't have a dashboard, admin panel, or any mechanism for managers or team leads to access individual rep data. CallCopilot is a personal tool — it reports to you.
What happens if I delete the app?
Your local data (transcripts, coaching history, playbook configs) is removed with the app. Account data on our servers (email, subscription status) can be deleted by contacting us at privacy@callcopilot.io.
Do you sell or share my data?
Never. We do not sell, rent, or share your personal information with third parties for marketing or advertising purposes.
Is my data used to train AI models?
No. Your conversations, transcripts, and coaching data are never used to train or improve any AI models. This applies to all plans.
What about call recording consent laws?
CallCopilot does not record calls — it processes audio in a real-time stream and discards it immediately. No audio file is ever created. However, you should familiarise yourself with the laws in your jurisdiction regarding real-time audio processing and transcription. We recommend consulting legal counsel if you have specific questions about compliance.
Do you have SOC 2 certification?
Not yet. We are a pre-launch product and plan to pursue SOC 2 Type II certification as we scale. If you have specific compliance requirements, reach out and we'll share our current security controls.
Policies
Responsible disclosure
If you believe you've found a security vulnerability in CallCopilot, we want to hear about it. Please email us with details and we'll respond within 48 hours.
security@callcopilot.io