CopperCopperGet started

Privacy Policy

What we collect, why, and what we do with it.

Last updated · May 2026

This is a working draft of our privacy policy. We'll have it reviewed by counsel before we're open to the general public. If you have a question that isn't covered, email info@joincopper.io.

The short version

We collect what we need to run the AI receptionist on your behalf — your business details, your callers' phone numbers and call transcripts, and your billing info. We don't sell your data. We don't share phone numbers with advertisers. We don't train AI models on your call transcripts, and we do not use any Google Workspace data (including Google Calendar) to develop, improve, or train any AI or machine learning models. Google OAuth tokens are encrypted at rest with AES-256-GCM.

What we collect

From you, the business owner

Name, email, phone number, business name, hours, services, pricing, and anything else you put into onboarding or settings. Payment information is handled by Stripe — we never see your full card number.

From your callers and texters

Their phone number (from caller ID or the SMS header), the audio and transcript of their call, the text of their SMS messages, and any information they share during the conversation (name, address, the issue they're calling about).

From your use of the app

Standard things — IP address, browser type, pages visited. We use this to debug and improve the product.

Google Workspace data (Google Calendar)

When you connect a Google Calendar, Copper requests two OAuth scopes and only those scopes:

  • https://www.googleapis.com/auth/calendar.events — used to create booking events on the calendar you authorize, and to read or update those events if a caller reschedules or cancels.
  • https://www.googleapis.com/auth/calendar.freebusy — used to check your busy times before offering a slot to a caller.

We use Google Calendar data only for those two purposes: showing your availability to callers, and writing the booking back to your calendar. We do not read attendee emails, event descriptions, or any other event content beyond what is necessary to perform these operations. We do not share Google Workspace data with any third party for advertising, analytics, profiling, or any purpose unrelated to delivering the calendar-booking feature.

Data protection. We apply the following safeguards to Google Workspace data:

  • Encryption at rest: Google OAuth refresh and access tokens are encrypted using AES-256-GCM before being written to our database. The encryption key is stored as an environment secret outside the database, so a database compromise alone does not expose tokens.
  • Encryption in transit: All requests to Google APIs, to Copper, and between Copper and its vendors travel over TLS (HTTPS).
  • Database encryption: Our primary database (Supabase Postgres) encrypts data at rest using AES-256 and is hosted in a private network behind authenticated access.
  • Access controls:Row-level security policies in our database scope every row of business data to the business that owns it, so one customer cannot read another customer's calendar tokens or booking history. Production access is restricted to a small number of authorized engineers and audited.
  • Minimum necessary scope: We do not request, and will not request, the broader https://www.googleapis.com/auth/calendar scope or any Workspace scope (Gmail, Drive, Contacts, etc.) we do not need.
  • Revocation: You can disconnect Google Calendar at any time from your Copper dashboard. We revoke the OAuth tokens with Google and delete the encrypted tokens from our database immediately. You can also revoke access directly at myaccount.google.com/permissions.

Copper's use and transfer of information received from Google APIs to any other app adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Artificial intelligence and machine learning

Copper is an AI-powered receptionist. It uses third-party AI services — we do not train or operate our own foundation models. The AI providers we currently use are:

  • Anthropic(Claude Haiku 4.5) — generates the receptionist's spoken replies and decides when to use tools (book an appointment, send an SMS, transfer the call).
  • Deepgram — converts caller audio into text (speech-to-text).
  • Vapi— orchestrates the voice session and synthesizes the AI's spoken replies (text-to-speech).
  • OpenRouter — routes occasional summarization and background language tasks to LLMs.

We do not use Google Workspace data, including any data obtained from Google APIs, to develop, improve, or train any generalized or non-personalized AI or machine learning models. Calendar event data is used solely at request-time to check availability and write a booking — it is never sent into a training pipeline.

Our AI providers are bound by their own privacy and data-handling terms, which prohibit using customer data passed through their APIs for training their own models without explicit opt-in. We have not opted in. We do not send Google Workspace content (event titles, descriptions, attendees, or any other fields beyond the busy/free information needed to operate the booking flow) to any AI provider.

SMS messaging

When you text a phone number associated with a business using Copper, your message and the business's reply are transmitted via SMS through our service. The reply may be generated by an AI assistant operating on the business's behalf or sent manually by the business owner.

Consent.We don't send unsolicited SMS. Every outbound message is sent in direct response to an inbound text initiated by the consumer, or as an account notification to a business owner about activity on their own account. Business owners' SMS notifications can be disabled in account settings at any time.

Opt-out. Reply STOP to any text from a number operated through Copper to unsubscribe. Reply HELP for help. Reply START to re-subscribe after opting out. These commands are handled at the carrier level and take effect immediately.

Carrier rates. Standard message and data rates from your mobile carrier may apply to messages you send to and receive from numbers operated through Copper. Message frequency varies based on the conversation.

No resale of phone numbers. We never sell, rent, or share phone numbers with third parties for marketing purposes. Mobile opt-in data and consent records are not shared with third parties or affiliates for marketing or promotional purposes.

What we do with it

  • Run the AI receptionist: take calls, book appointments, send SMS, show you what happened in your dashboard.
  • Send you notifications via SMS and email when something happens that you should know about.
  • Bill you and handle support requests.
  • Improve the product (in aggregate — never your individual data).

Who we share it with

We share data with the vendors we use to operate the service, and only the data each vendor needs to do its job:

  • Twilio — telephony and SMS infrastructure (phone numbers, call audio, SMS message bodies).
  • Vapi — voice AI orchestration and text-to-speech (call audio, AI prompts, AI responses).
  • Anthropic— large language model for the AI receptionist (call turn-by-turn text and the business's configured prompt; not Google Workspace data).
  • Deepgram — speech-to-text (call audio only).
  • OpenRouter — background summarization (call transcripts; not Google Workspace data).
  • Stripe — billing and payment processing.
  • Resend — transactional email delivery.
  • Supabase — database and authentication hosting (primary application data, encrypted at rest).
  • Vercel — web hosting and serverless compute.
  • Google — calendar booking (only when you connect Google Calendar; see the Google Workspace section above for the exact scopes and protections).

Each vendor is bound by its own privacy and security commitments and is contractually limited to processing data on our behalf. We don't sell your data. We don't share it with advertisers. We don't share phone numbers, calendar data, or any other personal information with anyone outside the vendors listed above.

How long we keep it

For as long as your account is active. If you cancel, we delete your call recordings, transcripts, and SMS conversations within 30 days and your account data within 90 days — unless we're required to retain something for legal or tax purposes. If you disconnect Google Calendar, the encrypted OAuth tokens are deleted from our database immediately and our access is revoked with Google.

Your rights

You can export your data or delete your account at any time by emailing info@joincopper.io. We'll respond within 7 days.

Changes to this policy

If we make material changes, we'll email you before they take effect.