Product Features Pricing About Contact
Request Demo Get Started

Privacy Policy

How we collect, use, and protect your information

Last updated: February 14, 2026

SipLane, Inc. ("SipLane," "we," "us," or "our") is committed to protecting your privacy and safeguarding the personal and business information you entrust to us. This Privacy Policy describes how we collect, use, disclose, store, and protect information when you use the SipLane platform, visit our website, or interact with us in any capacity (collectively, the "Service").

By accessing or using the Service, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices as described herein, please do not use the Service.

1. Information We Collect

We collect information in several ways depending on how you interact with the Service. The categories of information we collect include:

1.1 Account Information

When you register for an account or update your profile, we collect information that identifies you and your organization, including:

  • Full name, job title, and role within your organization.
  • Company name, address, and business registration details.
  • Email address, phone number, and other contact information.
  • Username, password (stored in hashed form), and authentication credentials.
  • Telecommunications license numbers and regulatory identifiers, where applicable.

1.2 Usage Data

We automatically collect information about how you interact with the Service, including:

  • Login timestamps, session durations, and access patterns.
  • Features accessed, pages viewed, and actions taken within the administration panel.
  • API call logs, including endpoints accessed, request parameters, and response codes.
  • IP addresses, browser type, operating system, device identifiers, and referring URLs.
  • System configuration changes and administrative actions performed on the platform.

1.3 Call Detail Records (CDR) Metadata

As part of the core functionality of the SIP switching platform, we process and store call detail record metadata, including:

  • Origination and termination phone numbers (ANI/DNIS).
  • Call start time, end time, and duration.
  • SIP signaling data, including response codes and headers.
  • Trunk and route identifiers used for call processing.
  • Codec information, quality of service metrics, and packet loss statistics.
  • Billing-related data, including rated amounts, rate plans applied, and billing codes.
  • STIR/SHAKEN attestation levels and verification results.

SipLane does not record, store, or monitor the audio content of telephone calls processed through the platform. We only process signaling metadata necessary for routing, billing, and quality assurance purposes.

1.4 Payment Information

When you make payments for the Service, we collect financial information necessary to process transactions, including:

  • Credit card or debit card numbers, expiration dates, and security codes (processed and stored by our PCI-DSS compliant payment processor).
  • Bank account details for ACH and wire transfer payments.
  • Billing address and tax identification numbers.
  • Transaction history, invoice records, and payment status.

We do not store full credit card numbers on our servers. All payment card data is handled by our PCI-DSS Level 1 compliant payment processing partners.

1.5 Communications

We collect information from your communications with us, including support tickets, emails, chat messages, and phone calls with our sales or support teams. This information helps us respond to your inquiries and improve our Service.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: To provide, operate, and maintain the SIP switching platform, including call routing, billing, and reporting functions.
  • Account Management: To create and manage your account, authenticate your identity, and provide customer support.
  • Billing and Payments: To process payments, generate invoices, manage account balances, and handle billing inquiries.
  • Fraud Prevention: To detect, prevent, and respond to fraud, abuse, security threats, and violations of our Terms of Service and Acceptable Use Policy.
  • Platform Improvement: To analyze usage patterns, diagnose technical issues, and improve the performance, reliability, and features of the Service.
  • Communications: To send you service-related notifications, including maintenance alerts, security updates, billing reminders, and account activity notifications.
  • Compliance: To comply with applicable laws, regulations, legal processes, and lawful government requests, including telecommunications regulatory requirements.
  • Marketing: To send you information about new features, product updates, and promotional offers, where you have opted in to receive such communications. You may opt out of marketing communications at any time.
  • Analytics: To generate aggregated, anonymized analytics and reports about platform usage, call traffic trends, and industry benchmarks.

3. Data Security

We take the security of your information seriously and implement comprehensive technical and organizational measures to protect it against unauthorized access, alteration, disclosure, or destruction. Our security practices include:

  • Encryption: All data transmitted between your systems and the SipLane platform is encrypted using TLS 1.2 or higher. Sensitive data at rest is encrypted using AES-256 encryption.
  • Access Controls: We enforce strict role-based access controls, ensuring that only authorized personnel can access customer data, and only to the extent necessary for their job functions.
  • Infrastructure Security: Our infrastructure is hosted in SOC 2 Type II certified data centers with physical security controls, redundant power, and environmental protections.
  • Network Security: We employ firewalls, intrusion detection and prevention systems, DDoS mitigation, and continuous network monitoring to protect against external threats.
  • Security Audits: We conduct regular security assessments, vulnerability scans, and penetration testing to identify and remediate potential vulnerabilities.
  • Employee Training: All employees with access to customer data receive regular security awareness training and are bound by confidentiality obligations.
  • Incident Response: We maintain a comprehensive incident response plan and will notify affected customers promptly in the event of a data breach, in accordance with applicable notification requirements.

While we strive to protect your information using commercially reasonable measures, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security, but we are committed to continuously improving our security posture.

4. Data Retention

We retain your information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law. Our specific retention practices are as follows:

  • Account Information: Retained for the duration of your active account and for a period of 90 days following account termination to allow for data export and to address any outstanding issues.
  • Call Detail Records: Retained for a minimum of 12 months and up to 36 months, depending on your service plan and applicable regulatory requirements. You may configure your preferred retention period within the administration panel.
  • Billing Records: Retained for a minimum of 7 years to comply with tax and financial reporting obligations.
  • Usage and Log Data: Retained for up to 12 months for operational purposes, after which it is aggregated and anonymized or deleted.
  • Support Communications: Retained for up to 3 years after the last interaction to provide continuity of support and for quality assurance purposes.

When data is no longer required, it is securely deleted or anonymized in accordance with industry best practices. You may request earlier deletion of certain data, subject to our legal and regulatory obligations.

5. Third-Party Services

We may share your information with trusted third-party service providers who assist us in operating the Service. These third parties are contractually obligated to protect your information and may only use it for the specific purposes for which it was shared. Our third-party service providers include:

  • Payment Processors: To process credit card payments, ACH transfers, and other financial transactions securely.
  • Cloud Infrastructure Providers: To host and deliver the Service with high availability and redundancy.
  • Analytics Providers: To help us understand usage patterns and improve the Service.
  • Email and Communication Services: To deliver transactional emails, notifications, and marketing communications.
  • Security Services: To provide DDoS protection, threat intelligence, and security monitoring.
  • Customer Support Tools: To manage support tickets and provide timely assistance.

We may also disclose your information when required by law, in response to valid legal process (such as a subpoena or court order), to protect our rights and property, or to prevent fraud or other illegal activity.

We do not sell your personal information to third parties. We do not share your information with third parties for their own marketing purposes without your explicit consent.

6. Cookies

We use cookies and similar tracking technologies to enhance your experience on our website and within the Service. Cookies are small text files stored on your device that help us recognize you, remember your preferences, and understand how you use our platform.

6.1 Types of Cookies We Use

  • Essential Cookies: Required for the basic functionality of the Service, including session management, authentication, and security. These cookies cannot be disabled without affecting the operation of the platform.
  • Performance Cookies: Collect anonymous information about how you use the Service, such as pages visited and features used. This data helps us identify and fix issues, and improve the overall user experience.
  • Functional Cookies: Remember your preferences and settings, such as language selection, timezone, and dashboard layout, to provide a personalized experience.
  • Analytics Cookies: Used by third-party analytics services to collect aggregated data about website traffic and user behavior. This information is used to generate reports and improve our website and marketing efforts.

6.2 Managing Cookies

Most web browsers allow you to control cookies through their settings. You can configure your browser to refuse all cookies, accept only certain cookies, or notify you when a cookie is being set. Please note that disabling essential cookies may prevent you from using certain features of the Service. For more information about managing cookies, consult your browser's help documentation.

7. Your Rights

Depending on your location, you may have certain rights regarding your personal information under applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). These rights may include:

7.1 Rights Under GDPR (European Economic Area Residents)

  • Right of Access: You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification: You have the right to request correction of inaccurate or incomplete personal data.
  • Right to Erasure: You have the right to request deletion of your personal data, subject to certain legal exceptions.
  • Right to Restriction: You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Object: You have the right to object to the processing of your personal data for direct marketing or on grounds relating to your particular situation.
  • Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of prior processing.

7.2 Rights Under CCPA (California Residents)

  • Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of that information, the purposes for collecting it, and the categories of third parties with whom it has been shared.
  • Right to Delete: You have the right to request that we delete your personal information, subject to certain exceptions.
  • Right to Opt Out: You have the right to opt out of the sale of your personal information. SipLane does not sell personal information.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

7.3 Exercising Your Rights

To exercise any of the rights described above, please contact us at [email protected]. We will respond to your request within the time frames required by applicable law (generally within 30 days for GDPR requests and 45 days for CCPA requests). We may need to verify your identity before processing your request to protect the security of your information.

8. Children's Privacy

The Service is designed for use by businesses and is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under the age of 16 (or the applicable age of consent in your jurisdiction). If we become aware that we have inadvertently collected personal information from a child, we will take prompt steps to delete that information from our systems.

If you believe that a child has provided personal information to us, please contact us immediately at [email protected] so that we can take appropriate action.

9. International Data Transfers

SipLane is headquartered in the United States, and our primary data processing facilities are located in the United States. If you access the Service from outside the United States, your information may be transferred to, stored in, and processed in the United States or other countries where our service providers maintain facilities.

When we transfer personal data from the European Economic Area (EEA), the United Kingdom, or Switzerland to countries that have not been deemed to provide an adequate level of data protection, we rely on appropriate legal mechanisms to ensure your data is protected, including:

  • Standard Contractual Clauses (SCCs): We use the European Commission's Standard Contractual Clauses as approved for transfers of personal data to third countries.
  • Data Processing Agreements: We enter into data processing agreements with our service providers that include appropriate data protection obligations and safeguards.
  • Supplementary Measures: Where necessary, we implement additional technical and organizational measures to ensure an essentially equivalent level of data protection.

By using the Service, you acknowledge and consent to the transfer of your information to the United States and other jurisdictions as described in this section. If you have concerns about international data transfers, please contact us to discuss the specific safeguards in place.

10. Changes to Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, the Service, or applicable laws. When we make material changes, we will notify you by:

  • Posting the updated Privacy Policy on our website with a revised "Last updated" date.
  • Sending an email notification to the address associated with your account.
  • Displaying a prominent notice within the administration panel.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the revised Privacy Policy.

For material changes that significantly affect how we process your personal data, we will provide at least thirty (30) days' advance notice before the changes take effect, giving you the opportunity to review the changes and, if necessary, terminate your account.

11. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

If you are located in the European Economic Area and believe that our processing of your personal data violates applicable data protection laws, you have the right to lodge a complaint with your local data protection supervisory authority.

We are committed to working with you to resolve any concerns about our privacy practices. If you are not satisfied with our response to your inquiry, we encourage you to reach out to us again so that we can address your concerns more fully.