Security & Compliance
Enterprise-Grade Security for Your Business Communications
Recall Touch is built for revenue-critical conversations. We protect sessions and data with encryption, isolate tenants with workspace-level controls, enforce rate limits, and design outbound compliance into the workflow.
Data Encryption
We use HMAC-SHA256 to protect auth sessions, and we require HTTPS across the platform. Sensitive session artifacts are guarded so they can't be forged client-side, keeping access scoped to the correct workspace.
Access Control
We rely on Supabase RLS policies to enforce workspace isolation. Your data is segmented by workspace, so queries and actions are constrained by tenant rules rather than trusting client input.
Rate Limiting
Outbound operations and sensitive endpoints are protected with Upstash Redis rate limiting. This prevents burst abuse, supports predictable costs, and improves reliability during peak call volume.
Call Recording
When recordings are enabled, audio and transcripts are stored in encrypted form with access-controlled reads. Recording access follows the same workspace isolation principles as all other data.
Compliance
We support TCPA-aligned outbound controls through configurable consent states and operational guardrails. The platform enforces per-contact suppression rules, business-hours constraints, and DNC registry checks so your AI work respects your compliance posture.
Monitoring
We use Sentry for error tracking and PostHog for analytics. This gives you visibility into reliability, performance, and conversion outcomes while keeping sensitive operational details out of client responses.
Data Handling
After cancellation, data is retained for a defined period, with clear operational handling and the ability to export contacts when you need to move providers. If you need additional assurances, contact us and we'll provide details.
Need a security review?
Send your questions and we'll walk through encryption, isolation, retention, and compliance controls tailored to your deployment.