Privacy Policy
Last updated: April 2026Dead Hand ("the Service", "we", "us") is operated by its founding team. This policy describes how we collect, use, store, and protect information in connection with your use of the Dead Hand platform.
What We Collect
When you sign up for early access or create an account, we collect:
- Your email address and business name
- Phone numbers associated with your account and inbound call activity
- Voicemail recordings and transcriptions from inbound calls to your Dead Hand number
- SMS message content sent and received through the platform
- Lead and contact records created through platform activity
- Usage data including login events, notification interactions, and feature activity
How We Use It
We use your information solely to operate and improve the Service. Specifically:
- To route inbound calls and deliver voicemail notifications
- To generate AI triage summaries and SMS reply drafts using your call content
- To send you push notifications and transactional messages about your account
- To process billing through our payment provider
- To diagnose platform issues and improve accuracy of AI triage
We do not sell your data. We do not use your data to train AI models without your explicit consent. We do not share your information with third parties except as described below.
Third-Party Services
Dead Hand uses the following third-party services to operate:
- Telnyx — telephony infrastructure for call routing, voicemail, and SMS delivery
- Supabase — database and authentication
- Anthropic — AI processing of voicemail transcripts to generate triage summaries and reply drafts
- Stripe — payment processing
- Resend — transactional email
Each provider has their own privacy policy and data handling practices. Voicemail content sent to Anthropic for AI processing is governed by Anthropic's API usage policy and is not used to train their models under standard API terms.
SMS and 10DLC Compliance
Dead Hand sends SMS messages on behalf of tenant businesses to their customers. All SMS activity through the platform is subject to the following:
- SMS is only sent to individuals who have indicated consent — either verbally during a voicemail or through prior contact
- Every initial SMS includes opt-out instructions ("Reply STOP to opt out")
- STOP replies are processed immediately and that number is permanently suppressed from future SMS contact
- No cold outbound SMS is permitted — every message must be in response to an inbound contact
- SMS volume is rate-limited per tenant to prevent abuse
- All campaigns are registered under 10DLC guidelines with The Campaign Registry
- No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. Text messaging originator opt-in data and consent information will not be shared with any third parties.
Data Retention
Active account data is retained for the duration of your subscription. Upon cancellation, your data is retained for 90 days and then permanently deleted. Voicemail recordings are stored in encrypted cloud storage and accessible only to your account.
Opt-out records (STOP replies) are retained indefinitely to ensure compliance and prevent re-contact.
Security
All data is encrypted in transit and at rest. Database access is protected by row-level security policies that prevent cross-tenant data access. Service credentials are stored as environment secrets and are never exposed in client code.
Your Rights
You may request access to, correction of, or deletion of your personal data at any time by contacting us at [email protected]. We will respond within 30 days.
Changes to This Policy
We may update this policy as the platform evolves. Material changes will be communicated by email to active account holders. Continued use of the Service after notification constitutes acceptance of the updated policy.
Contact
Questions about this policy: [email protected]