Privacy Policy for Telepath

1. Introduction

Bad Command AI d/b/a Telepath ("Telepath", "we", "us", "our") operates the Telepath infrastructure platform. This policy explains how we collect, use, and store data.

2. Information We Collect

2.1 Customer Account Data

• Business Name
• Service Credentials (API keys for AI providers)
• Billing Information

2.2 Telemetry & Traffic Data

• Signaling metadata (SIP headers, from/to tuples, call duration)
• Media metrics (jitter, packet loss, latency, quality scores)
• Audio streams (real-time RTP bridging between carrier and AI agent)

2.3 Third-Party Data Processors

Audio is streamed in real-time to your configured AI provider. Once data leaves Telepath infrastructure, it is governed by the destination provider policy. Carriers also process signaling/media independently.

2.4 Website Analytics

We use PostHog for aggregated website/dashboard analytics, including signals like IP, device type, and browser information.

3. Data Retention & Storage ("The 72-Hour Rule")

• Aggregate telemetry (duration, cost, quality) may be retained for analytics and billing.
• Detailed call data and granular traces are permanently deleted after 72 hours (3 days).
• Audio content is processed in memory and not written to disk by Telepath.

4. Subprocessors & Infrastructure

• Google Cloud Platform (GCP): compute and networking
• Amazon Web Services (AWS): ancillary services and redundancy

5. How We Use Your Data

• Route and bridge SIP calls to your configured AI agent
• Provide real-time observability and blame-assignment metrics
• Bill for capacity usage

We do not train models on your data. We do not listen to or transcribe your calls.

6. Access & Control

Customers may request export of aggregate telemetry via dashboard or API.

7. Contact Us

Bad Command AI (Telepath)
971 US HIGHWAY 202N
Suite #4610
BRANCHBURG, NJ 08876
United States