Privacy Policy — CenterCall

1. Introduction

This Privacy Policy describes how Centerpoint Ltd. ("Centerpoint", "we", "us", or "our") collects, uses, and protects information in connection with the CenterCall Android application ("the App").

By installing or using CenterCall, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the App.

      CenterCall is designed to minimize data collection. We do not collect, store, or sell your personal data on our servers. All account credentials are stored locally on your device.
    

2. Information We Collect

2.1 Information You Provide

When you configure the App, you enter:

SIP account credentials — server address, username, and password. These are stored locally on your device only using Android's encrypted shared preferences. They are never transmitted to Centerpoint.
Display name — an optional name shown on outgoing calls.

2.2 Automatically Collected Information

The App may collect the following information automatically during use:

Call logs — records of calls made and received (number, duration, timestamp). These are stored locally on your device and are not transmitted to Centerpoint.
Device identifiers — Firebase Cloud Messaging (FCM) registration token used to deliver incoming call push notifications. This token is shared with the SIP server configured by your organization, not with Centerpoint.
Crash reports — if you have enabled crash reporting on your Android device (e.g., via Google Play Services), anonymized crash data may be shared with Google. We do not receive or store this data.

2.3 Permissions Used

The App requests the following device permissions:

RECORD_AUDIO / MICROPHONE — required to transmit your voice during calls.
FOREGROUND_SERVICE (PHONE_CALL type) — required to maintain an active call when the app is in the background.
RECEIVE_BOOT_COMPLETED — allows the SIP registration service to restart after a device reboot.
USE_FULL_SCREEN_INTENT — allows incoming call notifications to appear over the lock screen.
VIBRATE — provides haptic feedback for incoming call alerts.
INTERNET / CHANGE_NETWORK_STATE — required for SIP registration and call media.
POST_NOTIFICATIONS (Android 13+) — required to display incoming call notifications.

We do not access your contacts, location, SMS, camera, files, or any other data beyond what is listed above.

3. How We Use Information

Information collected within the App is used solely to:

Register your device with your organization's SIP server.
Deliver, receive, and manage VoIP calls.
Send incoming call push notifications to your device via FCM.
Display call history within the App on your local device.

We do not use any information for advertising, profiling, or marketing purposes.

4. Data Sharing and Third Parties

We do not sell, rent, or trade your personal information to any third party.

Limited information may be processed by these third-party services as part of the App's core functionality:

Your SIP Provider / Organization — Your SIP credentials and FCM token are shared only with the SIP server whose address you manually configure. Centerpoint has no visibility into this communication.
Google Firebase (FCM) — Firebase Cloud Messaging is used to deliver push notifications for incoming calls. Google's privacy policy applies: policies.google.com/privacy.
Google Play Services — Standard Android crash and analytics infrastructure managed by Google.

We may disclose information if required to do so by law or in response to valid legal process.

5. Data Storage and Security

All sensitive data (SIP credentials, call history) is stored locally on your Android device using Android's secure storage mechanisms. This data is not uploaded to Centerpoint servers.

We implement industry-standard security measures including:

SIP signaling encrypted via TLS (Transport Layer Security).
Call media encrypted via SRTP (Secure Real-time Transport Protocol).
Local credentials stored in Android's encrypted SharedPreferences.

You are responsible for maintaining the security of your device and SIP account credentials.

6. Data Retention

Since all data is stored locally on your device, you control its retention. You may clear the App's data at any time through Android's Settings → Apps → CenterCall → Clear Data. Uninstalling the App removes all locally stored data.

7. Children's Privacy

CenterCall is intended for use by business professionals and is not directed at children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will take steps to delete such information.

8. Your Rights

Depending on your location, you may have rights including:

The right to access personal data we hold about you.
The right to request correction of inaccurate data.
The right to request deletion of your data.
The right to withdraw consent where processing is based on consent.

Because we do not store personal data on our servers, most requests can be fulfilled by clearing the App's local data on your device. For any other requests, contact us at the address below.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For significant changes, we will notify you via the App or through the Google Play listing. Your continued use of the App after any change constitutes your acceptance of the new Privacy Policy.

10. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Company: Centerpoint Ltd.
Website: www.centerpoint.co.il
Email: privacy@centerpoint.co.il