Privacy Policy
Effective Date: July 1, 2025
1. Introduction
Controvo LLC ("Controvo," "we," "us," or "our") operates the website at controvo.com (the "Website") and the Controvo SaaS platform (the "Platform"). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit our Website or use the Platform.
By using our Website or Platform, you agree to the collection and use of information as described in this policy. If you do not agree with these practices, please do not use our services.
2. Information We Collect
Information You Provide Directly
Contact form submissions. When you submit the contact form on our Website, we collect your name, email address, subject line, and message content.
Pilot program applications. When you apply for our pilot program, we collect your name, email address, company name, number of 3CX systems you manage, and an optional description of your needs.
Newsletter subscriptions. When you subscribe to our newsletter, we collect your email address.
Information Collected Automatically (Website)
Analytics data. If you opt in to analytics cookies, we use analytics tools to understand how visitors use our Website, including pages viewed, referral sources, device type, browser type, and general geographic location. We do not load optional analytics tools until you consent.
Bot protection data. Our forms use Cloudflare Turnstile to distinguish human visitors from automated bots. Turnstile may collect interaction data such as browser characteristics and behavioral signals during the verification process.
Server logs. Our hosting provider may automatically collect standard server log data, including your IP address, browser type, referring URL, requested path, and timestamps of requests.
Information Collected Through the Platform
Account information. When you create a Controvo Platform account, we collect your name, email address, and company name.
3CX system configuration data. The Platform collects and stores data about your 3CX systems, including extensions, trunks, system settings, and other configuration details. This is the core data the Platform operates on to provide monitoring and policy enforcement.
System health and monitoring data. The Platform collects data about your 3CX systems' operational status, including backup status, alerts, performance metrics, and license information.
Usage logs. We log activity within the Platform, including actions taken, features used, and timestamps, to provide the service and improve functionality.
3. How We Use Your Information
We use the information we collect to:
- Respond to your inquiries and form submissions
- Deliver, operate, and improve the Controvo Platform
- Monitor and enforce 3CX configuration policies (a core function of the Platform)
- Send service-related communications, such as account notifications and system alerts
- Send marketing communications, such as newsletters, where you have opted in
- Analyze Website usage to improve content, performance, and user experience where you have consented to analytics
- Prevent spam, abuse, and fraudulent activity
- Comply with legal obligations
4. Third-Party Services
We use the following third-party services that may receive or process your data in connection with our Website and Platform:
- Google Analytics — Website analytics and usage reporting. Google Privacy Policy
- Microsoft Clarity — Session recordings and heatmaps to understand how visitors interact with our Website. Microsoft Privacy Statement
- Apollo.io — Website visitor identification for business development and outreach. Apollo Privacy Policy
- Vercel Analytics — Privacy-friendly, cookieless traffic analytics provided by our hosting platform. Vercel Privacy Policy
- Cloudflare Turnstile — Bot protection on Website forms. Cloudflare Privacy Policy
- Resend — Email delivery for form submissions and service communications. Resend Privacy Policy
- Vercel — Website hosting and deployment. Vercel Privacy Policy
- Microsoft Azure — Cloud infrastructure hosting for the Controvo Platform. Microsoft Privacy Statement
- ConnectWise PSA — For customers who use ConnectWise, the Platform may sync company and contact data and create service tickets as part of the integration. ConnectWise Privacy Policy
5. Cookies and Tracking
Our Website uses necessary, analytics, and marketing cookies and similar technologies. Necessary storage supports site operation and bot protection. Analytics and marketing tools run only after you opt in through our cookie banner.
| Tool | Category | Purpose | Storage | Duration |
|---|---|---|---|---|
| Cloudflare Turnstile | Strictly necessary | Helps distinguish human form submissions from automated abuse on Website forms. | cf-turnstile-response | Session or short-lived challenge lifetime |
| Server logs | Strictly necessary | Hosting and security logs may include request metadata such as IP address, user agent, referring URL, requested path, and timestamps. | request metadata | Per hosting provider retention settings |
| Vercel Analytics | Analytics (opt-in) | Cookieless page-view analytics from our hosting platform. We load it only after analytics consent. | No client-side cookie or storage key | Aggregated analytics; visitor session data is short-lived |
| Google Analytics 4 | Analytics (opt-in) | Measures opted-in site usage such as page views, traffic sources, device information, and allowed lead events. | _ga , _ga_* , _gid | Up to 2 years |
| Google Tag Manager | Analytics / Marketing container (opt-in) | Loads Google-managed tags only after consent. If the container contains marketing tags, it must wait for marketing consent too. | No client-side cookie or storage key | Depends on tags configured in the container |
| Microsoft Clarity | Marketing (opt-in) | Session replay and heatmap analytics used to understand opted-in visitor behavior in detail. | _clck , _clsk | Up to 1 year |
| Apollo.io | Marketing (opt-in) | B2B website visitor identification used for business development and outreach context after marketing consent. | apollo* , __apollo* | Varies by Apollo identifier |
Your Choices
On your first visit, we display a cookie banner that lets you accept all optional cookies, reject all non-essential cookies, or pick which categories you allow. Necessary cookies are always on. Your cookie preference is stored for 182 days. You can change your choices at any time by clicking Cookie preferences in our footer (or opening the cookie preferences panel). Strictly necessary cookies cannot be disabled because the site would not function without them.
You can also manage or disable cookies through your browser settings. Most browsers allow you to refuse cookies or alert you when a cookie is being set. Note that disabling cookies may affect the functionality of our forms.
To opt out of Google Analytics tracking specifically, you can install the Google Analytics Opt-out Browser Add-on.
6. Data Retention
- Website form submissions — Retained as long as necessary to respond to and resolve the inquiry.
- Newsletter subscriptions — Retained until you unsubscribe.
- Platform account and system data — Retained for the duration of your service agreement, plus a reasonable period afterward to allow for account reactivation or data export.
- Analytics and marketing data — Retained according to the settings and retention periods of the opted-in tools listed in Section 5.
- Server logs — Retained per our hosting provider's default retention periods.
7. Data Security
We implement industry-standard technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. The Controvo Platform is hosted on Microsoft Azure, which provides enterprise-grade infrastructure security including encryption at rest and in transit.
However, no method of transmission over the Internet or electronic storage is completely secure. While we strive to protect your personal information, we cannot guarantee absolute security.
8. Data Sharing
We do not sell your personal information to third parties.
We share your data only in the following circumstances:
- Service providers — With the third-party services listed in Section 4, solely as necessary to operate our Website and Platform.
- Legal requirements — When required to comply with applicable law, legal process, or enforceable government request.
- Business transfers — In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.
9. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal information we hold about you
- Request correction of inaccurate personal information
- Request deletion of your personal information
- Opt out of marketing communications at any time
- Request a copy of your data in a portable format
To exercise any of these rights, please contact us using the information in Section 12 below.
10. Children's Privacy
Our Website and Platform are not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. When we make material changes, we will update the effective date at the top of this page and, where appropriate, notify you via email or a prominent notice on our Website.
We encourage you to review this policy periodically. Your continued use of our Website or Platform after changes are posted constitutes acceptance of the updated policy.
12. Contact Us
If you have questions about this Privacy Policy or wish to exercise your rights regarding your personal information, please contact us:
Email: info@controvo.com