Privacy Policy

Last updated: March 15, 2026

1. Introduction

OneVoice ("Company," "we," "us") is committed to protecting your privacy. This policy explains how we collect, use, and safeguard personal information when you use our platform and website.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, organization name, and role. This information is necessary to provide the Service.

Advocate Submissions

When advocates submit emails through campaign action pages, we collect their name, email address, and the content of their submission. This data is stored on behalf of the organization running the campaign.

Usage Data

We collect anonymized usage data including page views, feature usage, and campaign statistics to improve the Service.

Contact Form Submissions

When you submit a contact form on our website, we collect your name, email, organization details, and message to respond to your inquiry.

3. How We Use Information

  • To provide and maintain the Service
  • To send advocacy emails on behalf of organizations (via Postmark)
  • To communicate with you about your account and the Service
  • To improve the Service and develop new features
  • To respond to inquiries and support requests
  • To enforce our Terms of Service

4. Third-Party Services

We use the following third-party services to operate the platform:

  • Supabase — Database hosting, authentication, and serverless functions (data stored in the US)
  • Vercel — Website and application hosting
  • Postmark — Transactional email delivery for advocacy campaigns

These services have their own privacy policies and are contractually bound to protect your data.

5. Data Retention

Account data is retained as long as your account is active. Deleted targets and campaigns are soft-deleted and permanently purged after the retention period specified by your plan (3–90 days). You may request full deletion of your account and data at any time.

6. Data Security

We implement industry-standard security measures including encrypted connections (TLS), row-level security policies on our database, and secure authentication via Supabase Auth. Access to production data is restricted to authorized personnel.

7. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Object to certain processing activities

To exercise these rights, contact us at info@onevoiceapp.io.

8. Cookies

The Service uses essential cookies for authentication and session management. We do not use tracking cookies or third-party advertising cookies.

9. Children's Privacy

The Service is not intended for use by individuals under 13 years of age. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notification. The "Last updated" date at the top reflects the most recent revision.

11. Contact

For privacy-related questions, email info@onevoiceapp.io.