Responsible AI · 6 principles 01
Customer data privacy
Customer conversations are never used to train shared foundation models. Opt-in fine-tuning keeps data isolated per workspace.
Responsible AI · 6 principles
Responsible AI
at DialPhone.
AI is built into DialPhone across calls, messages, meetings, and the contact center. Our responsibility is to use it in ways that improve customer outcomes without compromising privacy, fairness, or customer control.
AI in business communications is moving faster than any procurement team can fully evaluate before signing a contract. The honest reality is that every modern UCaaS and CCaaS vendor — including DialPhone — uses third-party foundation models from Anthropic, OpenAI, and Google alongside first-party fine-tunes. The question for a buyer is not "does this vendor use AI" but "what does the vendor do with my data, who has audit rights, and what happens when the model gets something wrong."
The six commitments listed below cover the parts of that question that show up in real procurement reviews: data residency and training scope (your conversations do not become training data for a shared model), human-in-the-loop defaults (an AI-drafted SMS or summary is reviewable before it goes to a customer or into a record system), PII redaction at the boundary (PHI, PCI, and personally identifying tokens are detected and tokenized before model inference), per-decision audit logs (every AI action is logged with model version and human reviewer), published model cards (capabilities, limits, and bias-testing results disclosed for every feature), and complete opt-out (turn off any AI feature without losing service SLAs or paying more).
If your security or compliance team needs to walk through the data-handling specifics for a specific AI feature — Smart Virtual Concierge inbound calls, AI meeting summaries, AI SMS drafting, predictive CSAT scoring, or Conversation Intelligence speech analytics — the Trust Center documents each one with subprocessor scope, retention policy, and per-feature opt-out controls. For HIPAA-covered features, the HIPAA page lists exactly which AI inference paths are inside the BAA boundary. For EU residency, the GDPR page describes how model inference for EU customers stays inside EU subprocessor regions.
Principles
Six commitments
-
-
02
Human in the loop
AI recommendations are reviewable by humans. Agents approve auto-drafted SMS. Clinicians approve AI-summarized notes. No irreversible AI-only decisions in critical workflows.
-
03
PII redaction before processing
PHI, PII, and PCI tokens are detected and redacted or tokenized before model processing. Raw sensitive data never crosses the model boundary for shared features.
-
04
Transparency
Model cards disclose capabilities, limitations, training data scope, and known failure modes for every AI feature. Bias-testing results published.
-
05
Audit logs per AI decision
Every AI action (drafted SMS, transfer decision, summarization) is logged with model version, inputs (tokenized), and the human who approved or overrode.
-
06
Right to opt out
Any customer can disable any AI feature. No AI is forced for billing or service eligibility. Opt-out does not reduce service SLAs.
Scope
AI features covered
- AI live captions and transcription
- AI meeting summaries and action items
- AI SMS drafting (Advanced+)
- Smart Virtual Concierge (AI Receptionist)
- Proactive Workflow Automation
- Real-time conversation intelligence (Ultra, Contact Center)
- Agent Assist and supervisor AI (Contact Center tiers)
- Predictive CSAT and sentiment analysis
Responsible AI FAQ
Do you train AI on my calls and messages?
Shared foundation models: no. Customer opt-in fine-tunes: only with explicit workspace consent, and data is isolated, never blended with other customers. The default posture is "customer data stays customer data."
What AI providers do you use?
We operate a mix of first-party (DialPhone-trained) and third-party models (Anthropic Claude, OpenAI GPT-family, Google Gemini) behind a safety-and-privacy proxy that strips PII and enforces output filters. Subprocessor list is public.
Can I see what the AI is doing with my data?
Yes. Every AI call is logged with input tokens (sensitive fields tokenized), model version, output, and the human reviewer. Logs are customer-accessible via audit log export.
How do you handle AI hallucinations?
Three mitigations: (1) retrieval-grounded prompts for factual queries, (2) human review for high-stakes outputs (SMS to customers, AI-drafted clinical notes), (3) ongoing eval pipelines that catch regressions before release.
What about bias?
Bias testing is a release gate for every AI feature. Results published in model cards. Continuous monitoring of real-world decisions for demographic disparities. Known issues tracked publicly with remediation timelines.
Can I run DialPhone without any AI?
Yes. AI features are opt-in at the workspace and user level. Core Business Phone and basic Contact Center operate with AI disabled. Billing does not change.