Privacy Policy

Effective May 5, 2026  ·  Version 2026-05-05

Call Center Group ("CCG", "we", "us", or "our") respects your privacy. This Privacy Policy describes the information we collect when you use the CCG client portal at portal.callcentergroup.net (the "Portal") and how we use it.

1. Who this policy covers

This Policy applies to authorized users of the Portal — typically client-account staff and CCG personnel who have been invited by an administrator. The Portal is a private, invitation-only application; self-service registration is disabled.

2. Information we collect

  • Account information you or your administrator provide: name, business email address, phone number, and the role or permissions assigned to your account.
  • Authentication data: hashed password, two-factor authentication enrollment metadata (authenticator app secret, registered phone number, registered email address), recovery codes, and timestamps of sign-in and security events.
  • Connection information recorded automatically when you sign in or take a sensitive action: IP address, browser/device user-agent string, timestamps, and the page or feature you accessed.
  • Consent records: when you opt in to or revoke a delivery channel (such as SMS or voice MFA), we record the date, time, IP address, user-agent, and the version of the Terms & Conditions you accepted or revoked.
  • Cookies: a session authentication cookie ("CCG.Auth"), an optional "remember-email" cookie that pre-fills the sign-in form on your next visit if you choose, and minimal anti-forgery and framework cookies. We do not use third-party advertising or analytics cookies.
  • Service data that you submit through the Portal — for example, support tickets, file uploads, and requests for reports. Service data is processed on behalf of the client account you belong to.

3. How we use your information

  • To authenticate you and protect your account.
  • To deliver one-time codes for two-factor authentication through the channel you've enrolled (authenticator app, email, SMS text, or automated voice call).
  • To respond to your support requests and operate the services your account has engaged us for.
  • To detect, investigate, and respond to fraud or abuse.
  • To diagnose and fix technical issues with the Portal.
  • To comply with legal obligations, court orders, and regulatory requirements.
  • To send transactional notices about your account (for example, password-reset emails or security alerts). These are operational messages, not marketing.

4. We do not share or sell your information

We do not sell, rent, trade, or otherwise share your personal information with any third-party company, and we do not use your information for marketing.

The only situations in which information leaves CCG are:

  • Strictly to deliver the service you requested — for example, handing your phone number to a telecommunications carrier so we can deliver your one-time SMS or voice 2FA code, or handing your email address to an email-delivery provider so we can deliver a password-reset link. These providers act on our instructions only and are bound by contract to use your information solely to deliver the message; they may not use it for their own purposes or for marketing.
  • Within your client account — designated administrators on your account can see the users on the account and the audit information needed to administer access (sign-in status, MFA-enrollment status, etc.).
  • When required by law — for example, in response to a valid subpoena, court order, or regulatory request, or where necessary to protect rights, property, or safety.

5. Data retention

We keep account, authentication, and consent records for as long as your account is active and for a period afterward to meet legal, audit, and security obligations. Connection logs are typically retained for 12 months. You can request earlier deletion as described below; some records (such as consent revocations) may be retained as required by law.

6. Security

We use industry-standard safeguards to protect Portal data, including encryption in transit (TLS), hashed password storage, role-based access controls, mandatory two-factor authentication for new accounts, and idle-session timeouts with step-up re-authentication for sensitive areas. No system is perfectly secure; please use a strong, unique password and keep your 2FA methods up to date.

7. Your choices and rights

  • Access and correction: view and update your profile from Account → Profile.
  • Revoke consent: manage SMS and voice consents from Account → Privacy & consent. You can also reply STOP to any SMS message we send to opt out.
  • Personal-data download: request a copy of the personal data we hold about you by contacting us at the address below.
  • Account deletion: ask your account administrator or contact us. If you have a regulatory right to deletion (for example, under CCPA/CPRA), we will honor it subject to the limited retention exceptions noted above.

8. Children

The Portal is not intended for use by anyone under 16. We do not knowingly collect personal information from children.

9. Changes to this Policy

We may update this Policy from time to time. The version number and effective date at the top of the page will change. If the changes are material, we will ask you to re-confirm any affected consents the next time you sign in.

10. Contact us

Questions, requests, or concerns? Contact us at privacy@callcentergroup.net.

Back to home Terms & Conditions