Privacy Policy
Last updated: June 4, 2026
This Privacy Policy explains how Zupral LLC (“Zupral,” “we,” “us,” or “our”) collects, uses, stores, shares, and protects information in connection with Fon, our private communications console available at fon.zupral.com (the “Service”). By using the Service, you agree to the practices described here.
1. Who we are
Fon is operated by Zupral LLC. Fon is an internal communications tool used by authorized Zupral operators to manage contacts, voice calls, and SMS messaging. If you have any questions about this policy or your data, contact us at privacy@zupral.com.
2. Information we collect
2.1 Information from Google Sign-In
We use Google OAuth for authentication. When you sign in with your Google account, we request the openid, email, and profile scopes and receive your basic profile information — your name, email address, profile picture, and Google account identifier. We use this information to create and secure your account and to identify you within the Service.
2.2 Google Contacts data
With your consent, Fon requests the https://www.googleapis.com/auth/contacts scope so that you can import, view, create, edit, and export contacts from your Google Contacts. When you choose to use these features, we access and store the contact records you sync — which may include names, phone numbers, email addresses, organizations, and related contact details — in order to provide contact-management functionality inside Fon. We only access Google Contacts data after you grant permission, and you can revoke that permission at any time (see Section 4 and Section 7).
2.3 Communications data (Twilio)
Fon uses Twilio to provide voice and SMS functionality. In the course of placing calls and sending or receiving messages, we process telephone numbers, message content, call and message metadata (such as direction, status, duration, and timestamps), and related records. This data is handled to operate the communications features of the Service and is also processed by Twilio as our service provider.
2.4 Usage, device, and cookie data
We and our analytics and advertising partners collect technical and usage information such as IP address, browser type, device information, pages viewed, and interactions with the Service. This information is collected through cookies and similar technologies, as described in Section 5.
3. How we use information
We use the information we collect to:
- Provide, operate, secure, and maintain the Service;
- Authenticate users and manage accounts and access;
- Enable contact management, voice calling, and SMS messaging features;
- Communicate with you about the Service, including service-related notices;
- Monitor and improve performance, reliability, and security, and to detect and prevent fraud or abuse;
- Comply with legal obligations and enforce our terms.
4. Google user data and Limited Use
Fon’s use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. In particular:
- We only use Google user data to provide and improve user-facing features of Fon that are prominent in the requesting interface;
- We do not use Google user data for advertising;
- We do not sell Google user data;
- We do not transfer Google user data to third parties except as necessary to provide or improve the Service, to comply with applicable law, or as part of a merger, acquisition, or sale of assets with notice to users;
- We do not allow humans to read Google user data unless we have your affirmative consent for specific messages, it is necessary for security purposes (such as investigating abuse) or to comply with applicable law, the data is aggregated and anonymized, or it is necessary for internal operations and the data has been de-identified where reasonable.
6. How we share information
We share information only as described below. We do not sell your personal information.
- Service providers — with vendors that help us operate the Service, including Google (authentication and APIs), Twilio (voice and SMS), our hosting and infrastructure providers, and our analytics and advertising partners, each acting on our behalf or in accordance with their own terms.
- Legal and safety — when required to comply with applicable law, legal process, or governmental request, or to protect the rights, property, or safety of Zupral, our users, or others.
- Business transfers — in connection with a merger, acquisition, financing, or sale of assets, with notice to affected users where required.
7. Data retention and deletion
We retain information for as long as your account is active or as needed to provide the Service, comply with our legal obligations, resolve disputes, and enforce our agreements. You may request access to, correction of, or deletion of your data by emailing privacy@zupral.com; we will respond consistent with applicable law.
You can revoke Fon’s access to your Google account at any time through your Google Account permissions page. Revoking access stops further synchronization; to delete contact data already stored in Fon, contact us at the address above.
8. Security
We use administrative, technical, and organizational safeguards designed to protect information against unauthorized access, loss, misuse, or alteration. No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security.
9. International data transfers
We and our service providers may process and store information in the United States and other countries. Where we transfer information across borders, we take steps to ensure it receives an adequate level of protection consistent with applicable law.
10. Children’s privacy
Fon is an internal business tool intended for authorized adult operators and is not directed to children. We do not knowingly collect personal information from individuals under 18 years of age.
11. Your rights
Depending on your location, you may have rights to access, correct, delete, or restrict the processing of your personal information, and to object to certain processing, including under the EU/UK GDPR and the California Consumer Privacy Act (CCPA/CPRA). To exercise these rights, contact us at privacy@zupral.com. We will not discriminate against you for exercising your rights.
12. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date above and, where appropriate, provide additional notice. Your continued use of the Service after changes take effect constitutes acceptance of the updated policy.
13. Contact us
Zupral LLC
Email: privacy@zupral.com
See also our Terms of Service.