Privacy Policy
Last updated: 13 July 2026
This policy explains what personal data Frontmate collects, why we collect it, and what rights you have over it. It covers both visitors to this website and callers whose calls are answered by a Frontmate AI receptionist on behalf of one of our clients.
1. Who we are
Frontmate is a trading name of Echovale Ltd, a company registered in England & Wales under company number 16670167.
For the purposes of UK GDPR and the Data Protection Act 2018, Echovale Ltd is the data controller for personal data collected through this website, and a data processor for personal data contained in calls we answer on behalf of our business clients.
You can contact us about anything in this policy at [email protected].
2. Data we collect through this website
If you submit an enquiry through a form on this site, we collect the information you choose to give us — typically your name, business name, email address and phone number, plus anything you write in the message field.
We also collect anonymous, aggregated analytics about site usage (page views, referring site, country, browser type) via Cloudflare Web Analytics. This is cookieless and does not track you across websites or build a profile of you.
Why we collect it, and our lawful basis
| Data | Purpose | Lawful basis |
|---|---|---|
| Enquiry form details | To respond to your enquiry and, if relevant, provide a quote or set up a trial | Legitimate interests — responding to a request you initiated |
| Anonymous analytics | To understand which pages are useful and improve the site | Legitimate interests — no personal data is processed |
3. Data we process on behalf of our clients
When a Frontmate AI receptionist answers a call for one of our business clients, the caller's personal data is processed. This may include the caller's name, phone number, and whatever they choose to say during the call — which, depending on the business, could include appointment details, an address, or a description of the problem they are calling about.
If you are a caller: the business you called is the data controller for that call, not Frontmate. We process the call strictly on their instructions. To exercise your rights over that data, contact the business you called. If you are not sure who that is, email us and we will point you to them.
Calls may be recorded and transcribed so the business can review what was said and act on it. Where a business uses call recording, it is their responsibility to notify callers, and our AI receptionist is configured to announce this at the start of the call.
4. Who we share data with
We do not sell personal data. We share it only with the service providers we need to operate:
- Telephony provider — to receive and route inbound calls.
- Voice AI and speech-processing providers — to transcribe speech and generate the receptionist's replies.
- Email provider — to deliver call summaries and enquiry notifications.
- Hosting and CDN provider (Cloudflare) — to serve this website.
- Our business client — where we are processing a call on their behalf, the resulting summary goes to them.
Some of these providers process data outside the UK. Where that happens, transfers are protected by UK adequacy regulations or by Standard Contractual Clauses with the UK Addendum.
5. How long we keep it
- Website enquiries — kept for up to 24 months from your last contact with us, then deleted.
- Call recordings and transcripts — retention is set by the client business whose calls we answer. Our default is 90 days unless the client instructs otherwise.
- Anonymous analytics — retained in aggregate; contains no personal data.
6. Your rights
Under UK GDPR you have the right to:
- Ask what personal data we hold about you, and get a copy of it.
- Have inaccurate data corrected.
- Have your data deleted, in certain circumstances.
- Object to, or ask us to restrict, our processing of it.
- Ask us to transfer it to another provider, where technically feasible.
To exercise any of these, email [email protected]. We will respond within one month.
If you are unhappy with how we have handled your data, you can complain to the Information Commissioner's Office at ico.org.uk or on 0303 123 1113.
7. Security
Data is transmitted over encrypted connections (TLS) and stored on access-controlled infrastructure. Access to call data is limited to the people who need it to operate the service.
8. Changes to this policy
If we make material changes to this policy we will update the date at the top of this page. Where the change significantly affects how we use your data, we will contact you directly.