Trust & Compliance

Compliance & Trust Center

Revenue Receptionist is built on a foundation of regulatory compliance, AI transparency, and data protection — so you and your customers can communicate with confidence.

TCPA Compliant

Platform designed for lawful outbound calling and SMS with consent-first architecture.

HIPAA Compliant

Full HIPAA compliance for healthcare providers with BAA available on request.

AI Transparency

Clear disclosure of AI-powered communications where required by law.

SMS Opt-Out

Automatic STOP/HELP handling on all SMS communications.

Recording Notices

Customers responsible for call recording consent in their jurisdiction.

Abuse Reporting

Dedicated abuse channel monitored for misuse and suspicious activity.

TCPA & Telecommunications Compliance

Revenue Receptionist is designed to support lawful automated calling and SMS communications in compliance with the Telephone Consumer Protection Act (TCPA), CAN-SPAM Act, and applicable state telecommunications regulations.

Platform Safeguards

  • Consent-first design: customers must configure compliant use cases before deploying outbound communications
  • Automatic STOP/HELP keyword handling on all SMS communications
  • Opt-out requests honored immediately and permanently
  • No platform-initiated unsolicited marketing messages
  • Caller ID and business name disclosure on outbound calls

Customer Responsibilities

Customers using Revenue Receptionist for outbound calling or SMS are solely responsible for:

  • Obtaining all legally required consents (express written consent where required by TCPA)
  • Maintaining consent records for all contacted parties
  • Complying with do-not-call registries and suppression lists
  • Providing required disclosures under applicable state laws
  • Ensuring communications are limited to lawful, non-abusive use cases

AI Transparency

Revenue Receptionist uses artificial intelligence and automated systems to answer calls, assist with appointment scheduling, provide responses based on business configuration, and route communications appropriately.

  • Callers may interact with an AI voice system; this is disclosed where required by law
  • AI responses are generated based on the business's configured information and do not represent human judgment
  • AI-generated responses are reviewed and improved for service quality and operational reliability
  • No AI system is used to make consequential decisions about individuals without human oversight
  • Customer business data is not used to train AI models serving other customers

We are committed to responsible AI deployment and ongoing transparency as regulations evolve.

Call Recording Notice

Calls handled through Revenue Receptionist may be recorded for quality assurance, scheduling accuracy, dispute resolution, security, and service improvement purposes, subject to applicable law.

  • All recordings are encrypted at rest (AES-256) and in transit (TLS 1.3)
  • Recordings are retained for 90 days by default; enterprise customers may request adjustments
  • Access to recordings is restricted to authorized personnel and account administrators
  • Customers are responsible for providing legally required recording disclosures to callers in their jurisdiction (including two-party consent states such as California)

SMS Opt-Out Process

All SMS communications sent through Revenue Receptionist support standard opt-out mechanisms in compliance with TCPA and carrier requirements.

Reply STOP

Opt out of all SMS from this sender permanently

Reply HELP

Receive contact and support information

Reply START

Re-subscribe to messages after opting out

Message and data rates may apply. Message frequency varies by account activity. For support, contact support@revenuereceptionist.com.

HIPAA Compliance Program

Revenue Receptionist maintains a comprehensive HIPAA compliance program addressing the Privacy Rule, Security Rule, and Breach Notification Rule. Our program is regularly reviewed and updated.

PHI Protection

Protected Health Information is encrypted and stored securely.

Access Controls

Strict role-based access to patient information.

BAA Available

Business Associate Agreements provided for all healthcare clients.

Staff Training

All team members complete HIPAA compliance training.

Audit Logs

Comprehensive logging of all PHI access and modifications.

Breach Protocol

Established incident response and notification procedures.

Technical Safeguards

  • AES-256 encryption for all PHI at rest
  • TLS 1.3 encryption for data in transit
  • Unique user identification and MFA
  • Automatic session timeout and logoff
  • Complete audit trails for all PHI access

Administrative Safeguards

  • Designated Privacy and Security Officers
  • Regular risk assessments and security audits
  • Workforce training and awareness programs
  • Incident response and breach notification
  • BAAs with all vendors handling PHI

Security Summary

Infrastructure

  • SOC 2 Type II compliant cloud infrastructure (AWS)
  • AES-256 encryption at rest, TLS 1.3 in transit
  • 24/7 security monitoring and intrusion detection
  • Regular penetration testing

Access & Operations

  • Role-based access controls and MFA for all staff
  • Comprehensive audit logging
  • Mandatory security awareness training
  • Vulnerability disclosure program

For detailed security documentation, visit our Security page or contact security@revenuereceptionist.com.

Report Abuse

If you have received unwanted calls or messages originating from a Revenue Receptionist-powered number, or if you suspect misuse of our platform, please report it immediately. We investigate all abuse reports and take appropriate action, including account suspension or termination.

Abuse reporting email: abuse@revenuereceptionist.com