Security
Security review for live sales call software
Sales conversations can include commercial, technical, and stakeholder information. A security review should be specific about the workflow and data being processed.
Start with data scope
Identify which calls are in scope, which playbooks or call briefs are provided, which outputs are created, and what retention or deletion requirements your organization expects.
Define access and consent
Determine who can see live prompts and call outputs, and confirm how your organization will meet recording or transcription notice and consent requirements for each jurisdiction.
Request current documentation
Ask for current documentation on processing, controls, retention, and compliance status. Completed controls and planned work should be described separately during evaluation.