Privacy Policy

Account Information: When you create an account, we collect:

• Name and email address (via Google OAuth)
• Profile picture (if provided through Google)
• Account creation and last login timestamps

Document Data: When you use our service, we process:

• Document content you upload or paste for summarization
• Generated summaries and audio files
• Document metadata (file names, upload dates, processing status)

Usage Information: We automatically collect:

• Number of documents processed per month
• Feature usage patterns and preferences
• Error logs and performance metrics
• IP address and browser information for security purposes

Subscription Data: For paid users, we store:

• Subscription plan and billing status
• Payment information (processed securely by RevenueCat/Stripe)
• Usage limits and consumption tracking

Service Provision:

• Authenticate your account and provide secure access
• Process documents and generate AI-powered summaries
• Create voice narrations using text-to-speech technology
• Store and manage your generated content

Account Management:

• Track usage against subscription limits
• Process subscription upgrades and billing
• Send important service notifications
• Provide customer support

Service Improvement:

• Analyze usage patterns to improve our AI models
• Monitor system performance and reliability
• Develop new features based on user needs
• Ensure security and prevent abuse

Legal Compliance:

• Comply with applicable laws and regulations
• Respond to legal requests and court orders
• Protect our rights and prevent fraud

Storage Infrastructure:

• All data is stored securely on Supabase (PostgreSQL) with encryption at rest
• Audio files are stored in encrypted cloud storage with secure access controls
• Database connections use SSL/TLS encryption in transit
• Regular automated backups ensure data recovery capabilities

Access Controls:

• Row-level security ensures users can only access their own data
• API authentication using secure tokens and OAuth 2.0
• Administrative access is limited and logged
• Regular security audits and vulnerability assessments

Data Retention:

• Account data is retained while your account is active
• Generated content is stored until you delete it or close your account
• Usage logs are retained for 12 months for service improvement
• Deleted data is permanently removed within 30 days

Data Sharing: We only share data with these third-party services as necessary to provide our service. We do not sell or rent your personal information to any third parties.

Access and Portability:

• View all your data through your dashboard
• Download your generated summaries and audio files
• Request a complete export of your account data

Correction and Updates:

• Update your profile information at any time
• Correct any inaccurate data in your account
• Modify your communication preferences

Deletion Rights:

• Delete individual documents and generated content
• Request complete account deletion
• Data will be permanently removed within 30 days of deletion request

Communication Control:

• Opt out of marketing communications (service notifications will continue)
• Choose your preferred communication methods
• Control notification frequency and types

Immediate Deletion (within 24 hours):

• Account access is immediately revoked
• Personal profile information is removed
• Active subscriptions are cancelled

Within 7 days:

• All uploaded documents and generated content
• Audio files and shareable links
• Usage history and preferences

Within 30 days:

• Backup copies and archived data
• Anonymized usage analytics (personal identifiers removed)
• Billing and transaction history (as required by law)

Legal Retention: Some data may be retained longer if required by law, such as billing records for tax purposes or data subject to legal holds.