docs

Privacy Policy

January 13, 2026

This Privacy Policy describes how Hypescribe, Inc. ("Hypescribe," "we," "us," or "our") collects, uses, and shares your personal information when you use our speech intelligence platform, including our web application and related services (collectively, the "Services").

Company Information: Hypescribe, Inc.
161 Roslea Rd Hayward California 94542

Email: support@hypescribe.com
Website: hypescribe.com

By using our Services, you agree to this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our Services. We may update this Privacy Policy from time to time, and we will notify you of any material changes by posting the new Privacy Policy on our website and updating the effective date.

‍

For California residents, please see our [California Privacy Notice] for additional information about your privacy rights.

Table of Contents

Information We Collect
How We Use Your Information
Biometric Information Notice
How We Share Your Information
AI Model Training and Improvement
Cookies and Tracking Technologies
Data Security and Retention
International Data Transfers
Your Privacy Rights
California Privacy Rights
Age Verification and Children's Privacy
Changes to This Privacy Policy
Contact Us

1. Information We Collect

We collect information you provide directly to us, information we collect automatically when you use our Services, and information we receive from third parties.

1.1 Information You Provide to Us

Account Information: When you create an account, we collect your name, email address, and password. You may also choose to add a profile picture through our authentication providers.

Audio and Video Content: When you use our Services, you provide us with audio recordings, video files, voice messages, meeting recordings, and other multimedia content ("Content"). This Content may contain your voice and the voices of other individuals. We support various formats including MP3, WAV, M4A, FLAC, OGG for audio, and MP4, AVI, MOV, MKV, WebM for video.

URL-Based Content: We process content from URLs you provide, including links from YouTube, Instagram, VK (VKontakte), Facebook, Rutube, Reddit, Twitter, Vimeo, TikTok, and Google Drive.

Text and Communications: We collect transcription feedback, support requests through Zendesk, feature requests via FeatureBase, feedback through Typeform, and other communications you send to us.

Payment Information: For paid subscriptions, our payment processor Stripe collects your billing information, including name, billing address, and payment details. We do not store your payment card information directly.

Token Usage Data: We track your token consumption, subscription details, billing history, and usage patterns to manage your account and provide our Services.

1.2 Information You Provide About Others

Collaboration Data: If you share recordings or transcripts with others, you provide us with their email addresses and contact information.

Third-Party Voices: Your Content may contain the personal information and voices of other individuals. Before sharing such content, please ensure you have the necessary permissions from all participants.

Meeting Participants: When using our NoteTaker feature for Google Meet, Microsoft Teams, and Zoom, we may collect information about meeting participants as necessary to provide transcription services.
‍

1.3 Information We Collect Automatically

Usage Information: We collect detailed information about how you use our Services, including:

Platform usage patterns and feature interactions
Transcription requests and processing times
Token consumption and subscription activity
Access times, session duration, and user engagement
Chat prompts and AI assistant interactions
File upload sources and processing success rates

Device Information: We collect information about the devices you use to access our Services, including:

Language settings

Analytics Data: We collect comprehensive analytics data for business operations, including:

User registration and activity metrics (daily, weekly, monthly active users)
File processing statistics (total files, average file size, processing duration)
Platform usage distribution (upload methods, content sources)
Performance metrics (transcription success rates, system reliability)
User acquisition data (registration sources, UTM tracking)

Cookies and Similar Technologies: We use cookies, web beacons, and similar technologies to:

Authenticate your account and maintain secure sessions
Remember your preferences and dashboard customization
Analyze usage patterns through Google Analytics and Amplitude
Provide targeted advertising through Google Ads integration
Support payment processing through Stripe integration

1.4 Information We Receive from Third Parties

Authentication Providers: When you connect third-party authentication services, we receive:

Profile information from Google Auth, Apple ID Auth
Username, email address, and password
Authentication tokens and session management data

Payment Processor: We receive transaction information from Stripe to manage your subscription, billing, and payment processing.

Content Processing Services: We receive processing results from our backup AI service providers (Elevate Labs AI, Deepgram, OpenAI Whisper) and our self-hosted Cobalt tool for social media content processing.

Q&A and Chatbot Services: We receive AI-generated responses, content analysis, and intelligent insights from OpenAI (GPT models) and Anthropic (Claude models) when you use our Q&A chatbot features to interact with your transcript content.

Analytics and Marketing: We receive demographic and engagement information from Google Analytics, Amplitude, and our referral program to understand user behavior and improve our Services.

2. How We Use Your Information

We use your personal information for the following purposes:

2.1 Service Provision

Transcription Services: Process your Content using our proprietary speech-to-text models running on self-hosted servers in the United States, with backup processing through Elevate Labs AI, Deepgram, and OpenAI Whisper APIs as needed.

AI-Enhanced Features: Provide intelligent summaries, action item extraction, chatbot Q&A functionality through OpenAI (GPT models) and Anthropic (Claude models), automatic language detection, and content organization using advanced AI capabilities.

Account Management: Create and maintain your account, manage authentication across multiple providers (Google, Apple), and provide customer support through Zendesk integration.

NoteTaker Services: Capture and transcribe live meetings from Google Meet, Microsoft Teams, and Zoom, with recordings available for download according to your subscription status.

‍

2.2 Service Improvement

AI Model Training: We use de-identified and aggregated data to improve our proprietary speech-to-text models and enhance transcription accuracy across our supported 92+ languages. We do not use your personal Content for AI training without explicit consent.

Analytics and Optimization: Analyze usage patterns, performance metrics, and user feedback to improve our Services, develop new features, and optimize platform performance.

Quality Assurance: Monitor service reliability, transcription success rates, and system performance to ensure consistent service delivery.

‍

2.3 Communications

Service Communications: Send you important updates about your account, billing notifications, transcription completion alerts, and service changes through our Resend email integration.

Marketing Communications: With your consent, send you promotional emails about new features, product updates, and special offers. You can control these preferences through your account settings.

Support Communications: Respond to your support requests through Zendesk, process feature requests via FeatureBase, and provide technical assistance.

Usage Summaries: Provide monthly usage summaries and analytics about your transcription activity and token consumption.

‍

2.4 Legal and Safety

Legal Compliance: Comply with applicable US laws, regulations, and legal processes, including California Consumer Privacy Act (CCPA) requirements.

Fraud Prevention: Detect and prevent fraudulent activities, security threats, and unauthorized access to our Services.

Terms Enforcement: Enforce our Terms of Service and other agreements, and protect the rights and safety of our users.

‍

2.5 Business Operations

Billing and Payments: Process payments through Stripe, manage subscriptions, handle token-based billing, and provide access to the Stripe billing portal for account management.

Business Analytics: Analyze user acquisition, customer lifetime value, geographic usage patterns, and revenue metrics for business planning and growth.

Business Transactions: Support potential mergers, acquisitions, or business transfers while maintaining privacy protections.

3. Biometric Information Notice

3.1 Voice Processing and Biometric Data

Our speech-to-text services process your voice recordings to create text transcripts. In certain jurisdictions, this processing may create "voiceprints" or other biometric identifiers as defined by applicable law.

‍

3.2 Illinois Residents - BIPA Compliance Notice

Important Legal Notice for Illinois Residents: Under the Illinois Biometric Information Privacy Act (BIPA), our voice processing creates voiceprints, which are biometric identifiers requiring your written consent.

Before using our Services, Illinois residents must provide written consent by checking the box below:

☐ I consent to Hypescribe's collection, storage, and use of my voiceprints for speech transcription services.

By providing this consent, you acknowledge that:

Collection Purpose: We collect voiceprints solely for converting your speech to text transcripts
Retention Period: Voiceprints are processed immediately and not stored permanently; transcript data is retained according to our data retention policy
Use Limitations: We use voiceprints only for transcription services and related AI improvements (with separate consent)
Security Measures: We protect voiceprints using industry-standard security measures
No Sale or Profit: We will not sell, lease, trade, or profit from your voiceprints

Your Rights Under BIPA:

Withdraw Consent: You may withdraw consent and request deletion at any time
Data Deletion: We will delete voiceprints and related data within 30 days of your request
No Retaliation: Withdrawing consent will not affect your ability to use other services
Legal Remedies: You have the right to seek legal remedies for BIPA violations

To Exercise Your Rights: Contact support@hypescribe.com or use your account settings.

‍

3.3 Other State Residents - Biometric Privacy Rights

Texas, Washington, Colorado, and Other State Residents: If you reside in a state with biometric privacy laws, similar protections apply:

Consent Required: We obtain your consent before processing voice data that may create biometric identifiers
Purpose Limitation: Voice processing is limited to transcription and related services
Security Protection: Industry-standard security measures protect your biometric data
Deletion Rights: You may request deletion of biometric data at any time
‍

3.4 Voice Processing Technical Details

What We Do:

Convert speech audio to text transcripts using AI models
Process voice data to improve transcription accuracy
Support 92+ languages and various accents
Provide AI-enhanced features (summaries, action items)

What We Don't Do:

Create persistent voiceprints for identification purposes
Use voice data for speaker identification across sessions
Share voice data with third parties for their biometric purposes
Retain raw audio files (deleted immediately after processing)

Biometric Data Safeguards:

Immediate Processing: Voice data processed immediately upon upload
No Permanent Storage: Raw audio files deleted within minutes of processing
Encrypted Transmission: All voice data encrypted in transit and at rest
Access Controls: Strict access controls limit who can access voice processing systems
Regular Audits: Regular security audits of voice processing infrastructure
‍

3.5 Consent Management

Providing Consent:

Electronic Signature: Your electronic consent constitutes valid written consent under applicable law
Affirmative Action: You must actively check consent boxes; pre-checked boxes are not valid
Record Keeping: We maintain records of your consent for legal compliance

Changing Your Mind:

Easy Withdrawal: Withdraw consent anytime through account settings or email request
Immediate Effect: Consent withdrawal takes effect within 24 hours
Data Deletion: We delete biometric data within 30 days of consent withdrawal
Service Continuity: You can continue using non-biometric features after withdrawal

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

We share information with trusted third-party service providers who help us operate our Services:

AI Processing: Our backup AI service providers (Elevate Labs AI, Deepgram, OpenAI Whisper) for transcription services when our primary proprietary models require additional capacity.

Q&A and Chatbot Services: OpenAI (GPT models) and Anthropic (Claude models) for providing intelligent Q&A functionality, content analysis, chatbot interactions, and AI-powered insights based on your transcript content.

Payment Processing: Stripe for billing, subscription management, and secure payment processing.

Authentication: Google, Apple for secure user authentication and account management.

Analytics: Google Analytics and Amplitude for usage analytics, performance monitoring, and user behavior analysis.

Customer Support: Zendesk for support ticket management and customer service operations.

Marketing and Engagement: Resend for email communications, FeatureBase for feature requests, and Typeform for feedback collection.

Content Processing: Cobalt (self-hosted) and RapidAPI services for social media content processing and URL-based transcription.

Infrastructure and Hosting: Amazon Web Services (AWS) for cloud infrastructure, server hosting, data storage, and computing resources that power our platform and ensure reliable service delivery.

4.2 Meeting Integration Services

When you use our NoteTaker feature, we integrate with:

Google Meet: For meeting access and recording capabilities
Microsoft Teams: For meeting participation and transcription services
Zoom: For meeting capture and audio processing
‍

4.3 Legal Requirements

We may disclose your information if required by law or in response to:

Valid legal processes (subpoenas, court orders, government requests)
National security or law enforcement requirements
Protection of our rights, property, or safety
Protection of our users or the public
‍

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections outlined in this Privacy Policy.
‍

4.5 With Your Consent

We may share your information for other purposes with your explicit consent, such as when you choose to share transcripts or collaborate with other users.
‍

4.6 Q&A and Chatbot Data Sharing

When you use our Q&A chatbot features, we share relevant portions of your transcript content with specialized AI service providers to deliver intelligent responses and content analysis.

OpenAI Integration

Service: We use OpenAI's GPT models to provide advanced Q&A functionality and content analysis.

Data Shared: Relevant excerpts from your transcripts, user questions, and conversation context necessary to generate accurate responses.

Processing Purpose: Generate intelligent answers to your questions about transcript content, provide content summaries, extract insights, and facilitate interactive conversations about your recordings.

Data Protection: OpenAI processes your data according to their Business Associate Agreement and enterprise data protection standards. Your data is not used to train OpenAI's models.

Anthropic Integration

Service: We use Anthropic's Claude models to provide alternative AI perspectives and enhanced chatbot functionality.

Data Shared: Selected transcript portions, user queries, and contextual information required for generating comprehensive responses.

Processing Purpose: Offer diverse AI perspectives, provide detailed content analysis, generate alternative insights, and enhance the overall Q&A experience.

Data Protection: Anthropic processes your data under strict data processing agreements with enterprise-grade security and privacy protections. Your data is not used for model training.
‍

Your Control Over Q&A Data Sharing

Opt-Out Options:

- Complete Q&A Opt-Out: Disable all Q&A features through your account settings to prevent data sharing with both providers

- Provider-Specific Control: Choose to use only OpenAI or only Anthropic for Q&A functionality

- Session-Based Control: Enable/disable Q&A features for specific transcripts or conversations

Data Retention:

- Conversation History: Q&A conversations stored in your account for easy reference and continuity

- Provider Processing: Both OpenAI and Anthropic delete conversation data according to their enterprise data retention policies

- User Deletion: You can delete Q&A conversation history anytime through your account dashboard

Privacy Safeguards:

- Data Minimization: Only relevant transcript excerpts shared, not entire recordings or transcripts

- Encryption: All data encrypted in transit and at rest during processing

- Access Controls: Strict access controls limit data processing to Q&A functionality only

- No Training Use: Your data is not used to train or improve third-party AI models

Third-Party Privacy Policies

For complete information about how these providers handle your data:

OpenAI Privacy Policy: https://openai.com/privacy/

OpenAI Business Terms: https://openai.com/policies/business-terms

Anthropic Privacy Policy: https://www.anthropic.com/privacy

Anthropic Commercial Terms: https://www.anthropic.com/terms

Exercising Your Rights

Data Access: Request copies of your Q&A conversation data from both Hypescribe and the AI providers

Data Correction: Update or correct Q&A conversation history through your account dashboard

Data Deletion: Request deletion of Q&A data from both Hypescribe and AI provider systems

Opt-Out: Disable Q&A features entirely or selectively by provider

Contact for Q&A Privacy Requests: support@hypescribe.com with "Q&A Privacy Request" in the subject line

5. AI Model Training and Improvement

5.1 How We Use Your Data for AI Training

We develop proprietary speech-to-text models to provide accurate transcription services across 92+ languages. To improve these models, we may use de-identified data from your transcripts.

5.2 Your AI Training Consent Options

You have complete control over whether your data contributes to AI improvement:

Contribute to AI Improvement

Help improve accuracy: Your data helps enhance transcription quality for all users
Support new languages: Contribute to expanding our language support
Enable better features: Help develop improved AI-enhanced features
Maintain privacy: All data is de-identified and aggregated before use

Opt-Out of AI Training

Exclude your data: Your transcripts will not be used for AI model training
Full service access: No impact on transcription quality or available features
Easy to change: You can opt back in at any time
Immediate effect: Opt-out applies to all future processing

5.3 AI Training Data Practices

What We Use for Training:

De-identified transcripts: Text content with all personal identifiers removed
Speech patterns: Aggregated patterns across multiple users for accuracy improvement
Language data: Linguistic patterns to support new languages and accents
Error corrections: User corrections to improve model accuracy

What We Never Use for Training:

Raw audio files: Deleted immediately after transcription
Personal information: Names, contact details, account information
Individual identification: No data that could identify specific users
Opted-out user data: Complete exclusion of data from users who opt-out

Data Protection in AI Training:

De-identification: All personal identifiers removed before training use
Aggregation: Individual data combined with thousands of other users
Security: Training data protected with same security as operational data
Retention limits: Training data retained only as long as necessary for model improvement

5.4 Managing Your AI Training Preference

Via Email Request:

Email support@hypescribe.com with "AI Training Opt-Out" in subject
Include your account email and preferred setting
We'll confirm the change within 1 business day

5.5 AI Training Consent Details

Legal Basis for Processing:

Opt-In Users: Legitimate interest based on your consent and service improvement
Opt-Out Users: No AI training processing of your data
Compliance: Meets CCPA, state privacy laws, and FTC guidance requirements

Your Rights:

Change anytime: Modify your AI training preference at any time
No penalties: No impact on service quality regardless of your choice
Transparency: Full disclosure of how your data is used for training
Deletion: Request deletion of any data used for training purposes

Retroactive Application:

Future processing only: Preference changes apply to future data processing
Existing training data: Previously processed data remains in training sets
Model updates: New models trained only with current user preferences
Complete opt-out: Request complete removal from all training data

5.6 Benefits of AI Training Participation

For You:

Better accuracy: Improved transcription quality over time
New features: Access to AI-enhanced features as they develop
Language support: Better support for your specific accent or dialect
Faster processing: More efficient models provide faster transcription

For the Community:

Global improvement: Help improve transcription for users worldwide
Accessibility: Better support for users with speech differences
Innovation: Enable development of new accessibility features
Language preservation: Help support less common languages and dialects

5.7 Technical Implementation

De-identification Process:

Personal identifier removal: All names, emails, phone numbers removed
Context anonymization: Location references and personal details anonymized
Aggregation: Data combined with thousands of other users
Quality checks: Automated and manual review to ensure privacy protection

Opt-Out Implementation:

Immediate flagging: Your account flagged to exclude from training data
System updates: All processing systems updated within 24 hours
Verification: Regular audits ensure opt-out preferences are respected
Documentation: Maintain records of user preferences for compliance

6. Cookies and Tracking Technologies

6.1 Cookie Consent and Management

When you visit our website, we use cookies and similar tracking technologies to enhance your experience and provide our services. We respect your privacy choices and provide you with complete control over these technologies.

6.2 Cookie Consent Banner

First Visit Experience: When you first visit our website, you'll see a cookie consent banner that allows you to:

Accept All Cookies

Enable all cookie categories for full website functionality
Includes analytics, functional, and marketing cookies
Provides the most personalized experience

Reject Non-Essential Cookies

Use only essential cookies required for basic functionality
Opt-out of analytics, functional, and marketing cookies
May limit some website features

Customize Cookie Preferences

Choose which cookie categories to enable
Granular control over your privacy settings
Detailed explanation of each cookie type

6.3 Cookie Categories and Your Choices

Essential Cookies (Always Active)

Purpose: Required for basic website functionality and security Examples:

User authentication and secure login
Session management and security tokens
Core platform functionality and navigation
Fraud prevention and security measures

Legal Basis: Legitimate interest for website operation Your Control: These cannot be disabled as they're necessary for the website to function

Analytics Cookies (Your Choice)

Purpose: Help us understand how you use our website to improve performance

What We Track:

Page views and user navigation patterns
Feature usage and performance metrics
Error tracking and technical issues
Aggregated usage statistics

Third-Party Services:

Google Analytics (with IP anonymization)
Amplitude behavioral analytics

Your Choice:

✅ Accept: Help us improve website performance and user experience
❌ Do not accept: Opt-out of all analytics tracking

Impact of Disabling: We cannot analyze website performance or identify areas for improvement

Marketing Cookies (Your Choice)

Purpose: Provide relevant advertising and measure campaign effectiveness

What We Track:

Referral sources and campaign attribution
Ad interaction and conversion tracking
Social media integration and sharing
Remarketing and audience building

Third-Party Services:

Google Ads and conversion tracking
Social media platform integrations
Referral program tracking

Your Choice:

✅ Accept: Relevant advertising and referral program participation
❌ Do not accept: Generic advertising with no campaign attribution

Impact of Disabling: Less relevant advertising and no referral program tracking

6.4 Managing Your Cookie Preferences

Cookie Preference Center

Access Methods:

Initial Banner: Click "Customize Cookie Preferences" on first visit
Account Settings: Privacy & Cookies section in your account settings
Footer Link: "Cookie Preferences" link on every page

Available Controls:

Toggle by Category: Enable/disable entire cookie categories
Individual Cookie Control: Detailed control over specific cookies
Third-Party Management: Direct links to third-party opt-out tools
Consent History: View your previous consent choices

Browser-Based Cookie Management

Chrome: Settings → Privacy and Security → Cookies and other site data
Firefox: Settings → Privacy & Security → Cookies and Site Data
Safari: Preferences → Privacy → Manage Website Data
Edge: Settings → Cookies and site permissions → Cookies and site data

Browser Controls:

Block all cookies (may break website functionality)
Block third-party cookies only
Clear existing cookies
Set cookie expiration preferences

6.5 State-Specific Privacy Rights

California Residents (CCPA/CPRA)

Right to Opt-Out: You have the right to opt-out of the "sale" or "sharing" of personal information through tracking technologies.

How to Exercise:

Global Privacy Control (GPC): We automatically honor GPC signals from your browser
Cookie Preference Center: Disable marketing and analytics cookies in your user settings
Email Request: Send your opt-out request directly to support@hypescribe.com for personalized assistance

Universal Opt-Out Signals: We respect browser-based privacy signals including:

Global Privacy Control (GPC)
Do Not Track (DNT) headers
Browser privacy settings

Connecticut Residents (CTDPA)

Consent Rights: You have the right to explicit consent before non-essential cookies are set.

Your Protections:

Prior Consent: No tracking cookies set before you consent
Easy Withdrawal: Change cookie preferences anytime
Granular Control: Choose specific cookie categories
No Dark Patterns: Clear, honest cookie choices without manipulation

Other State Residents

Virginia (VCDPA), Colorado (CPA), and Other States: Similar protections apply including:

Consent for targeted advertising cookies
Opt-out rights for data sales/sharing
Easy preference management
No retaliation for exercising rights

6.6 Third-Party Cookie Management

Google Services

Google Analytics:

Opt-Out: https://tools.google.com/dlpage/gaoptout
Ad Settings: https://adssettings.google.com
Data Controls: https://myaccount.google.com/data-and-privacy

Google Ads:

Ad Personalization: Control ad targeting preferences
Conversion Tracking: Opt-out of conversion measurement
Remarketing: Disable remarketing audiences

Social Media Platforms

Facebook/Meta:

Ad Preferences: https://www.facebook.com/ads/preferences
Off-Facebook Activity: Control data sharing with Facebook

Other Platforms: Direct links provided in cookie preference center for all integrated platforms

6.7 Cookie Consent Technical Implementation

Consent Management

Before Consent:

Only essential cookies are active
No tracking or analytics cookies set
No third-party marketing cookies loaded
Basic website functionality available

After Consent:

Chosen cookie categories activated immediately
Third-party services loaded based on preferences
Consent choices remembered across sessions
Preference changes take effect immediately

Consent Records

What We Track:

Your consent choices and timestamps
IP address and browser information (for fraud prevention)
Consent withdrawal requests and dates
Preference changes and updates

Data Protection:

Consent records encrypted and secured
Access limited to privacy compliance team
Retained for legal compliance periods only
Available for your review upon request

Technical Safeguards

Privacy by Design:

Default to most privacy-protective settings
No pre-checked consent boxes
Clear distinction between essential and non-essential cookies
Easy preference changes without account required

Performance Optimization:

Minimal impact on website loading speed
Efficient consent banner loading
Optimized third-party service loading
Regular performance monitoring

6.8 Cookie Policy Updates

Notification of Changes:

Email Notification: For significant cookie policy changes
Banner Notification: Prominent notice on website
Account Dashboard: Policy update notifications in your account
Consent Refresh: May request new consent for material changes

Your Rights During Updates:

Review Changes: Detailed explanation of policy updates
Update Preferences: Opportunity to modify cookie choices
Withdraw Consent: Easy withdrawal if you disagree with changes
Grandfathering: Existing preferences honored until you choose to update

7. Data Security and Retention

7.1 Security Measures

We implement comprehensive technical and organizational measures to protect your information:

Encryption: All data is encrypted in transit using TLS/SSL protocols and encrypted at rest using industry-standard encryption methods.

Access Controls: We maintain strict access controls with role-based permissions, ensuring that only authorized personnel can access personal information on a need-to-know basis.

Infrastructure Security: Our self-hosted servers in the United States employ advanced security measures, including firewalls, intrusion detection systems, and regular security monitoring.

Security Audits: We conduct regular security assessments, penetration testing, and vulnerability scans to identify and address potential security risks.

Incident Response: We maintain a documented incident response plan to quickly address any security breaches or data incidents.

7.2 Data Retention

We retain your information for as long as necessary to provide our Services and comply with legal obligations:

Raw Audio/Video Files: Deleted immediately after successful transcription processing. We do not store raw audio or video files permanently.

Transcript Data: Stored indefinitely while your account remains active. You can delete individual transcripts or all transcripts through your account dashboard.

NoteTaker Meeting Recordings: Available for download through the NoteTaker feature and stored for a maximum of one year, regardless of account status.

Account Information: Retained for the duration of your active account plus any regulatory compliance periods required by US law.

Analytics Data: Aggregated and anonymized usage data retained for service improvement and business analytics. Personal analytics data retained while account is active plus 30 days after account deletion.

Post-Deletion Retention: User data and transcripts retained for 30 days after account deletion for recovery purposes, then permanently deleted.

7.3 Data Deletion

You have comprehensive control over your data deletion:

Automatic Deletion: Raw audio and video files are automatically deleted after successful transcription processing.

Individual File Deletion: Delete specific transcripts, folders, and associated data through your dashboard interface with immediate processing.

Account Deletion: Complete data purge available through account settings with multi-step confirmation process and 30-day recovery window.

Selective Deletion: Granular control to delete specific files, folders, or data categories according to your preferences.

Data Export: Full data export available in multiple formats (Word, PDF, TXT, Markdown) before deletion to ensure data portability.

Recovery Options: 30-day account recovery period allows for account restoration and data recovery if requested during the recovery window.

8. International Data Transfers

Hypescribe operates primarily in the United States. Your information is processed and stored on our self-hosted servers located in the United States.

8.1 Data Processing Locations

Primary Processing: United States (self-hosted infrastructure)

Backup Processing: United States-based servers for our backup AI service providers

Data Storage: All user data stored on servers located within the United States

Third-Party Services: Some third-party service providers may process data internationally

8.2 Cross-Border Data Transfers

When we transfer your information internationally, we implement appropriate safeguards:

Adequacy Decisions: We rely on adequacy decisions where available for international transfers

Standard Contractual Clauses: We use standard contractual clauses approved by relevant authorities

Service Provider Agreements: All international service providers must meet our data protection standards

User Consent: We obtain explicit consent for international transfers where required

8.3 International User Rights

EU Residents: If you are located in the European Union, you have additional rights under the General Data Protection Regulation (GDPR)

Other International Users: We extend similar privacy protections to all users regardless of location

Local Law Compliance: We comply with applicable local privacy laws in jurisdictions where we operate

9. Your Privacy Rights

You have several rights regarding your personal information:

9.1 Access and Portability

Right to Access: You can request access to the personal information we hold about you

Data Portability: You can request a copy of your data in a structured, machine-readable format Account Dashboard: Access most of your information directly through your account settings

9.2 Correction and Deletion

Right to Correct: You can update or correct your personal information through your account settings
Right to Delete: You can request deletion of your personal information, subject to legal retention requirements, including Q&A conversation data stored with OpenAI and Anthropic

Selective Deletion: Delete specific transcripts, files, Q&A conversations, or data categories as needed

9.3 Processing Controls

Right to Object: You can object to certain types of processing of your personal information Right to Restrict: You can request that we limit how we process your personal information Withdrawal of Consent: You can withdraw consent for processing that relies on your consent

9.4 Exercising Your Rights

Account Settings: Many rights can be exercised directly through your account dashboard Email Requests: Contact support@hypescribe.com for assistance with privacy rights Response Time: We will respond to your requests within 3 days

Identity Verification: We may need to verify your identity before processing certain requests

10. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).

10.1 California Consumer Rights

Right to Know: You have the right to know what personal information we collect, use, disclose, and sell

Right to Delete: You have the right to request deletion of your personal information

Right to Opt-Out: You have the right to opt-out of the sale or sharing of your personal information

Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

10.2 Categories of Information

Personal Identifiers: Name, email address, IP address, and account identifiers

Commercial Information: Subscription details, payment history, and usage records

Internet Activity: Website usage, feature interactions, and analytics data

Audio/Visual Information: Voice recordings and video content (deleted after processing)

Professional Information: Business-related content in transcripts and recordings

10.3 Business Purposes

We use your information for the following business purposes:

Providing transcription and AI-enhanced services
Account management and customer support
Service improvement and analytics
Legal compliance and fraud prevention
Business operations and communications

10.4 Third-Party Sharing

We share information with service providers for:

Payment processing (Stripe)
Authentication services (Google, Apple)
Analytics and performance monitoring
Customer support and communications
AI processing and transcription services
Q&A chatbot functionality (OpenAI, Anthropic)

10.5 Sale and Sharing of Information

No Sale of Personal Information: We do not sell your personal information for monetary consideration

Sharing for Advertising: We may share information for targeted advertising purposes

Opt-Out Rights: You can opt-out of information sharing through our "Do Not Sell My Info" link

10.6 Exercising California Rights

Online Requests: Use our online privacy request form

Email Requests: Contact support@hypescribe.com with "California Privacy Request" in the subject

Phone Requests: Call our privacy hotline for urgent requests

Authorized Agents: Authorized agents may submit requests on your behalf with proper documentation

11. AGE VERIFICATION AND CHILDREN'S PRIVACY

11.1 Age Requirements

Our Services are intended for users 13 years of age and older. If you are between 13 and 17 years old (a "Minor"), you must have your parent or legal guardian's permission to use our Services.

11.2 Age Verification Process

By using our Services, you represent and warrant that:

- You are at least 13 years of age

- If you are between 13-17 years old, you have obtained parental or guardian consent

- You have the legal capacity to enter into binding agreements (or your parent/guardian has such capacity)

- You are not prohibited from using our Services under applicable law

If you are under 13 years of age, you are not permitted to use our Services.

11.3 Parental Consent for Minors (Ages 13-17)

If you are between 13 and 17 years old:

- Your parent or legal guardian must review and agree to this Privacy Policy

- Your parent or legal guardian is responsible for your use of our Services

- We may require verification of parental consent before providing Services

- Your parent or legal guardian may contact us to terminate your account at any time

- Your parent or legal guardian has the right to review, modify, or delete your personal information

11.4 Parental Rights and Controls

Parents and legal guardians of Minor users have the right to:

- Access their child's personal information that we have collected

- Request correction of inaccurate information about their child

- Request deletion of their child's personal information

- Withdraw consent for collection and use of their child's information

- Receive notifications about our data practices regarding their child

11.5 Parental Notice

If we become aware that we have collected personal information from someone under 13 without verification of parental consent, we will delete that information as quickly as possible. For users 13-17, we will verify parental consent as required.

12. Changes to This Privacy Policy

12.1 Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

12.2 Notification of Changes

Material Changes: We will notify you of material changes by:

Posting the updated Privacy Policy on our website
Sending email notifications to your registered email address
Displaying prominent notices in your account dashboard
Providing at least 30 days' notice before changes take effect

Non-Material Changes: For minor updates, we will:

Update the "Effective Date" at the top of this Privacy Policy
Post the revised policy on our website
Maintain a record of changes for your review

12.3 Your Choices

Continued Use: Your continued use of our Services after the effective date of changes constitutes acceptance of the updated Privacy Policy

Disagreement with Changes: If you disagree with changes, you may:

Discontinue use of our Services
Delete your account before changes take effect
Contact us to discuss your concerns
Exercise your data deletion rights

12.4 Version History

We maintain a history of Privacy Policy versions for transparency and reference purposes. Previous versions are available upon request.

13. Contact Us

13.1 Privacy Questions and Requests

If you have questions about this Privacy Policy or want to exercise your privacy rights, please contact us:

Email: support@hypescribe.com
Subject Line: Include "Privacy Request" for faster processing
Response Time: We will respond within 30 days of receiving your request

13.2 Data Protection Officer

For privacy-related inquiries, you may contact our privacy team:

Privacy Team Email: support@hypescribe.com
Privacy Hotline: +1 (669) 210-4288

Business Hours: Monday-Friday, 9 AM - 5 PM PST

13.3 Mailing Address

Hypescribe, Inc.
Attention: Privacy Team

161 Roslea Rd Hayward California 94542

13.4 California Residents

California residents may also contact us using our dedicated California privacy request form available at https://form.typeform.com/to/RX3pUJ8X or by calling our California privacy hotline at +1 (669) 210-4288.

13.5 International Users

For users outside the United States, please include your country of residence in your privacy requests to ensure we apply the appropriate legal protections.

‍