Privacy policy

1 Introduction:

GhostMeet ("we", "our", "the app") provides meeting recording and transcription services using artificial intelligence technologies. We take your privacy and the protection of your personal data seriously.

By using the GhostMeet application, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Information We Collect

2.1 User-Provided Information:

• Email address for registration and authentication

• Username and profile information

• Subscription and payment information

2.2 Audio Recordings and Content:

• Audio recordings of meetings and conversations that you record through the application

• Text transcriptions of these recordings

• Recording metadata (date, time, duration)

2.3 Automatically Collected Data:

• Device information (model, operating system version)

• Technical data (IP address, app version, error logs)

• Application usage data

3. Data Storage

3.1 Local Storage:

• All audio recordings are saved locally on your device (phone or computer)

• You have full control over your recordings on your device

• Recordings are not uploaded to or permanently stored on our servers

3.2 Server Processing:

• Audio files are temporarily transmitted to our server only for transcription creation

• After processing is complete, audio files are deleted from the server

• Transcripts are processed on the server for analysis and quality improvement

4. How We Use Your Information

We use the collected information to:

• Provide core application functionality (recording and transcription)

• Process audio using artificial intelligence technologies to create accurate transcriptions

• Improve speech recognition quality

• Manage your account and subscriptions

• Send important service notifications

• Improve and optimize application performance

• Ensure security and prevent abuse

5. AI Processing and Third-Party Services

To enable GhostMeet functionality, we use the following third-party services:

5.1 Assembly AI:

• Used for audio transcription

• Audio files are temporarily transmitted to Assembly AI for processing

• After transcription is created, audio is deleted in accordance with Assembly AI's policy

5.2 OpenAI:

• Used for analysis and processing of text transcriptions

• Helps improve transcript structure and accuracy

• Applied for additional content analysis features

5.3 Other Services:

• Supabase: for user authentication and metadata storage

• RevenueCat: for subscription and payment management

• Railway: for hosting the server-side application

These services may access your data only to the extent necessary to perform their functions and are required to maintain confidentiality in accordance with their own policies.

6. Data Security

We implement the following security measures:

• Data encryption during transmission between device and server (SSL/TLS)

• Secure storage of credentials

• Temporary storage of audio on server only during processing

• Protection against unauthorized data access

• Regular infrastructure security audits

7. Data Retention Period

7.1 On Your Device:

• Audio recordings and transcriptions are stored on your device until you delete them

7.2 On Our Servers:

• Audio files are deleted immediately after transcription is completed

• Metadata and subscription information are stored until account deletion

• After account deletion, your data is deleted within 30 days

• Backup copies may be retained for up to 90 days for technical purposes

8. Your Rights

You have the right to:

• Access your personal data

• Request correction of inaccurate data

• Delete your account and all associated data on the server

• Export your data

• Withdraw consent for data processing

• File a complaint with a data protection supervisory authority

To manage local data:

• You can delete recordings directly in the application

• Deleting the application will result in deletion of all local data

9. Third-Party Data Sharing

We do NOT sell or transfer your personal data to third parties for marketing purposes.

We may share data only:

• With third-party services listed in Section 5 to ensure application functionality

• When required by law or court order

• To protect our rights, user safety, or public safety

10. Children's Data

GhostMeet is not intended for persons under 13 years of age. We do not knowingly collect personal data from children under 13. If you learn that a child has provided us with personal data, please contact us to have it deleted.

11. International Data Transfers

Your data may be processed and stored on servers located in different countries. We ensure appropriate safeguards are in place when transferring data internationally in accordance with applicable law (GDPR, CCPA, etc.).

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes:

• By email provided during registration

• Through in-app notifications

• By updating the "Last Updated" date at the beginning of this document

Your continued use of the application after changes are made constitutes acceptance of the updated policy.

13. Legal Compliance

GDPR (for EU users):

• We process data on lawful grounds

• You have the right to access, correction, deletion, and data portability

• You may withdraw consent at any time

CCPA (for California users):

• You have the right to know what data we collect

• You can request deletion of your data

• We do not sell personal data

14. Contact Information

For privacy and data protection inquiries, please contact:

• Email: [your support email - to be added]

We will respond to your request within 30 days.

15. Consent

By using GhostMeet, you confirm that you have:

• Read and understood this Privacy Policy

• Agree to the processing of your data in accordance with it

• Understand that audio recordings are temporarily transmitted to the server for transcription creation

• Accept responsibility for obtaining consent from other meeting participants for recording (where required by law)

Important Legal Notice

User Responsibility:
You are responsible for complying with applicable recording laws in your jurisdiction. Some countries and states require obtaining consent from all participants before recording a conversation.