1. Our principle
Voice never leaves your device. Speech recognition, grammar clean-up and tone adjustment run entirely on your machine using locally bundled models. Audio is held in memory only for as long as it takes to transcribe, then immediately discarded.
2. What we do collect
- Account data — email, name, organisation, role.
- Billing data — processed by Stripe; we never see your card.
- Anonymous usage metrics — feature counts, latency, error rates. No transcripts, no audio.
- Shared dictionary — only the words your team chooses to add (names, jargon, acronyms).
3. What we never collect
- Your audio recordings.
- The text you dictate.
- Screenshots, keystrokes or screen contents.
- Any content from apps you dictate into.
4. Data residency
Account and billing data are stored in the UK and EU. Enterprise customers may request EU-only or on-premise deployment.
5. Your GDPR / UK-GDPR rights
You can access, correct, export or delete your data at any time. Email privacy@speakr.app or use the in-app data controls. We respond within 30 days.
6. Sub-processors
- Stripe (payments)
- Supabase / Lovable Cloud (account database, EU region)
- Resend (transactional email)
7. Retention
Account data is retained while your subscription is active and for 90 days after cancellation, after which it is permanently deleted. Anonymous usage metrics are retained for 13 months.
8. Security
SOC 2 Type II and ISO 27001 certified. All connections use TLS 1.3. Account data is encrypted at rest.
9. Contact
Data Protection Officer: dpo@speakr.app. You also have the right to complain to the UK ICO.