Loading...
Effective Date: March 14, 2026 · Last Updated: March 14, 2026
ReVoice is committed to protecting your privacy and handling your data responsibly. This Privacy Policy explains how we collect, use, store, and share your personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
Table of Contents
ReVoice ("we," "us," or "our") is the data controller responsible for your personal data. For any data protection inquiries, you can reach us at:
ReVoice Data Protection
Email: privacy@re-voice.io
We collect the following categories of personal data:
| Category | Data Types | Purpose |
|---|---|---|
| Account Data | Name, email address, hashed password | Authentication, account management |
| Audio Data | Audio recordings of meetings/conversations | Transcription processing |
| Transcript Data | Text transcripts, speaker labels, timestamps | Core service delivery |
| AI-Generated Data | Summaries, action items, chat responses, sentiment analysis | AI features |
| Usage Data | Pages visited, features used, session duration | Service improvement |
| Consent Records | Timestamps of consent given for ToS, privacy, data processing, cookies | Legal compliance |
Under GDPR, we process your personal data on the following legal bases:
We do not transfer your data: sell your personal data, use your content for AI model training, or share your data with advertisers.
To deliver our Service, we share certain data with the following third-party processors. Each processor operates under a Data Processing Agreement (DPA) with ReVoice:
| Provider | Purpose | Data Shared | Location |
|---|---|---|---|
| Deepgram | Speech-to-text transcription | Audio streams/files | United States |
| OpenAI | AI summaries, chat, sentiment analysis | Transcript text segments | United States |
Consent required: By creating an account and using ReVoice, you explicitly consent to the processing of your audio and transcript data by these third-party providers. You may withdraw this consent at any time by deleting your account.
Both Deepgram and OpenAI have committed to not using customer data for model training (when using their API services). We have verified that data sent through their APIs is processed ephemerally and is not retained beyond the processing period.
We retain your data for the following periods:
| Data Type | Retention Period | Basis |
|---|---|---|
| Account data | Until account deletion | Contract performance |
| Audio recordings | Until deleted by user or account deletion (30 days for Free plan) | Consent |
| Transcripts & summaries | Until deleted by user or account deletion (30 days for Free plan) | Consent |
| AI chat history | Until deleted by user or account deletion (30 days for Free plan) | Consent |
| Session data (JWT) | 8 hours | Legitimate interest |
| Deletion audit records | 3 years after deletion | Legal obligation |
| Payment records | 7 years | Legal obligation (tax) |
You can delete individual conversations (including audio, transcript, and AI data) at any time. Account deletion permanently removes all associated data (see Section 7).
Under GDPR, you have the following rights regarding your personal data:
| Right | Description | How to Exercise |
|---|---|---|
| Access (Art. 15) | Obtain a copy of all personal data we hold about you | Settings → Download My Data |
| Rectification (Art. 16) | Correct inaccurate personal data | Settings → Profile |
| Erasure (Art. 17) | Request deletion of all your personal data ("right to be forgotten") | Settings → Delete Account |
| Data Portability (Art. 20) | Receive your data in a structured, machine-readable format (JSON) | Settings → Download My Data |
| Restrict Processing (Art. 18) | Limit how we process your data | Contact privacy@re-voice.io |
| Object (Art. 21) | Object to processing based on legitimate interest | Contact privacy@re-voice.io |
| Withdraw Consent (Art. 7) | Withdraw previously given consent at any time | Settings → Delete Account |
We will respond to all data subject requests within 30 days. You also have the right to lodge a complaint with your local data protection authority (e.g., the Swedish Authority for Privacy Protection - IMY).
Some of our third-party processors (Deepgram, OpenAI) are located in the United States. When we transfer your data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place:
We implement industry-standard security measures to protect your data:
ReVoice uses Google's Application Programming Interface (API) Services to enable calendar integrations and authentication.
Consent required: ReVoice's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
ReVoice is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children. If you become aware that a child has provided us with personal data, please contact us at privacy@re-voice.io and we will delete such data promptly.
We may update this Privacy Policy from time to time. We will notify you of material changes via email and by posting a notice on the Service at least 30 days before the changes take effect. The "Last Updated" date at the top of this page indicates when this policy was last revised.
If you have questions, concerns, or wish to exercise your data protection rights, please contact us:
You have the right to lodge a complaint with a supervisory authority, in particular in the EU/EEA member state of your habitual residence, place of work, or place of the alleged infringement. In Sweden, the supervisory authority is the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten - IMY).