Last updated: February 27, 2026
SCRIBES is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information when you use our AI meeting assistant platform. SCRIBES is designed as a privacy-first platform — all AI processing runs on dedicated infrastructure with zero reliance on third-party AI services.
We collect the following types of information:
Your information is used exclusively to:
All AI inference — including speech-to-text, language model processing, and text-to-speech — is performed on our dedicated infrastructure. Your audio and text data is never sent to external AI providers such as OpenAI, Google, or Amazon. Meeting data is stored on our secured servers and is accessible only to authenticated account holders. Audio recordings are compressed and stored encrypted at rest.
Meeting data (recordings, transcripts, summaries) is retained for as long as your account is active. You may delete individual meetings and their associated data at any time through the dashboard. Upon account deletion, all associated data is permanently removed within 30 days.
We do not sell, rent, or share your personal information or meeting data with third parties. Data may only be disclosed if required by law, to protect our legal rights, or with your explicit consent. Third-party integrations (e.g., Zoom) only receive the minimum data necessary for functionality, as governed by their respective OAuth scopes.
We implement industry-standard security measures including encrypted connections (TLS), secure authentication (JWT with bcrypt-hashed passwords), firewall-protected infrastructure, and regular security updates. Access to production systems is restricted to authorized personnel via SSH key authentication.
You have the right to:
SCRIBES uses browser local storage to maintain your authentication session (JWT token) and user preferences (theme, locale). These are essential and not gated by consent.
For ad performance and product analytics across our public pages and the authenticated app, we use Google Analytics 4 and Google Ads conversion tracking. These set cookies only after you accept the consent banner. We never send personal information (email, name, phone, message content) to Google — only opaque identifiers (a one-way hash of your internal user ID) and category-level event metadata (event name, plan slug, page category, length buckets).
The categories of events we track are: page navigation (anonymized paths like /meetings/:id), sign-up funnel steps, login/logout, onboarding progress, meeting lifecycle (created, started, viewed, exported, shared, emailed), chat assistant usage (message length category only, never message text), transcript search (query length only, never the query), settings changes (category and field names only), and subscription billing events (plan, billing interval, and payment value for revenue analytics).
What we never send to any analytics service: meeting audio, meeting transcripts, summary content, chat message bodies, search queries, email recipients, calendar contents, or any other content of your work.
You can withdraw consent at any time by clearing site data in your browser. Google's data retention is 14 months for analytics events.
We may update this Privacy Policy from time to time. We will notify users of material changes via the Service. Continued use of the Service after changes constitutes acceptance of the updated policy.
For privacy-related questions or requests, please contact us at privacy@scribes.cloud.