Privacy Policy

This Privacy Policy explains how AudioScribeX (“we,” “us,” or “our”) collects, uses, and protects your information when you use our website and services. By using AudioScribeX, you agree to the practices described here.

Who we are

AudioScribeX provides tools to upload audio, process it into text and derived assets, and manage your account and subscriptions. For privacy questions, contact support@audioscribex.com. For security issues, contact security@audioscribex.com.

Information we collect

• Account data: Email address, password (hashed), plan, and optional multi-factor authentication settings.
• Content you provide: Audio uploads and outputs we generate (e.g., transcriptions). You control what you upload and can delete your content.
• Usage & security logs: Device/user-agent, IP address, session identifiers, audit logs of sign-ins and security actions, and limited GeoIP lookups to populate security emails (when enabled).
• Payments: Processed by Stripe. We receive payment status and plan details; we do not store full card numbers.
• Cookies: Necessary cookies for authentication/session; a consent preference cookie; optional analytics/marketing cookies only if you opt in.
• Support communications: Emails you send to us and our replies.

How we use information

• Provide, operate, and improve the service.
• Authenticate users, maintain sessions, and secure accounts (e.g., device alerts, MFA).
• Process uploads and generate outputs at your direction.
• Handle subscriptions and billing via Stripe.
• Send transactional emails (e.g., magic links, security alerts, important notices).
• Run analytics only with your consent to understand feature usage (self‑hosted Umami).
• Monitor errors and performance using a self‑hosted GlitchTip instance to maintain security and reliability. This operational telemetry is treated as necessary for the service and does not include user‑provided content or authentication secrets.
• Comply with legal obligations and enforce our Terms.

Legal bases (EEA/UK)

• Contract: Operating the service and processing your content.
• Legitimate interests: Fraud prevention, security, and service improvement.
• Consent: Optional analytics/marketing cookies where applicable.
• Legal obligation: Tax, accounting, and regulatory compliance.

Sharing and processors

We do not sell your personal information. We minimize third-party processors. Today we rely on:

• Stripe — payments and subscription management.
• Cloudflare — CDN/edge and object storage (R2) for uploads/outputs.

The following systems are operated directly by AudioScribeX (no third-party processor):

• Analytics (Umami, self‑hosted) — used to measure aggregate product usage. We do not collect personally identifiable information or user‑generated content, and no analytics data is sent to third‑party vendors. Analytics cookies are set only if you opt in via the cookie banner.
• Error & performance monitoring (GlitchTip, self‑hosted) — used to detect and diagnose application errors and reliability issues. Reports include technical details (e.g., error type, route, environment) and exclude authentication secrets and request bodies containing user content. This telemetry is considered necessary for operating the service and is not gated by analytics consent.
• Email (SMTP) — first-party mail server for transactional and security emails.
• Databases & cache — self-hosted data stores used to run the service.
• GeoIP database (local) — locally stored database (e.g., MaxMind GeoLite2) used to derive approximate location/network in security emails; no external lookup calls are made during this process.

We may disclose information if required by law or to protect the rights, property, or safety of AudioScribeX, our users, or others.

International transfers

We may process and store data in the United States and other countries. Where required, we use appropriate safeguards for international transfers.

Retention

We keep personal information only as long as necessary to provide the service, meet security and legal requirements, and resolve disputes. You can delete your content and close your account; we may retain limited records as required for compliance, security, and fraud prevention.

Security

• Encryption in transit (TLS).
• Modern password hashing and optional TOTP multi-factor authentication.
• Session management with idle limits and device/new-sign-in alerts.
• Audit logging of sensitive actions.

Your choices & rights

• Access, correct, or delete your data (subject to legal limits).
• Export your content where technically feasible.
• Manage cookies and consent using the “Cookie preferences” link in the footer.
• For requests, email support@audioscribex.com.

Cookies we use

Names may vary by environment, but generally include:

• Authentication (HttpOnly) — keeps you signed in.
• Session (HttpOnly) — server-side session binding and security.
• Consent — remembers your cookie preferences (plus an HttpOnly mirror).
• Optional analytics — only set if you opt in (self‑hosted Umami).
• Marketing — only set if you opt in (not required to use the service).

Error & performance monitoring (self‑hosted GlitchTip) is considered necessary for service reliability and security and does not rely on analytics/marketing cookies.

Children

AudioScribeX is not directed to children under 13 (or the minimum age in your jurisdiction). Do not use the service if you are under the applicable minimum age.

Changes to this policy

We may update this policy from time to time. We will post the revised version here with a new “Last updated” date and, when appropriate, provide additional notice.

If anything here conflicts with a version you were previously shown in-product, the most recent version controls.

See also: Terms of Service.