LaconoteLaconote

Privacy Policy

Last Updated: December 12, 2025

Laconote Privacy Policy

1. Introduction

Laconote ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application, website, or Chrome extension (collectively, the "Service").

Unlike many competitors, we do not monetize your data or use it to train our AI models. Your privacy is our priority.

2. The "Zero-Retention" Promise

We operate on a Transient Processing model for audio data - your recordings are processed and immediately deleted.

  • Audio Data When you record a meeting, the audio is sent to our secure servers solely for transcription. It is deleted from our servers immediately after the transcription is generated. We do not store your audio files in the cloud.
  • Text Summaries The generated text summaries are sent back to your device. You control whether these are backed up to our cloud or stored only locally.
  • No Training Your data is NEVER used to train AI models. We have strict contractual agreements with our AI providers prohibiting this.

3. Information We Collect

We collect the following types of information:

3.1 Information You Provide

  • Account Information Email address, name (from OAuth providers like Google or Telegram)
  • User Content Meeting transcripts and summaries (only if you enable cloud sync)
  • Support Communications Information you provide when contacting support

3.2 Information Collected Automatically

  • Usage Data Anonymized metrics (e.g., recording duration, error rates) to improve app stability
  • Device Information Browser type, operating system (for troubleshooting)
  • Log Data IP address, access times (for security purposes)

3.3 Chrome Extension Data

  • Meeting Audio Captured from meeting tabs (Meet, Teams) - processed transiently, not stored
  • Meeting Metadata Meeting ID, participant names, timestamps
  • Authentication Token To connect the extension to your Laconote account

4. How We Use Your Data

  • To Provide the Service Transcribing audio, generating AI summaries, and delivering meeting insights
  • To Improve the Service Analyzing anonymized usage patterns to enhance features and fix bugs
  • To Communicate Sending service updates, security alerts, and support responses
  • To Ensure Security Detecting and preventing fraud, abuse, and unauthorized access

We DO NOT use your audio recordings or transcripts to train our AI models. Your data remains yours.

5. Data Sharing & Subprocessors

We use trusted third-party providers to process data. We have Data Processing Agreements (DPAs) with strict privacy clauses with all subprocessors:

  • LLM Providers (Groq, OpenAI) For transcription and summarization. They are contractually prohibited from using your data for model training.
  • Cloud Infrastructure (AWS/Google Cloud) For hosting the API and storing encrypted data.
  • Authentication Providers (Google, Telegram) For secure OAuth login.

We do NOT sell your personal information to third parties. We do NOT share your data with advertisers.

6. Your Rights (GDPR & CCPA)

Depending on your location, you have the following rights regarding your personal data:

  • Right to Access Request a copy of all data we hold about you
  • Right to Rectification Correct inaccurate personal data
  • Right to Erasure Request deletion of your account and all associated data. Since we do not hold your audio, deleting your account removes your metadata and any synced text.
  • Right to Data Portability Export your data in a machine-readable format
  • Right to Object Object to processing of your data for certain purposes
  • Right to Opt-Out California residents can opt out of any "sale" of personal information (we don't sell data)

To exercise these rights, go to Settings → Security → Data & Privacy or contact us at [email protected].

7. Data Security

We implement industry-standard security measures to protect your data:

  • Encryption in Transit All data transmitted using TLS 1.3
  • Encryption at Rest Stored data encrypted with AES-256
  • Access Controls Strict internal access policies
  • Regular Audits Security assessments and vulnerability testing

8. International Data Transfers

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, note that your data may be processed in the United States or other countries. We rely on:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • EU-US Data Privacy Framework certification where applicable

9. Data Retention

  • Audio Data Deleted immediately after transcription (within minutes)
  • Account Data Retained while your account is active, deleted within 30 days of account deletion
  • Meeting Summaries Retained until you delete them or your account
  • Usage Logs Retained for 90 days for security and troubleshooting

10. Children's Privacy

Our Service is not intended for children under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. We encourage you to review this Privacy Policy periodically.

12. Contact Us

For privacy concerns, data subject requests, or questions about this policy, contact us:

Email [email protected]

Data Protection Officer [email protected]