Privacy Policy - SpokenType

Overview

SpokenType (hereinafter 'we') deeply values your privacy. This Privacy Policy explains how we collect, use, store and protect your personal information when you use SpokenType products and services (hereinafter 'Services'). This policy applies to SpokenType client apps on macOS, Windows, iOS, Android, and our website spokentype.com.

By using our Services, you agree to the terms of this Privacy Policy. If you do not agree, please do not use our Services.

1. Information We Collect

1.1 Information You Provide

Account information: Email address, username and other basic information provided when registering or using the Service.
Contact information: Name, email and message content submitted via contact forms or support channels.
Preferences: Language, speech recognition model, AI provider and other preferences you configure in the app.
Payment information: When you purchase a subscription, payment information is processed directly by third-party payment processors (Apple App Store, Google Play, Stripe, etc.). We do not directly collect or store your credit card or bank account details. We only receive transaction confirmations (e.g. subscription status, expiry).

1.2 Automatically Collected Information

Device information: OS type and version, device model, app version, unique device identifiers, etc.
Usage data: Anonymous statistics on feature usage frequency, crash reports and performance data, used to improve the product experience.
Log data: Server access logs (IP address, access time, request URL) for security monitoring and troubleshooting.

1.3 Information We Do Not Collect

We do not collect or store your voice recordings.
We do not collect or store your speech-to-text transcriptions.
We do not collect or store your screenshots.
We do not track your activity across apps or websites without your explicit consent.

2. Legal Basis for Processing

Under applicable data protection laws (including GDPR), we process your personal information on the following legal bases:

Contract performance: Data processing necessary to provide the services you requested.
Legitimate interests: To improve our services, ensure security and prevent fraud.
Legal obligation: To comply with applicable laws and regulations.
Consent: Data processing carried out with your explicit consent (e.g. marketing communications), which you may withdraw at any time.

3. Voice Data Processing

SpokenType's core functionality involves voice input. We handle voice data according to the principle of minimization:

Local processing mode: Voice data is processed entirely on your device and is never uploaded to any server.
Cloud processing mode: Voice data is sent encrypted (TLS 1.2+) directly to your chosen AI provider (e.g. OpenAI, Google Cloud, Baidu AI, etc.). Our servers do not relay or store this data.
Temporary audio files: Temporary audio files generated during processing are automatically deleted after completion, with a maximum retention time not exceeding the configured expiry.
Screen awareness: When you use features like 'Smart Reply' that read screen content, screen information is only processed locally or sent directly to your AI provider. We do not collect or store screenshots.

4. Use of Information

We use the collected information for the following purposes:

To provide, maintain and improve our Services.
To process your subscriptions, payments and refund requests.
To handle your inquiries and feedback.
To send product updates and security notices (non-marketing communications).
With your consent, to send product promotions and marketing information.
To analyze usage trends to optimize product experience (using only anonymous, aggregated data).
To prevent fraud, detect security threats and ensure service security.
To comply with legal obligations and enforce our Terms of Service.

5. Sharing and Disclosure

We do not sell, rent or trade your personal information. We may share your information only in the following circumstances:

AI providers: When you choose cloud speech recognition or AI processing, relevant data is sent directly to the third-party AI provider you configured, subject to their privacy policy.
Payment processors: Apple App Store, Google Play or Stripe handle your subscriptions and payments.
Service providers: Trusted third parties assisting us in operating the Service (e.g. cloud hosting, analytics), bound by contract to process data only on our instructions.
Legal requirements: When required by law, judicial proceedings or lawful requests from government authorities.
Safety: When necessary to protect the rights, property or safety of SpokenType, users or the public.
Business transactions: In the case of a merger, acquisition or asset sale, your information may be transferred as part of the transaction, and we will notify you in advance.

6. Data Security

We take industry-standard security measures to protect your information:

All data transmissions use TLS 1.2+ encryption.
Locally stored history and personal memory data use encrypted storage.
Server-side data storage uses encryption and access controls.
Regular security audits and vulnerability assessments.
Strict internal data access permission management.

While we take reasonable measures to protect your information, no internet transmission or electronic storage is completely secure. In the event of a data breach, we will notify affected users and relevant regulatory authorities as required by applicable law.

7. Data Retention

We retain your personal information only as long as necessary to provide the Services. Specific retention periods:

Account data: Retained while your account is active, and permanently deleted within 30 days of account deletion.
Transaction records: Retained as required by tax and accounting laws, typically 5 years after the transaction.
Usage statistics: Anonymous, aggregated data may be retained long-term for product analysis.
Temporary audio files: Deleted immediately after processing or automatically cleaned up per the configured expiry.

8. Cross-Border Data Transfers

Your information may be processed on servers outside your country or region. When information is transferred from the European Economic Area (EEA), United Kingdom or other restricted regions, we implement appropriate safeguards including:

Signing EU Standard Contractual Clauses (SCCs) with data recipients.
Ensuring the destination country or region provides adequate data protection.
Relying on other approved data transfer mechanisms where applicable.

9. Your Rights

Under applicable data protection laws, you have the following rights:

Rights Applicable to All Users

Right of access: You can view the personal information we hold about you.
Right to rectification: You can request correction of inaccurate personal information.
Right to erasure: You can request deletion of your personal information ('right to be forgotten').
Right to data portability: You can request a structured, machine-readable copy of your data.
Right to withdraw consent: You can withdraw consent at any time without affecting the lawfulness of processing before withdrawal.
Right to restrict processing: In certain circumstances, you can request restriction of processing of your data.
Right to object: You can object to processing based on legitimate interests.

EU/EEA Users (GDPR)

If you are located in the EU or EEA, you also have the right to lodge a complaint with your local data protection authority, and the right not to be subject to a decision based solely on automated processing (including profiling) that produces legal or similarly significant effects.

California Residents (CCPA/CPRA)

If you are a California resident, under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), you also have:

Right to know: About the categories and purposes of personal information we collect.
Right to delete: Request deletion of your personal information.
Right to opt-out: Opt out of the sale or sharing of personal information (we do not sell your data).
Right to non-discrimination: No discriminatory treatment for exercising your privacy rights.
Right to correct: Correct inaccurate personal information.
Right to limit use of sensitive personal information.

To exercise any of the above rights, please contact us at [email protected]. We will respond within the legally required timeframe (typically within 30 days).

10. App Tracking Transparency (Apple ATT)

On iOS/iPadOS devices, we comply with Apple's App Tracking Transparency (ATT) framework. Before tracking your activity, we will request your authorization through a system prompt. You can change your tracking authorization in iOS Settings at any time.

Current status: SpokenType does not track users across apps or websites, and does not link user data with third-party data for ad targeting or ad measurement purposes.

11. Automated Decision-Making

SpokenType uses AI models to process voice input, generate replies and translations. This processing does not involve automated decisions that produce legal or similarly significant effects on you. AI-generated content is for reference only — you make the final decision on usage.

12. Children's Privacy

Our Services are not directed to users below the following ages:

United States: Under 13 (compliant with COPPA)
EU/EEA: Under 16 (or the lower age set by the relevant member state, compliant with GDPR)
Mainland China: Under 14
Other regions: Minimum age as required by local law

We do not knowingly collect personal information from users below these ages. If we discover we have inadvertently collected such information, we will delete it immediately. If you believe we may have collected information from a minor, please contact us at [email protected].

13. Third-Party Services

Our Services may integrate with or link to third-party services. These third parties have their own privacy policies:

AI providers: OpenAI, Google Cloud, Baidu AI Cloud, iFlytek, etc. (selected and configured by you).
Payment platforms: Apple App Store, Google Play Store, Stripe.
Analytics services: Anonymous usage statistics and crash reporting services.

We recommend reading these third parties' privacy policies. We are not responsible for their data processing practices.

14. Policy Changes

We may update this Privacy Policy from time to time. For significant changes, we will notify you by:

Sending an in-app notification.
Sending a notification to your registered email address.
Updating the policy content and date on this page.

We recommend checking this page periodically for the latest privacy protections. Continued use of the Service after changes take effect constitutes acceptance of the updated policy.

15. Contact Us

If you have any questions, comments or requests about this Privacy Policy, please contact us:

Data protection contact email:[email protected]
General inquiries:[email protected]
Official website:https://spokentype.com

For data protection inquiries from EU/EEA users, we will prioritize responses via [email protected].