← Home

Privacy & Security

Last updated: April 2026

What we store

  • Your email address (for authentication and notifications)
  • Account balance and transaction history (for billing)
  • Transcription text, summaries, and action points (until you delete them)
  • Job metadata: timestamps, costs, and status

Audio files

Your audio files are not stored on our servers. They are streamed directly to AssemblyAI for transcription. Once processing is complete, the audio is not retained by us. AssemblyAI deletes audio data after processing in accordance with their data processing agreement.

Third-party processors

AssemblyAI (speech-to-text)

Processes your audio into text. Audio data is deleted after processing and is not used to train their models. See their Data Processing Addendum.

OpenAI via Vercel AI Gateway (summarisation)

Your transcript text (not audio) is sent to OpenAI's gpt-4o-mini model through the Vercel AI Gateway to generate summaries and action points. Data sent through the API is not used to train OpenAI's models per their API data usage policy.

Paystack (payments)

Handles payment processing. Card details are stored on Paystack's PCI DSS-compliant infrastructure. We only store transaction reference IDs and amounts — never card numbers or CVVs.

Neon (database hosting)

Your data is stored in a Neon Postgres database with encryption at rest and in transit (TLS).

Cookies

We use a single session cookie (better-auth.session_token) for authentication. We do not use tracking cookies, analytics cookies, or third-party advertising cookies.

Your rights

  • Delete transcriptions: You can delete any transcription from your job detail page. The transcript text, summary, and action points are permanently removed. Billing records (cost, timestamps) are retained for accounting purposes.
  • Delete your account: You can delete your entire account from the Settings page. This permanently removes all your data including transcriptions, transaction history, and your email address.
  • Data portability: Contact us to request an export of your data.

POPIA & GDPR

We process your personal data on the basis of contract performance — you initiate each transcription and top-up voluntarily. You may exercise your right to erasure at any time by deleting your transcriptions or your account.

Contact

For privacy-related questions, email privacy@transcribe-it.co.za.