Your calls are private. We built CallRecap with security and privacy as the foundation — not an afterthought. Here's exactly how we protect your data.
Your data is yours
You own your recordings, transcriptions, and analyses. We never claim ownership of your content.
No AI training
Your audio and transcriptions are never used to train, fine-tune, or improve any AI model — ours or third-party.
Audio auto-deleted
Audio files are permanently deleted from our servers immediately after transcription. We don't keep copies.
Local-first storage
Recordings live on your phone. Our servers are only used temporarily for processing — then the audio is gone.
No card details
Payments are handled entirely by trusted third-party processors. We never see, store, or process your payment information.
No data selling
We do not sell, share, or monetize your personal data. Ever. Our business model is subscriptions, not your data.
How your audio is processed
When you make a call, here's exactly what happens to your audio — step by step:
1Call recorded locally — Audio is saved on your phone's internal storage. It never leaves your device automatically.
2Uploaded for processing — When online, the audio is uploaded to our secure servers via TLS 1.3 encryption for transcription.
3Transcribed by AI — The audio is sent to OpenAI's Whisper API for speech-to-text. OpenAI does not retain or train on this data per our agreement.
4Analyzed by AI — The text transcript is sent to OpenAI's GPT for summary, action items, and insights. The original audio is not used for analysis — only the text.
5Audio permanently deleted — Once transcription and analysis are confirmed complete, the audio file is automatically and permanently deleted from our servers. An audit trail is recorded.
6Results stored securely — Your transcription, summary, and action items are saved in your account, encrypted at rest with AES-256.
Your local audio file on your phone is never deleted by us — you have full control over it. If you connect Dropbox, Google Drive, or OneDrive, backups go to your personal account, not ours.
Encryption & Infrastructure
Data in transit
TLS 1.3
All connections between your device and our servers
Data at rest
AES-256
Database and storage encryption
Server location
European Union (Ireland)
AWS EU infrastructure via Supabase
Authentication
JWT + 2FA
Secure token-based auth with two-factor on admin systems
Payments
External processors
We never handle or store payment details
Access control
Row-Level Security
Every database query is scoped to the authenticated user
AI Providers & Data Usage
We use third-party AI services solely to process the tasks you request. These providers do not retain your data for training purposes.
Service
Provider
Data sent
Retention
Transcription
OpenAI
Audio file
Not retained by provider
Analysis & Summary
OpenAI
Text transcript only
Not retained by provider
Translation
OpenAI
Text transcript only
Not retained by provider
Our commitment: We will never use your content — recordings, transcriptions, or analyses — to train, fine-tune, or develop any AI model, whether our own or a third party's. Your data is processed solely to deliver the service you requested, and then it is either returned to you or deleted.
What we don't do
We don't sell your data to anyone
We don't use your recordings for AI training
We don't keep audio on our servers after processing
We don't access your contact list, calendar, or files
We don't show ads or share data with advertisers
We don't store your payment or credit card information
We don't upload your recordings without your knowledge
Data Retention
Data type
Where
How long
Audio recordings
Your phone (local)
You control — delete anytime
Audio on our servers
Supabase Storage
Deleted automatically after transcription
Transcriptions & analyses
Supabase Database
While your account is active
Account data
Supabase Auth
While your account is active
Anonymous analytics
Supabase Database
Indefinitely (no personal identifiers)
Cloud backups
Your Dropbox / Drive / OneDrive
You control — in your own account
When you delete your account, all personal data is permanently removed within 30 days. You can delete your account anytime from Settings in the app or by contacting us.
Your Rights
Regardless of where you live, you can:
Access all your data at any time through the app
Export your transcriptions and analyses
Delete individual recordings or your entire account
Request correction of your personal data
Contact us at any time with privacy questions
Questions?
If you have any questions about our security practices or how we handle your data, contact us: