Privacy Policy

Overview

Speaker Map is designed with privacy in mind. All audio and video processing happens locally on your hardware. We collect only the minimum data necessary to manage your account and license.

Data We Collect

Account Information

• Email address
• Name
• Company name (optional)
• Hashed password (bcrypt — we never store plaintext passwords)

License Data

• License keys assigned to your account
• Hardware fingerprints of activated machines (one-way hash of hostname, MAC address, architecture, and CPU)
• Activation and validation timestamps
• Software version numbers

Payment Data

• Payment transactions are processed by Stripe
• We store invoice references and payment status — not card numbers or banking details
• Stripe receipt and invoice URLs are stored for your access

Usage Data

• IP addresses (for login security and rate limiting)
• Login timestamps and session data
• Audit log entries (account changes, license operations)

Data We Do NOT Collect

• Audio or video files you process
• Transcription content or results
• File names or metadata of processed files
• Usage patterns or analytics from the desktop software

All transcription processing is performed entirely on your local hardware. No media data is ever transmitted to our servers.

How We Use Your Data

• Account management and authentication
• License validation and activation tracking
• Payment processing and invoice generation
• Email notifications (2FA codes, purchase confirmations, support communications)
• Security monitoring and abuse prevention

Data Security

We implement appropriate security measures including:

• Passwords hashed with bcrypt (cost factor 12)
• Mandatory email-based two-factor authentication
• HTTPS encryption for all communications
• Rate limiting on authentication endpoints
• Server-side session management with automatic expiry
• Parameterized database queries (SQL injection prevention)

Data Retention

Account data is retained for as long as your account is active. If you request account deletion, we will remove your personal data within 30 days, retaining only anonymized transaction records as required for accounting purposes.

Third-Party Services

• Stripe: Payment processing — see Stripe's Privacy Policy
• Cloudflare: SSL and CDN services — see Cloudflare's Privacy Policy

Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and data
• Export your data in a machine-readable format

To exercise these rights, contact us at [email protected].

Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated date.

Contact

For privacy-related questions, contact us at [email protected].