POLICY · CURRENT REVISION

Privacy, on tape.

What we record, where it lives, and how to wipe it.

// summary · key facts
  • We record audio you choose to upload, transcribe it with Google Gemini or Xiaomi Mimo, and may use xAI for timestamp alignment or live Grok speech-to-text when those features are enabled.
  • Audio + transcripts live on Cloudflare R2 in our account; you can delete them at any time.
  • We don't sell or share your data, and we don't train AI on it.
  • We use Stripe for payments and Google or GitHub for sign-in — full list below.
  • Questions: privacy@recordmeet.ing.
// contents
  1. 01Who we are
  2. 02Scope
  3. 03Data we collect
  4. 04How we use it
  5. 05Microphone & audio capture
  6. 06AI & transcription disclosure
  7. 07Sub-processors
  8. 08International transfers
  9. 09Storage, security & retention
  10. 10Deletion & your rights
  11. 11Children
  12. 12Cookies & local storage
  13. 13Changes to this policy
  14. 14Contact
§01

Who we are

Recappi is operated by Yinan Long as an individual sole operator. Service domain: recordmeet.ing. We act as the data controller for the data described in this policy.

Contact for any privacy matter: privacy@recordmeet.ing.

§02

Scope

This policy covers:

  • The Recappi web application at recordmeet.ing.
  • The companion macOS app.
  • The Recappi Windows Store app.
  • The @recappi/sdk audio-capture SDK as bundled into our apps.

It does not cover third parties you choose to interact with through our service (for example, Stripe's hosted billing portal, which is governed by Stripe's own privacy policy).

§03

Data we collect

We collect the following categories of personal data.

// account data

OAuth claims returned by Google or GitHub when you sign in: stable user id, email address, display name, and avatar URL. Captured via Better Auth on first sign-in.

// audio recordings

16-bit PCM WAV files you upload via the app or the SDK. Sample rate and channel count are read from the WAV header. We also store recording size, creation timestamp, and any title you assign. We do not automatically capture ambient audio at any time — see §05 below.

// transcripts & metadata

Text returned by Google Gemini or Xiaomi Mimo, detected language, timestamped segments, optional xAI word timing used to align those segments, and total duration in milliseconds. Stored in Cloudflare D1.

// usage & billing

Current plan tier, storage used (bytes), transcribed minutes, and the period start / end. Paid plans additionally store a Stripe customer id and subscription id. We never see or store your payment-card details; those go directly to Stripe.

// operational logs

Cloudflare-side request logs (IP address, User-Agent, request timestamp, request path) used for security and debugging. Retained per Cloudflare's defaults (~7 days). No business-side analytics SDK is loaded.

§04

How we use it

Each category is used only for the purpose stated below, and only on the lawful basis stated below (GDPR Art. 6).

CategoryPurposeLawful basis
Account dataAuthenticate you; identify your dataArt. 6(1)(b) contract; Art. 6(1)(f) legitimate interest
Audio recordingsStore and transcribe at your requestArt. 6(1)(b) contract
TranscriptsReturn to you; support search and replayArt. 6(1)(b) contract
Usage & billingEnforce plan quotas; charge subscriptionsArt. 6(1)(b) contract; Art. 6(1)(c) legal obligation (tax)
Operational logsSecurity, abuse prevention, incident debuggingArt. 6(1)(f) legitimate interest
§05

Microphone & audio capture

Our desktop apps use the operating system's microphone capability only while you have actively pressed Record. There is no background listening, no wake-word, and no auto-launch capture.

The capture SDK produces a single 16-bit PCM WAV file per recording session, held locally on your device until you upload it.

Local file behaviour: on the Windows Store app, the local WAV file is kept on disk indefinitely after upload — you can delete it manually from your file system at any time. We do not read, modify, or remove those local files after upload.

We do not stream audio to a server during recording; the upload happens after you stop the recording.

§06

AI & transcription disclosure

When you ask us to transcribe a recording, we send it to the selected primary provider: Google's paid Gemini API at generativelanguage.googleapis.com or Xiaomi's MiMo API at token-plan-sgp.xiaomimimo.com.

When xAI timing alignment or live Grok speech-to-text is configured, we also send the relevant audio to xAI's API to request word-level timestamps or streaming transcript events. The batch timing pass is optional and non-fatal: if it is unavailable, Recappi keeps the primary-provider transcript and uses its own timestamps.

  • Per Google's Gemini API terms for paid use, Google does not use your inputs to train models.
  • xAI states that API inputs and outputs are not used for training without explicit permission. Recappi does not grant that permission.
  • xAI's standard API retention is 30 days for abuse and misuse auditing unless a stricter enterprise data-retention setting is enabled for the account.
  • Files uploaded to Gemini's Files API are retained by Google for up to 48 hours, after which Google deletes them.
  • We send only the audio and service prompts needed to produce the transcript, live transcript, or word timing. We do not include your account email, account id, or any other identifying metadata in requests to Google, Xiaomi, or xAI.
  • We do not generate voiceprints or perform speaker identification across recordings. Speaker labels (for example, "Speaker 1," "Speaker 2") are inferred per recording by the model and are not linked across recordings or users.
§07

Sub-processors

We share the data described above only with the third-party processors listed here, and only for the purposes stated.

VendorRoleRegionTransfer
Cloudflare, Inc.DPF certifiedApp hosting (Workers), object storage (R2), database (D1), edge cachingGlobal edge networkEU-US Data Privacy Framework + Standard Contractual Clauses
Google LLC (Gemini API)DPF certifiedAudio transcriptionUS / global Google data centresDPF + SCCs
Xiaomi (MiMo API)Optional audio transcription when selectedSingapore / global Xiaomi infrastructureXiaomi privacy terms and applicable transfer safeguards
X.AI LLC (xAI API)Optional word-level timing alignment and live Grok speech-to-textUS / global xAI infrastructureStandard Contractual Clauses via xAI DPA
Google LLC (OAuth sign-in)DPF certifiedSign-in via Google accountUSDPF
GitHub, Inc.DPF certifiedSign-in via GitHub accountUSDPF (Microsoft-owned)
Stripe, Inc.DPF certifiedPayment processing for paid plansUSDPF + SCCs

We will update this list before adding any new sub-processor that handles personal data.

§08

International transfers

If you are located outside the United States, the data you submit to Recappi will be transferred to and processed in the United States and other countries where our sub-processors operate.

We rely on the EU-US Data Privacy Framework (and the UK and Swiss extensions) where the recipient is certified, and on the European Commission's Standard Contractual Clauses (2021) otherwise. Each vendor named in §07 maintains its own certifications, linked from the table.

§09

Storage, security & retention

  • In transit: all data is transmitted over HTTPS with TLS 1.2 or higher.
  • At rest: Cloudflare R2 and D1 encrypt data at rest by default.
DataRetention
Audio recordingsUntil you delete them; immediate hard delete on action
TranscriptsUntil you delete the parent recording (or the transcript itself)
Operational logs~7 days (Cloudflare default)
Billing records (Stripe references, invoices)7 years (tax / legal-obligation retention)
Account recordUntil you request deletion
§10

Deletion & your rights

Recording deletion is immediate and hard. When you click Delete on a recording, the R2 object and all related D1 rows are removed in the same request. There is no recoverable trash.

Account deletion is by email request to privacy@recordmeet.ing. We process within 30 days. On account deletion, we hard-delete all your recordings, transcripts, jobs, usage records, and account record. We retain billing records (Stripe references and invoice metadata) for 7 years where required by tax law.

// GDPR rights (EU / UK / EEA residents)

You have the rights of access, rectification, erasure, portability, restriction, objection, and to withdraw consent at any time. You also have the right to lodge a complaint with your supervisory authority.

// CCPA / CPRA rights (California residents)

You have the right to know, delete, correct, limit use of sensitive personal information, opt out of sale or sharing, and the right to non-discrimination. We do not sell or share Personal Information as those terms are defined under the CCPA, and we have not done so in the prior 12 months.

To exercise any right, email privacy@recordmeet.ing. We respond within 30 days (GDPR) or 45 days (CCPA).

§11

Children

Recappi is not directed to children under 16 (the GDPR-K threshold). We do not knowingly collect personal information from children under 16. If we learn that we have, we will delete it. Parents or guardians may contact privacy@recordmeet.ing.

§12

Cookies & local storage

We use only essential cookies for authenticated sessions — the Better Auth session cookie. We do not load analytics, advertising, or third-party tracking cookies. Browser local storage is used only for client-side state needed by the app (for example, the last-viewed recording).

§13

Changes to this policy

We bump the revision number in the page header and post the diff at the bottom of the page when we make changes. For changes that materially affect your rights, we will email registered users at the address on file.

§14

Contact

For any privacy request — questions, deletion, access, or complaints — email privacy@recordmeet.ing. We will respond as fast as we reasonably can.

Recappi// rev.0001 · 2026-05-05