FeaturesPricingFAQ
Get started

Privacy Policy

Last updated: January 2025

The core principle

Your audio never leaves your device. Whispr.live runs transcription and translation entirely on your computer. No audio, no transcript, and no translation is ever uploaded to our servers or to any third party.

1. What we collect

Account. Your name, email, and password (hashed via Supabase Auth). If you sign in with Google, we receive your name and email from Google.

Subscription. Payment data is handled by Stripe — we never see card details. We store the Stripe customer ID, your plan, and subscription status.

Devices. A SHA-256 hash of your hardware (CPU + disk) for device limits. The hash cannot be reversed.

Usage (Pro plan). A heartbeat every minute of active use to count monthly hours. Contains only user_id, device_id, and timestamp.

2. What we never collect

  • Audio captured by the app
  • Generated transcripts
  • Generated translations
  • Meeting or call content
  • Open windows or apps
  • Your location
  • System usage behavior

3. Sharing

We never sell data. We share with: Supabase (database and auth) and Stripe (payment processing). Both meet GDPR and similar standards.

4. Your rights

You can access, correct, export, or delete your data anytime. Email privacy@whispr.live.

5. Security

HTTPS in transit. Encrypted at rest. Row-level security in our database. Tokens stored as hashes, never raw.