← Back to Dictis

Privacy Policy

Effective: March 5, 2026

Dictis ("we", "our", "us") is a voice note-taking application operated by Mitja Eichhorn. This policy explains how we collect, use, and protect your information when you use our service at dictis.app and the Dictis mobile application.

1. Data We Collect

We collect the following categories of data:

• Account information: Email address, display name, and authentication credentials (password hash or OAuth provider tokens).
• Audio recordings: Voice recordings you create within the app, stored temporarily for transcription processing.
• Transcripts and notes: Text generated from your recordings, including summaries, key points, decisions, and action items.
• Usage data: Anonymous analytics to improve the app (can be disabled in Privacy settings).
• Device information: Push notification tokens for delivering notifications you have opted into.

2. How We Use Your Data

• To transcribe and process your voice recordings into structured notes.
• To provide AI-powered summaries, key points, and action item extraction.
• To sync your data across devices.
• To send notifications you have opted into (processing complete, action items detected).
• To process payments via Stripe when you subscribe to a paid plan.

3. Third-Party Services

We use the following third-party services to operate Dictis:

• Deepgram — Speech-to-text transcription. Audio is sent for processing and not retained by Deepgram after transcription.
• Anthropic (Claude AI) — AI analysis for summaries, key points, and action items. Text is sent for processing and not retained.
• Hetzner Cloud / S3-compatible storage — Encrypted storage for audio files and data exports.
• Stripe — Payment processing for subscriptions. We do not store credit card numbers; Stripe handles all payment data.
• Sentry — Error monitoring (no personal data is included in error reports).

4. Data Retention

• Audio files: Retained as long as you keep the "Retain audio" setting enabled. You can delete audio at any time from note settings.
• Transcripts and notes: Retained until you delete them or your account.
• Account data: Retained until you delete your account.
• Data exports: Available for download for 7 days, then automatically deleted from storage.

5. Your Rights

You have the right to:

• Export your data: Download a complete copy of all your data (Settings → Account → Export).
• Delete your data: Delete all notes and recordings while keeping your account (Settings → Privacy → Delete All Data).
• Delete your account: Permanently remove your account and all associated data (Settings → Account → Delete Account).
• Control processing: Disable AI processing, analytics, and contact detection individually in Privacy settings.

6. Data Security

All data is encrypted in transit (TLS 1.2+) and at rest. Authentication tokens are stored securely using platform-native secure storage (Keychain on iOS, Keystore on Android). Passwords are hashed using bcrypt with a cost factor of 12.

7. Children's Privacy

Dictis is not intended for use by children under 16. We do not knowingly collect personal information from children.

8. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes via the app or email.

9. Contact

For questions about this privacy policy or your data, contact us at hello@dictis.app.