voxmea
← Back

Privacy Policy

Last updated: May 12, 2026

1. Introduction

Voxmea ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered content rewriting platform at voxmea.app. Please read it carefully. If you disagree with any part of this policy, please discontinue use of the Service.

2. Information We Collect

2a. Information you provide directly

  • Account information: name and email address collected via Clerk authentication
  • Style profile data: questionnaire answers, writing samples, and tone preferences
  • Input content: YouTube URLs, pasted text, and uploaded audio/video files you submit for rewriting
  • Feedback signals: thumbs up/down, edits, and refinement instructions you provide on drafts
  • Billing information: handled directly by Stripe — we never see raw card numbers

2b. Information collected automatically

  • Usage events: rewrite counts, output formats selected, plan tier, quota consumption
  • Log data: IP address, browser type, pages visited, timestamps
  • Analytics: product interaction events via PostHog (anonymised where possible)
  • Error reports: stack traces and session context via Sentry

3. How We Use Your Information

  • To provide and operate the Service, including processing your rewrite requests
  • To personalize your writing voice by compiling your style profile into AI system prompts
  • To improve your style profile over time using your feedback signals (nightly refinement job)
  • To manage your subscription, quota, and billing history
  • To send transactional emails (account events, billing receipts) via Resend
  • To detect abuse, enforce our Terms of Service, and maintain security
  • To improve the Service through aggregated, anonymised analytics

We do not use your Input Content or Output Content to train AI foundation models. Your content is processed solely to deliver the Service to you.

4. Third-Party Services

We share data with the following third-party processors solely to provide the Service:

  • Clerk — authentication and user management
  • Supabase — database and file storage (hosted on AWS)
  • OpenAI / Anthropic / Groq — AI inference for rewriting and transcription. Input content is sent to these providers subject to their data processing agreements
  • Stripe — payment processing and subscription management
  • Inngest — background job orchestration
  • Resend — transactional email delivery
  • PostHog — product analytics
  • Sentry — error monitoring

We do not sell your personal data to third parties for advertising or marketing purposes.

5. Data Retention

We retain your account data and rewrite history for as long as your account is active. If you delete your account, we will delete or anonymise your personal data within 30 days, except where we are required by law to retain it (e.g., billing records for tax purposes, which we retain for 7 years). Uploaded audio and video files are deleted from storage after transcription is complete.

6. Cookies and Tracking

We use essential cookies to maintain your authenticated session via Clerk. We use PostHog for product analytics, which sets a persistent cookie to distinguish unique sessions. We do not use advertising or cross-site tracking cookies. You can block non-essential cookies in your browser settings; this may affect Service functionality.

7. Your Rights (GDPR / CCPA)

Depending on your location, you may have the following rights regarding your personal data:

  • Access: request a copy of the personal data we hold about you
  • Rectification: request correction of inaccurate data
  • Erasure: request deletion of your personal data ("right to be forgotten")
  • Portability: request your data in a structured, machine-readable format
  • Objection: object to processing based on legitimate interests
  • Restriction: request that we restrict processing in certain circumstances

To exercise any of these rights, email privacy@voxmea.app. We will respond within 30 days. For EU residents, you also have the right to lodge a complaint with your local data protection authority.

8. Data Security

We use industry-standard safeguards including TLS encryption in transit, encrypted storage at rest via Supabase, row-level security policies on all database tables, and scoped API keys. No method of transmission or storage is 100% secure. In the event of a data breach affecting your personal data we will notify you as required by applicable law.

9. Children's Privacy

Voxmea is not directed at children under the age of 13 (or 16 in the EU). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us at privacy@voxmea.app and we will delete it promptly.

10. International Transfers

Our infrastructure is primarily based in the United States. If you access the Service from outside the US, your data may be transferred to and processed in the US or other countries. Where required by law (e.g., GDPR), we rely on standard contractual clauses or other approved transfer mechanisms to protect your data.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by a notice within the Service at least 14 days before the changes take effect. The "Last updated" date at the top of this page reflects the most recent revision.

12. Contact

For privacy-related requests or questions, contact our privacy team at privacy@voxmea.app. For general legal inquiries, email legal@voxmea.app.