Privacy Policy

This policy explains how IIH Notetaker handles information when you use the app to join meetings, record calls, generate transcripts, and create AI meeting summaries.

Information We Collect

Account information from Google sign-in, such as your name, email address, and profile details provided during authentication.
Meeting information you submit or sync, including meeting titles, meeting links, platform details, scheduled times, participants, and meeting status.
Meeting content generated through the service, including recordings, transcripts, summaries, decisions, action items, speaker labels, and related metadata.
Usage and technical data, such as browser type, device details, IP address, authentication tokens, error logs, and service activity needed to operate and secure the application.
Settings and preferences, including notification choices, transcription language, calendar automation, and AI summary configuration.

How We Use Information

To authenticate users and provide access to meeting notes, transcripts, recordings, and summaries.
To allow the meeting bot to join supported calls, record meeting audio or video where enabled, generate transcripts, and create AI-powered summaries.
To organize meeting history, search results, speaker labels, action items, notifications, and user preferences.
To troubleshoot, secure, maintain, and improve the service and prevent unauthorized access or misuse.
To comply with legal obligations, enforce applicable terms, and respond to valid requests from users or administrators.

Google API Data and Limited Use

IIH Notetaker's use and transfer of information received from Google APIs follows the Google API Services User Data Policy, including the Limited Use requirements.
Google account information is used to authenticate users and connect them to the correct IIH Notetaker account.
Calendar event information, when enabled, is used only to identify meetings selected for recording, transcription, summaries, and related meeting automation.
Calendar data accessed via calendar.readonly is used exclusively to identify meetings the user has selected for recording. It is never used for advertising, profiling, or any secondary purpose.
We do not sell Google user data, use it for advertising, or use it to train general-purpose AI models.

Meeting Recording and Consent

The service may record meeting audio or video when a bot is admitted to a meeting and recording is started.
You are responsible for notifying participants and obtaining any consent required by your organization, meeting platform, or applicable law before recording or transcribing a meeting.
The bot appears as a participant when it joins a call. If a host denies entry or recording is stopped, transcription may not be generated.

Sharing and Third-Party Services

We do not sell your meeting content.
We may process information through trusted providers that support authentication, calendar access, meeting platforms, recording, transcription, AI summaries, hosting, storage, and analytics.
Supported meeting and identity services may include Google, Microsoft Teams, Zoom, Jitsi, Recall.ai, and configured AI providers such as OpenAI.
Administrators or authorized users in your organization may be able to access meeting records depending on how the application is configured.

Data Retention and Deletion

Meeting records, recordings, transcripts, summaries, and settings are kept for as long as needed to provide the service or as configured by your organization.
Users may delete meeting data through available product controls. Some records may remain temporarily in backups, logs, or audit systems where required for security or legal reasons.
If you need deletion or export beyond in-product controls, contact your organization administrator or support contact.

Security

We use authentication, access controls, transport security, and operational safeguards designed to protect account and meeting data.
No internet service can guarantee complete security. Keep your account credentials private and report suspected unauthorized access promptly.

Your Choices

You can control notification, transcription, summary, and calendar automation settings from the Settings page.
You can stop active recordings where the product provides that control.
You can sign out to clear local authentication state from the browser.
You can revoke IIH Notetaker's access to your Google account at any time by visiting https://myaccount.google.com/permissions and removing the app.

Changes to This Policy

We may update this Privacy Policy when the product, providers, or legal requirements change.
The latest version will be posted on this page with the updated effective date.

Contact

For privacy, data deletion, or access requests, contact us at [email protected].

This Privacy Policy is publicly available before sign-in and should match the Privacy Policy URL configured on the Google OAuth consent screen.