Privacy Policy
Last updated: April 29, 2026
We built Scribeify around a simple idea: your files are yours. Most of our tools never send your data anywhere, and the parts that do are scoped to the minimum needed to deliver the result.
What we collect
For in-browser tools (compression, trimming, conversion, GIF, PDF extraction): nothing. The file stays in your browser, processed by WebAssembly, and is never uploaded. For account features (transcription, history): your email address and a Clerk-issued user ID. We store these so you can come back to your transcription results.
Sign in with Google
When you choose to sign in with Google, we receive your name, email address, profile picture, and Google account ID through our authentication provider Clerk. We use this information solely to create your Scribeify account and display your profile. We do not access any other Google services or data, and we never read, post, send, or modify anything in your Google account. You can revoke Scribeify's access to your Google account at any time at https://myaccount.google.com/permissions.
Cookies
We use a session cookie from Clerk to keep you signed in. We do not use third-party advertising or tracking cookies.
Where your data lives
User accounts: Neon Postgres in Singapore (AP-Southeast-1). Uploaded media (transcription only): Cloudflare R2. Task state and rate limits: Upstash Redis in Singapore. Uploaded media is auto-deleted within 24 hours of task completion.
Data retention
Account data (email, user ID, transcription history): retained for as long as your account is active. Uploaded media: deleted within 24 hours of task completion. Task state and rate-limit counters: expire automatically within 30 days. Server access logs: retained for up to 30 days for security and debugging, then deleted. If you delete your account, all associated personal data is removed within 30 days, except where retention is required by law (for example, financial records for tax purposes).
Third-party processors
Clerk (authentication), Neon (database), Upstash (cache and queue), Cloudflare (storage and CDN), OpenAI (Whisper transcription only). Each is governed by its own privacy policy.
How we share your data
We do not sell your personal information, and we do not share it for advertising or marketing purposes. We share data only with the third-party processors listed above (each contractually bound to process data on our behalf), or when required by law — for example, in response to a valid legal request from a competent authority. If we are ever involved in a merger, acquisition, or asset sale, we will notify users by email before any personal data is transferred and explain the choices available to you.
Your rights
You have the right to access, correct, export, or delete your personal data at any time. Email [email protected] and we will process your request within 7 days. If you are in the EU, UK, or another jurisdiction with similar laws, you also have the right to lodge a complaint with your local data protection authority.
Children's privacy
Scribeify is not directed to children under 13 years of age (or under 16 in jurisdictions where that is the minimum age of digital consent). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us at [email protected] and we will delete it.
Data breach notification
If we discover a data breach affecting your personal information, we will notify affected users by email within 72 hours of confirming the breach and, where required by applicable law, also notify the relevant data protection authorities.