Privacy Policy

1. Information We Collect

1.1 Voice and Audio Data

We collect and process:

• Voice Input: Audio recordings during practice sessions for conversation simulation
• Speech Patterns: Voice characteristics for personalized AI response generation (future feature)
• Conversation Content: Spoken words and phrases during practice sessions
• Audio Quality Data: Technical audio metrics for improving call simulation quality

Important: Voice data is processed securely and can be deleted at your request. We do not use your voice for purposes beyond improving your practice experience.

1.2 AI Training and Conversation Data

To provide intelligent conversation practice, we collect:

• Practice Session Transcripts: Text versions of your practice conversations
• Response Patterns: How you respond to different conversation scenarios
• Performance Analytics: Conversation success metrics, improvement tracking
• Interaction Data: How you use different features and practice modes
• Custom Scenario Content: Scripts and scenarios you create for personal practice

1.3 User-Generated Content

When you create custom practice scenarios:

• Scenario Scripts: Conversation scripts and dialogue you write
• Practice Goals: Objectives and outcomes you set for sessions
• Personal Context: Background information for realistic simulations
• Feedback Notes: Your self-assessments and practice reflections

1.4 Account and Contact Information

• Email Address: For account creation, early access notifications, and support
• Profile Information: Name, practice preferences, and professional context
• Device Information: Device type, OS version, app version for compatibility
• Usage Patterns: Session frequency, duration, and feature usage

1.5 Professional Practice Data

For career and professional development features:

• Industry Information: Professional context for relevant practice scenarios
• Skill Assessment Data: Communication strengths and improvement areas
• Practice History: Past sessions, progress tracking, achievement records
• Goal Setting: Professional objectives and practice targets

2. How We Use Your Information

2.1 Core Conversation Simulation

• Realistic Practice: Voice and conversation data to create authentic practice experiences
• AI Response Generation: Process your input to generate appropriate conversational responses
• Scenario Customization: Tailor practice sessions to your specific needs and goals
• Progress Tracking: Monitor improvement and provide personalized feedback

2.2 AI Enhancement (Future Features)

• Machine Learning: Improve conversation AI using anonymized interaction data
• Speech Recognition: Enhance voice processing accuracy and responsiveness
• Personalization: Adapt AI responses to your communication style and preferences
• Content Generation: Create new practice scenarios based on usage patterns

2.3 User Support and Communication

• Technical Support: Resolve app issues and improve user experience
• Feature Updates: Notify users of new practice scenarios and capabilities
• Educational Content: Share communication tips and best practices
• Community Building: Connect users with similar practice goals (with consent)

2.4 Research and Development

• Product Improvement: Use anonymized data to enhance app features
• Academic Research: Contribute to communication and AI research (anonymized)
• Industry Insights: Understand conversation practice needs across professions
• Technology Advancement: Improve voice AI and conversation simulation technology

3. Voice Data Security and Processing

3.1 Voice Data Handling

• Local Processing: Voice processing occurs on-device when possible
• Encrypted Transmission: All voice data transmitted using end-to-end encryption
• Temporary Storage: Voice recordings stored temporarily only for session processing
• Secure Deletion: Voice data automatically deleted after processing unless explicitly saved

3.2 Biometric Data Protection

Voice patterns may constitute biometric data under some laws:

• Consent Required: Explicit consent obtained for voice pattern analysis
• Limited Retention: Biometric voice data retained only as long as necessary
• Secure Storage: Advanced encryption for any stored voice characteristics
• User Control: Delete voice patterns and biometric data at any time

3.3 AI Training Data Protection

• Anonymization: Personal identifiers removed before AI training
• Opt-Out Available: Choose whether your data contributes to AI improvement
• Data Minimization: Only necessary data used for AI training purposes
• Purpose Limitation: AI training data used solely for improving Speakeasy

4. Data Sharing and Third-Party Services

4.1 No Sale of Voice Data

We never sell, rent, or trade your voice data or conversation content to third parties for any purpose.

4.2 Limited Third-Party Integration

We may share anonymized, non-voice data with:

• AI Service Providers: Cloud AI services for conversation processing (anonymized)
• Analytics Services: Usage analytics providers (no personal voice data)
• Technical Infrastructure: Secure cloud hosting and data processing services
• Research Partners: Academic institutions for communication research (anonymized)

4.3 Professional Service Integration

With explicit consent, we may integrate with:

• Career Platforms: LinkedIn, job boards for practice scenario customization
• Educational Services: Learning management systems for institutional use
• Coaching Platforms: Professional development services (user-initiated)
• Calendar Services: Practice session scheduling and reminders

4.4 Legal Disclosure Requirements

We may disclose information when legally required:

• Valid legal processes (subpoenas, court orders)
• Protection of user safety or rights
• Prevention of fraud or illegal activity
• Compliance with applicable laws and regulations

5. Your Privacy Rights and Controls

5.1 Voice Data Rights

• Access: Request copies of your stored voice data and transcripts
• Deletion: Delete all voice recordings and derived data immediately
• Portability: Export your practice data in machine-readable formats
• Opt-Out: Exclude your voice data from AI training and research

5.2 AI Training Controls

• Training Participation: Choose whether your data improves AI models
• Personalization Settings: Control how AI adapts to your communication style
• Data Minimization: Limit data collection to essential functionality only
• Research Participation: Opt in/out of anonymized research studies

5.3 GDPR Rights (EU Users)

• Lawful Basis: Processing based on legitimate interests and explicit consent
• Right to Object: Object to voice data processing for specific purposes
• Data Protection Impact: Access assessments for high-risk processing
• Supervisory Authority: File complaints with data protection authorities

5.4 CCPA Rights (California Users)

• Categories Disclosure: Information about voice and conversation data categories
• Source Information: Details about how we obtain your data
• Business Purpose: Clear explanation of why we process voice data
• Third-Party Sharing: Full disclosure of any data sharing practices

5.5 Exercising Your Rights

Contact us at synclively@gmail.com to:

• Request access to or deletion of your voice data
• Modify AI training participation settings
• Update privacy preferences and consent
• Report privacy concerns or violations

6. Children's Privacy and Safety

6.1 Age Verification and Consent

• Age Confirmation: Users must confirm they are 13+ during registration
• Parental Consent: Required for users under 16 in EU, varies by jurisdiction
• Restricted Features: Limited functionality for users under digital consent age
• Enhanced Protection: Additional voice data protections for younger users

6.2 Child Voice Data Safeguards

• No AI Training: Child voice data never used for AI training purposes
• Immediate Deletion: Voice recordings deleted immediately after session
• Parental Access: Parents can access and delete child's data
• Limited Sharing: Stricter limits on any data sharing for minors

6.3 Educational Use Protections

For educational institutions using Speakeasy:

• FERPA Compliance: Educational privacy law compliance
• Institutional Oversight: School administrator controls and monitoring
• Limited Data Use: Data used only for educational practice purposes
• Parent Notification: Parents informed of educational voice data use

7. Data Retention and Deletion

7.1 Voice Data Retention

• Practice Sessions: Voice recordings deleted within 24 hours unless saved
• Saved Practices: User-saved sessions retained until deletion request
• Processing Data: Temporary voice data for AI processing (seconds/minutes)
• Transcripts: Text versions retained for progress tracking (user choice)

7.2 Other Data Retention

• Account Data: Retained while account is active plus 90 days
• Custom Scenarios: Retained until user deletion or account closure
• Analytics Data: Anonymized usage data retained for 2 years maximum
• Support Data: Support interactions retained for 1 year

7.3 Automated Deletion

• Scheduled Cleanup: Automatic deletion of temporary voice data
• Inactive Accounts: Data deletion after 2 years of inactivity
• Legal Compliance: Deletion schedules comply with applicable laws
• User Notification: Advance notice before automated deletion

7.4 Secure Deletion Process

• Multi-Pass Deletion: Voice data overwritten multiple times
• Verification: Deletion completion verified and logged
• Backup Removal: Data removed from all backup systems
• Third-Party Notification: Partners notified of deletion requirements

8. AI and Machine Learning Transparency

8.1 Current AI Usage

Speakeasy currently uses basic AI for:

• Speech Recognition: Converting voice to text for interaction
• Response Generation: Creating contextually appropriate replies
• Scenario Matching: Selecting relevant practice situations
• Progress Analysis: Tracking communication improvement

8.2 Local AI Processing

Speakeasy utilizes on-device AI models for enhanced privacy:

• Local Inference: AI models (including Qwen and similar) run locally on your device
• No Cloud Processing: Conversation processing occurs entirely on your device when possible
• Model Limitations: Local AI models may have accuracy and capability limitations
• Privacy Benefits: On-device processing ensures your conversations remain private

8.3 Planned AI Enhancements

Future AI features will include:

• Advanced Conversation AI: More realistic and dynamic conversations
• Voice Synthesis: Generating realistic conversation partner voices
• Emotional Recognition: Understanding tone and emotional context
• Personalized Coaching: AI-driven communication improvement recommendations
• Apple Foundation Models: Integration with Apple's on-device AI models when available

8.4 AI Decision-Making

• Human Oversight: Critical decisions reviewed by human staff
• Bias Prevention: Regular testing for AI bias and discrimination
• Transparency Reports: Regular disclosure of AI system performance
• User Control: Ability to request human review of AI decisions

8.5 AI Ethics Commitment

• Responsible AI: Commitment to ethical AI development and deployment
• Privacy by Design: AI systems built with privacy as core principle
• User Agency: Users retain control over AI interactions and data use
• Continuous Monitoring: Ongoing assessment of AI impact and ethics

9. Professional Use and Limitations

9.1 Professional Practice Context

• Simulation Only: Practice scenarios are simulations, not real professional advice
• Educational Purpose: Designed for skill building and confidence development
• No Guarantees: Cannot guarantee real-world conversation outcomes
• Professional Judgment: Users should apply professional judgment in real situations

9.2 Data Usage in Professional Context

• Confidentiality: Practice content treated as confidential information
• No Professional Disclosure: Practice data not shared with employers/colleagues
• User Control: Users control what professional information is included
• Ethical Boundaries: Respect for professional codes of conduct

9.3 Healthcare and Sensitive Conversations

• Not Medical Advice: Healthcare conversation practice is educational only
• HIPAA Awareness: Users responsible for healthcare privacy compliance
• Sensitive Content: Special handling for mental health and medical scenarios
• Professional Resources: Guidance toward appropriate professional resources

10. International Use and Compliance

10.1 Cross-Border Data Processing

• Data Location: Voice and conversation data may be processed internationally
• Adequate Protection: Appropriate safeguards for international transfers
• Local Law Compliance: Compliance with local data protection laws
• Transfer Mechanisms: Standard contractual clauses and adequacy decisions

10.2 Regional Privacy Laws

• EU/UK GDPR: Full compliance with European data protection standards
• Canadian PIPEDA: Compliance with Canadian privacy legislation
• Australian Privacy Act: Compliance with Australian privacy principles
• Local Regulations: Adherence to applicable local privacy laws

10.3 Voice Data Sovereignty

• Local Storage Options: Voice data storage in user's jurisdiction when possible
• Government Access: Transparent policies on government data requests
• Surveillance Protection: Measures to protect against unauthorized access
• User Choice: Options to limit international data processing

11. Security Measures and Breach Response

11.1 Voice Data Security

• End-to-End Encryption: Voice data encrypted during transmission and storage
• Access Controls: Strict employee access limitations to voice data
• Secure Infrastructure: Industry-standard security measures for voice processing
• Regular Audits: Periodic security assessments and penetration testing

11.2 AI System Security

• Model Protection: AI models secured against unauthorized access
• Training Data Security: Secure handling of data used for AI training
• Adversarial Protection: Measures against AI manipulation attacks
• Version Control: Secure versioning and deployment of AI models

11.3 Incident Response

• Breach Detection: Automated monitoring for security incidents
• Rapid Response: Immediate action to contain and assess breaches
• User Notification: Prompt notification of affected users
• Regulatory Reporting: Compliance with breach notification requirements

11.4 Business Continuity

• Data Backup: Secure backup systems for data protection
• Disaster Recovery: Plans for service continuity during incidents
• Vendor Management: Security requirements for third-party services
• Insurance Coverage: Cyber liability insurance for additional protection

12. User Safety and AI Ethics

12.1 AI Response Reporting

Help us maintain safe and appropriate AI interactions:

• Inappropriate Responses: Report AI responses that are harmful, biased, or inappropriate
• AI Ethics Contact: synclively@gmail.com
• Response Time: AI ethics reports addressed within 48 hours
• Investigation Process: All reports thoroughly reviewed and addressed
• Model Improvement: Reports used to improve AI safety and appropriateness

12.2 Voice Data Concerns

Report any concerns about voice data handling or privacy:

• Voice Privacy: synclively@gmail.com
• Biometric Data Issues: Report concerns about voice biometric processing
• Unauthorized Access: Report any suspected unauthorized access to voice data
• Data Deletion: Request immediate deletion of all voice-related data
• Response Time: Voice privacy concerns addressed within 24 hours

12.3 Professional Use Concerns

Report misuse of professional practice features:

• Inappropriate Professional Scenarios: Report concerning practice content
• AI Medical Advice: Report if AI provides inappropriate medical/legal advice
• Professional Ethics: Report violations of professional practice standards
• Contact: synclively@gmail.com for professional concerns

12.4 Emergency and Crisis Situations

Speakeasy is not designed for crisis intervention:

• Mental Health Crisis: Contact mental health professionals or crisis hotlines
• Medical Emergency: Call emergency services (911) immediately
• Not a Replacement: Speakeasy cannot replace professional therapy or counseling
• Resource Links: We provide links to appropriate professional resources

13. Policy Updates and Communication

13.1 Policy Changes

• Notification Method: Email notification and in-app alerts for material changes
• Advance Notice: 30 days' notice for significant policy changes
• User Choice: Option to object to changes or delete account
• Change Log: Detailed log of policy modifications maintained

13.2 AI Feature Updates

• New AI Features: Separate notification for new AI capabilities
• Consent Requirements: Explicit consent for enhanced AI processing
• Opt-In Only: Advanced AI features require user opt-in
• Impact Assessment: Privacy impact assessment for significant AI changes

13.3 Regulatory Updates

• Law Changes: Updates to reflect new privacy and AI regulations
• Compliance Monitoring: Ongoing monitoring of regulatory developments
• Proactive Updates: Policy updates in advance of regulatory changes
• Legal Review: Regular legal review of privacy practices

14. Compliance Certifications and Standards

Speakeasy privacy practices comply with:

• GDPR: European Union General Data Protection Regulation
• CCPA/CPRA: California Consumer Privacy Act and amendments
• COPPA: Children's Online Privacy Protection Act
• FERPA: Family Educational Rights and Privacy Act (educational use)
• SOC 2: Security, availability, and confidentiality controls
• ISO 27001: Information security management standards
• NIST Framework: National Institute of Standards cybersecurity framework