Privacy Policy
Last updated: April 18, 2026
VoiceClip ("we", "our") is a Chrome extension that transcribes voice messages in LinkedIn on behalf of its user. This policy explains what data we touch, where it goes, and how we protect it.
What we collect
- Email address — only when you join the waitlist or sign up for a Pro account.
- Audio data — voice notes you explicitly choose to transcribe by clicking the "Transcribe" button in your browser. We do not intercept audio passively.
- Usage metadata — number of transcriptions performed, timestamps, and plan tier. Used only for billing and rate-limit enforcement.
- CRM tokens — if you opt in to HubSpot / Pipedrive / Salesforce integration, we store an encrypted OAuth token needed to push transcripts on your behalf. Tokens are encrypted at rest and never shared.
What we do NOT collect
- LinkedIn login credentials. The extension runs inside your authenticated browser session; we never see your password.
- Your LinkedIn message history beyond the specific voice note you transcribe.
- Any audio you did not explicitly click to transcribe.
- IP address for tracking (only logged for rate limiting, discarded after 24 hours).
How audio is processed
When you click "Transcribe", the audio blob is sent over HTTPS to OpenAI's Whisper API for transcription. We keep the file in memory only long enough to receive the transcript, then we discard it. Audio is never written to disk on our servers, never used for training, and never retained beyond the API call.
OpenAI's data handling is governed by their API Data Usage Policy, which states that data sent to the API is not used to train models.
Third-party services we use
- Vercel — hosting for the landing page and API endpoints.
- Supabase — database for user accounts and billing metadata (EU region).
- OpenAI — transcription via the Whisper API.
- Stripe / Paddle — payment processing.
- Web3Forms — waitlist email capture (pre-launch only).
- Resend — transactional emails (account confirmation, receipts).
Each of these is a GDPR-compliant processor with a Data Processing Agreement in place.
Your rights
Under GDPR, LGPD, and CCPA you have the right to:
- Access the data we hold about you
- Request deletion ("right to be forgotten")
- Export your data in a portable format
- Opt out of any future marketing emails
- Revoke any CRM integration at any time
To exercise any of these rights, email privacy@voiceclip.app. We respond within 7 days.
Security
- HTTPS/TLS 1.3 for all data in transit.
- AES-256 at rest (Supabase).
- No passwords stored (passwordless magic link auth).
- Principle of least privilege on all infra.
- Security reports welcome via security.txt.
Cookies
We use exactly zero cookies on the marketing site. Inside the authenticated dashboard, we use one cookie for session management (strictly necessary, no tracking).
Children
VoiceClip is B2B and not intended for anyone under 18. We do not knowingly collect data from minors.
Changes
We will notify users by email before any material change. The "Last updated" date at the top is authoritative.