Privacy policy
Last updated: June 9, 2026
This Privacy Policy explains how Vocci Inc. ("Vocci", "we", "us", or "our") collects, uses, shares, stores, and protects personal information when you use our website, mobile application, Vocci Ring and related connected devices, support channels, subscriptions, and other services that link to this Privacy Policy (collectively, the "Services").
Vocci is the controller of personal information processed under this Privacy Policy, unless we tell you otherwise. You can contact us about privacy matters at support@vocci.ai or by mail at Vocci Inc., 1825 S Grant St # 200, San Mateo, CA 94402, United States.
Vocci has designated Instant EU GDPR Representative Ltd as its EU Article 27 representative for EEA data-protection matters. EEA data subjects and supervisory authorities may contact the representative in addition to Vocci about GDPR matters using the contact details in Section 14.
Vocci has not appointed a Data Protection Officer at this time. Vocci will reassess whether a Data Protection Officer is required if its processing activities, legal obligations, or business model materially change.
1. Scope
This Privacy Policy applies to personal information we process through the Services. It does not apply to websites, apps, products, or services that we do not control, even if they link to or from our Services. Third parties process personal information under their own privacy policies when you use their services directly.
The Services are designed for adults and are not intended for children under 16. If you believe a child has provided personal information to us, please contact support@vocci.ai.
2. Personal Information We Collect
We collect personal information in the ways described below.
2.1 Information You Provide
Account and contact information. We collect information such as your name, email address, account identifiers, authentication information, and preferences when you create or manage an account.
Order, subscription, and payment-related information. If you purchase a product, place a pre-order, subscribe, request a refund, or otherwise transact with us, we process information needed to manage the order or subscription, such as contact information, shipping information, order details, subscription status, purchase history, and app-store or payment metadata. We do not receive your full payment card number when payment is handled by payment processors, app stores, or commerce platforms.
Recordings and user content. When you use Vocci app features or connected devices, you may choose to record, sync, submit, or generate audio recordings, transcripts, prompts, messages, notes, files, images, generated outputs, and other content. This content may include personal information about you or about other people if you choose to include it.
Support and communications. If you contact us for support, data rights, surveys, feedback, warranties, returns, or other inquiries, we collect information needed to respond, such as your contact details, message content, account or device identifiers, diagnostic information, request records, and attachments you choose to provide.
Marketing information. If you subscribe to our mailing list or otherwise ask to receive updates, we collect your email address and related communication preferences.
2.2 Information Collected Automatically
Device, app, and website information. We may collect device and app metadata, browser type, operating system, app version, device identifiers, session metadata, IP-derived general location, page or screen interactions, feature use, diagnostic events, and similar technical information.
Audio and device permissions. The app may request permissions such as microphone, Bluetooth, local device storage, notifications, or location permissions where needed for product functionality. For example, some operating systems require location permission to scan for nearby Bluetooth devices. When location permission is used for Bluetooth device discovery, we use it for that local device-discovery purpose and do not use it to track your precise location.
Cookies and similar technologies. Our website and online services may use strictly necessary cookies, local storage, and similar technologies to operate the site and Services. We use non-essential cookies, pixels, local storage, or similar technologies for analytics, marketing, advertising, or preference purposes only where permitted and, where required, after you have given prior informed consent through a cookie banner, preference center, or similar consent control. If a consent banner or preference control is not presented in a jurisdiction where consent is required, we do not intentionally place non-essential cookies or similar technologies in that context. You can manage cookie choices through our cookie controls where available and through your browser settings. For more information, see our Cookie Policy where posted.
2.3 Information From Third Parties
We may receive information from service providers, app stores, payment processors, commerce platforms, shipping providers, authentication providers, support providers, analytics providers, integration providers, and other parties that help operate the Services or that you choose to connect to the Services.
If you authorize an integration or connected service, we may receive account, authorization, file, message, or action-result information from that service as needed to perform the workflow you request.
2.4 Information About Other People
Your recordings, prompts, files, support messages, integrations, or generated outputs may include personal information about other people, including voices or statements of people who are not Vocci users. You are responsible for using the Services lawfully, including giving notice or obtaining permission before recording or submitting another person's information where required by law.
Please do not use Vocci to record people where recording is prohibited or where you do not have the right to do so.
3. How We Use Personal Information
We use personal information for the purposes below.
| Purpose | Examples | Legal basis for EEA/UK users |
|---|---|---|
| Provide and maintain the Services | Create accounts, authenticate users, connect devices, sync recordings, store user content, transcribe audio, generate AI-assisted outputs, personalize requested features, provide subscriptions, and deliver product functionality. | Contract performance; consent where required for optional permissions or features. |
| Process orders and subscriptions | Process product orders, shipping, returns, app-store subscriptions, entitlement checks, invoices, taxes, refunds, and customer billing support. | Contract performance; legal obligation for accounting, tax, and compliance records; legitimate interests for fraud prevention and customer support. |
| Provide AI-assisted and transcription features | Transcribe recordings, summarize content, answer user prompts, generate documents or other outputs, and retrieve relevant user-requested context. | Contract performance for requested features; consent where required for optional AI data sharing, recording permissions, or sensitive processing. |
| Support customers and handle privacy requests | Respond to support tickets, troubleshoot devices or app issues, verify identity, process access/deletion requests, maintain request records, and communicate with you. | Contract performance; legal obligation; legitimate interests in customer support, safety, security, and recordkeeping. |
| Improve, secure, and monitor the Services | Debug issues, monitor reliability, detect fraud or abuse, protect accounts, maintain audit logs, conduct security reviews, and improve user experience. | Legitimate interests in operating, securing, improving, and protecting the Services; legal obligation where applicable. |
| Communicate with you | Send service notices, product updates, security alerts, support responses, policy updates, and marketing communications where permitted. | Contract performance; legitimate interests for service communications; consent for marketing where required. |
| Manage cookies, analytics, and advertising choices | Operate the website, remember preferences, understand website and app usage, and support marketing or attribution where permitted. | Consent where required; legitimate interests for essential site operation, analytics, security, and service improvement where permitted. |
| Comply with law and protect rights | Comply with legal obligations, enforce terms, respond to lawful requests, protect rights and safety, and support transactions such as mergers or acquisitions. | Legal obligation; legitimate interests in legal compliance, claims, security, and business continuity. |
We may create aggregated or de-identified information that does not identify you and use it for analytics, research, reporting, service improvement, and business purposes.
4. Voice, AI, and Sensitive Content
Vocci offers features that may involve audio recordings, transcripts, prompts, files, and AI-assisted outputs. These features can process highly personal content depending on what you choose to record or submit.
We process recordings and related content to provide the features you request, such as syncing audio from your device, storing recordings in your account, creating transcripts, generating summaries, retrieving context, or producing other requested outputs.
We may use contracted transcription, AI, cloud, storage, and execution service providers to perform these features. Those providers are authorized to process personal information for the purposes of providing services to Vocci and are subject to contractual or service terms intended to protect personal information. We use recipient categories in this public policy rather than publishing a detailed vendor or architecture list.
Speaker labels. Some features distinguish and label different speakers within a recording, for example as "Speaker 1" or "Speaker 2", to help organize your transcripts and summaries. This separates voices within a recording; it does not create voiceprints, determine who a speaker is, or match voices to a known person across recordings, and it is not biometric identification. We do not use audio for biometric identification, to uniquely identify a person by their voice, or for automated decisions that produce legal or similarly significant effects. If we introduce voice-based identification, speaker recognition that identifies a known person, or other biometric features in the future, we will update this Privacy Policy and obtain any consent, or meet any other condition, required by applicable law before doing so.
Please do not submit sensitive personal information, such as health, biometric, political, religious, sexual orientation, or similar information, unless it is necessary for your use of the Services. If you choose to include sensitive information in recordings, prompts, files, support messages, or other content, we process it only as needed to provide the Services you request, protect the Services, comply with law, or as otherwise permitted by applicable law. Where applicable law requires a separate consent or condition for sensitive information, we rely on that consent or another applicable condition.
Vocci does not use your recordings, transcripts, prompts, files, or related content to train shared general-purpose AI models unless we provide separate notice and any controls or consent required by applicable law.
5. How We Share Personal Information
We share personal information only as needed for the purposes described in this Privacy Policy.
Service providers. We share personal information with service providers that help us operate the Services, including cloud hosting, storage, database, transcription, AI/model, support, authentication, analytics, observability, security, compliance, payment, subscription, commerce, shipping, email, and customer communication providers.
User-authorized integrations and recipients. If you connect an external account or ask us to send information to another service, we share the information needed to complete your requested workflow.
Payment, app-store, commerce, and shipping providers. We share information needed to process orders, subscriptions, payments, shipping, returns, refunds, taxes, fraud prevention, and entitlement checks.
Professional advisers. We may share information with legal advisers, insurers, banks, compliance service providers, and other professional advisers where needed for legal, security, financial, audit, or compliance purposes.
Authorities and legal process. We may disclose information if we believe it is reasonably necessary to comply with law, legal process, governmental requests, or to protect the rights, property, safety, or security of Vocci, users, or others.
Business transfers. If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, personal information may be transferred as part of that transaction, subject to appropriate protections.
We do not sell personal information. We also do not permit service providers to use personal information for their own marketing purposes unless you have a separate relationship with them or have directed us to share the information.
6. International Transfers
Vocci is based in the United States, and our service providers and users may be located in the United States, the EEA, the United Kingdom, and other countries. Your personal information may be processed in countries that may have data protection laws different from those in your country.
Where required, we use appropriate safeguards for international transfers, such as data processing agreements, Standard Contractual Clauses, Data Privacy Framework participation where applicable, or other lawful transfer mechanisms. You may contact support@vocci.ai for more information about transfer safeguards.
7. How Long We Keep Personal Information
We keep personal information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Services, maintain your account, comply with law, resolve disputes, enforce agreements, protect security, and maintain appropriate business records.
Retention periods vary by data type. Account information is generally kept while your account is active and for a limited period afterward where needed for security, support, legal, tax, or compliance purposes. Recordings, transcripts, prompts, files, generated outputs, and related content are generally kept while they remain in your account or workspace, until you delete them, close your account, or request deletion, subject to product storage limits and legal, security, backup, and technical limitations. We do not set a routine fixed deletion period for user-stored content solely because time has passed. Support and privacy request records are kept as needed to respond to requests, maintain proof of handling, resolve disputes, and comply with legal obligations. Billing, transaction, tax, and accounting records are kept as required by law and ordinary business recordkeeping requirements. Security, diagnostic, telemetry, and audit logs are kept for a limited period based on security, reliability, incident response, and compliance needs. Marketing contact information is kept until you unsubscribe or we no longer need it for the purpose for which it was collected.
After a verified deletion request or account closure, we delete or de-identify personal information from active systems within a reasonable period, typically within 90 days where technically and legally feasible. Some information may remain longer in backups, logs, legal records, tax records, fraud prevention records, security records, or records needed to establish, exercise, or defend legal claims.
8. Your Choices and Rights
Depending on where you live, you may have rights to access personal information we process about you; request correction of inaccurate information; request deletion of personal information; request restriction of processing; object to certain processing based on legitimate interests; receive a portable copy of certain information; withdraw consent where processing is based on consent; opt out of marketing communications; manage cookies and similar technologies where controls are available; and lodge a complaint with a data protection authority.
To exercise privacy rights, contact support@vocci.ai. We may need to verify your identity and request information needed to locate your account or records. For EEA/UK requests, we will respond without undue delay and generally within one month, unless an extension is permitted by law.
Withdrawing consent does not affect processing that occurred before withdrawal. If you withdraw consent or ask us to delete information needed to provide the Services, some features may no longer be available.
9. EEA and UK Users
If you are in the EEA or the United Kingdom, this section provides additional information.
Controller. Vocci Inc. is the controller for the processing described in this Privacy Policy, unless we tell you otherwise.
EU Article 27 representative. Vocci has designated Instant EU GDPR Representative Ltd as its EU Article 27 representative for EEA GDPR matters. EEA data subjects and supervisory authorities may contact the representative in addition to Vocci:
- Company name: Instant EU GDPR Representative Ltd
- Name: Adam Brogden
- Email: contact@gdprlocal.com
- Web: www.gdprlocal.com
- EU Dublin address: Instant EU GDPR Representative Limited, Office 2, 12A Lower Main Street, Lucan Co. Dublin K78 X5P8, Ireland
Data Protection Officer. Vocci has not appointed a Data Protection Officer at this time. Vocci will reassess whether a Data Protection Officer is required if its processing activities, legal obligations, or business model materially change.
Legal bases. Our legal bases include contract performance, consent, legitimate interests, legal obligation, and, where needed for sensitive information, an applicable condition under Article 9 of the GDPR or UK GDPR.
Legitimate interests. Our legitimate interests include securing and improving the Services, preventing fraud and abuse, debugging, support, service administration, business continuity, legal claims, compliance, and understanding how the Services are used.
Supervisory authority. You may lodge a complaint with your local data protection authority. We encourage you to contact us first so we can try to resolve the issue.
Automated decision-making. We do not use personal information for automated decision-making, including profiling, that produces legal or similarly significant effects.
10. US State Privacy Rights
As of the Last Updated date, Vocci does not currently meet the applicability thresholds for the California Consumer Privacy Act / California Privacy Rights Act. If a US state privacy law applies to Vocci or to your request, you may have rights to access, correct, delete, or receive a copy of personal information; to opt out of certain uses or disclosures; to limit certain uses of sensitive personal information; and to appeal a privacy request decision.
We do not sell personal information. If we use cookies or similar technologies in a way that is considered "sharing" for cross-context behavioral advertising under applicable US state privacy laws, we will provide any required notice and choice mechanism.
We do not knowingly use or disclose sensitive personal information for purposes that require a right to limit unless we provide that right or obtain consent as required by law.
We will not discriminate against you for exercising privacy rights. To submit a request, contact support@vocci.ai.
11. Security
We use administrative, technical, and organizational measures designed to protect personal information, including access controls, encryption in transit and at rest where supported, vendor review, monitoring, and incident response processes. No system is completely secure, and we cannot guarantee that personal information will never be accessed, disclosed, altered, or destroyed.
If we become aware of a personal data breach that requires notice, we will notify affected individuals and regulators as required by applicable law.
12. Third-Party Services and Links
The Services may link to or interact with third-party websites, apps, devices, app stores, payment providers, integrations, and services. Their privacy practices are governed by their own policies. We are not responsible for the privacy practices of third parties that we do not control.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes, we will take steps to notify you as required by law, such as updating the "Last updated" date, posting a notice, sending a message, or requesting consent where required.
14. Contact Us
For privacy questions, requests, or complaints, contact:
Vocci Inc. 1825 S Grant St # 200 San Mateo, CA 94402 United States Email: support@vocci.ai
EEA users may also contact Vocci's EU Article 27 representative:
- Company name: Instant EU GDPR Representative Ltd
- Name: Adam Brogden
- Email: contact@gdprlocal.com
- Web: www.gdprlocal.com
- EU Dublin address: Instant EU GDPR Representative Limited, Office 2, 12A Lower Main Street, Lucan Co. Dublin K78 X5P8, Ireland