Legal

Privacy Policy

Last updated: July 5, 2026

This policy explains what data LensNote collects, why we collect it, how long we keep it, and the choices you have. It applies to the LensNote web app, the macOS app, and our marketing site.

1. Data we collect

  • Account data. Name, email address, password hash, and authentication identifiers (including passkeys or third-party sign-in identifiers if you use them).
  • Video and audio content. The recordings you upload or capture, and the derived artifacts we generate for you: transcripts, key frames, OCR text, summaries, key messages, and exports.
  • Usage data. Product events such as sessions created, processing minutes consumed, exports generated, feature usage, and diagnostic logs and crash reports.
  • Device fingerprint. We compute a device fingerprint at sign-up and sign-in solely for fraud prevention — primarily to detect abuse of free-trial allowances. It is not used for cross-site advertising or tracking.
  • Billing data. Subscription status, plan, invoices, and partial payment details. Full card details are collected and stored by Stripe, our payment processor, not by us.

2. How we use your data

  • To provide the service: transcription, key-frame extraction, summaries, and exports.
  • To operate your account, process payments, and enforce plan limits.
  • To prevent fraud and abuse, including free-trial abuse detection.
  • To improve reliability and performance through aggregated usage analytics.
  • To send transactional emails (processing completion, billing, security). Marketing emails are optional and can be disabled in settings or via the unsubscribe link.

We do not use your recordings or notes to train AI models, and we do not sell your personal data.

3. Processors and subprocessors

We share data only with providers that help us run LensNote, under contracts that limit their use of the data to providing services to us:

  • Stripe — payment processing and subscription billing.
  • Cloud hosting and storage providers — application hosting, object storage for your recordings and generated media, and content delivery.
  • AI providers — speech-to-text and language-model services used to generate transcripts, summaries, and explanations. Content is sent for processing only and is not retained by these providers for training.
  • Email delivery and error-monitoring services — transactional email and crash diagnostics.

We may also disclose data when required by law or to protect our rights and users.

4. Retention

  • Your recordings and notes are kept while your account is active, within your plan’s storage allowance.
  • Free plan: original video and audio files are automatically deleted 14 days after processing. Your generated notes, transcripts, and screenshots are kept.
  • When you delete a session, its media and derived artifacts are removed from active storage promptly and from backups within our standard backup rotation.
  • When you delete your account, your personal data and content are deleted, except for records we must retain for legal, billing, or fraud-prevention purposes.

5. Your rights (including GDPR)

Depending on your location, you may have the right to access, correct, export, restrict, or delete your personal data, and to object to certain processing. In particular:

  • Access and portability. You can export your notes and transcripts from the product; contact us for a copy of your account data.
  • Deletion. You can delete individual sessions in the app, or delete your entire account from Settings (a confirmation email protects this action). Active subscriptions must be canceled first.
  • Complaints. If you are in the EEA or UK, you may lodge a complaint with your local supervisory authority.

To exercise any right, email [email protected]. We respond within 30 days.

6. Cookies and similar technologies

We use strictly necessary cookies for authentication and session management, and — where enabled — privacy-respecting analytics to understand aggregate product usage. We do not use third-party advertising cookies. You can control cookies through your browser settings; blocking essential cookies will prevent sign-in from working.

7. Security

Recordings and notes are encrypted in transit (TLS) and at rest. Access to production data is restricted to authorized personnel with a need to know. Uploads go directly to object storage using short-lived pre-signed URLs. If we become aware of a breach affecting your data, we will notify you as required by law.

8. International transfers

Your data may be processed in countries other than your own. Where required, we rely on appropriate safeguards such as standard contractual clauses with our processors.

9. Children

LensNote is not directed to children under 16, and we do not knowingly collect personal data from them. If you believe a child has provided us personal data, contact us and we will delete it.

10. Changes to this policy

We may update this policy from time to time. For material changes we will notify you by email or in the product before the changes take effect. The “Last updated” date above reflects the current version.

11. Contact

Privacy questions or requests: [email protected]. See also our Terms of Service and Refund Policy.