Privacy Policy

Your data belongs to you.

We built Axiom on a simple principle: process what you need, delete everything else. Raw audio is gone within 24 hours. We never sell your data.

Last updated: March 28, 2025

1. Information We Collect

  • Account information: name, email address, and password (hashed) when you create an account.
  • Meeting audio: raw audio captured by the Chrome extension during a recording session. Audio is encrypted in transit, processed on isolated GPU infrastructure, and permanently deleted within 24 hours of transcript generation — we retain zero raw media.
  • Transcript content: the text transcript produced from your meeting audio, stored securely and accessible only to you and any team members you explicitly invite.
  • Usage data: anonymised product analytics (pages visited, features used, session duration) to help us improve the product. No personally identifiable information is included.
  • Payment information: handled entirely by Stripe. We never see or store your card details.

2. How We Use Your Information

  • To provide and improve the Axiom transcription service.
  • To authenticate your account and enforce your subscription tier.
  • To send transactional emails (e.g. transcript ready notifications, password resets). We do not send marketing emails without your explicit consent.
  • To detect and prevent fraud or abuse.

3. Data Sharing

  • We do not sell your data to third parties — ever.
  • We share data with trusted subprocessors only to the extent necessary to operate the service: Supabase (database & auth), Vercel (hosting), Modal Labs (GPU transcription), Resend (email), and Stripe (payments). Each subprocessor is bound by data processing agreements.
  • We may disclose data if required by law or to protect the rights, property, or safety of Axiom, our users, or the public.

4. Data Retention

  • Raw audio is permanently deleted within 24 hours of transcript generation.
  • Transcripts are retained until you delete them or close your account.
  • Account data is retained for 30 days after account closure, then permanently deleted.
  • Anonymised analytics data may be retained indefinitely in aggregate form.

5. Chrome Extension

  • The Axiom Chrome extension requests access to tab audio capture and the side panel. It does not access your browsing history, passwords, or any data outside of the active meeting tab.
  • Audio captured by the extension is streamed directly to our secure API endpoint. It is never written to your local disk and is not accessible to any third-party scripts.

6. Your Rights

  • Access: you can export all your transcripts from the dashboard at any time.
  • Deletion: you can delete individual transcripts or your entire account from Settings → Danger Zone.
  • Portability: transcripts can be exported as plain text or JSON.
  • EEA / UK residents: you have additional rights under GDPR/UK GDPR including the right to rectification, restriction of processing, and to lodge a complaint with a supervisory authority. Contact us at privacy@axiom-prod.vercel.app to exercise these rights.

7. Security

  • All data is encrypted in transit via TLS 1.2+ and at rest via AES-256.
  • Access to production systems is restricted to authorised personnel and protected by multi-factor authentication.
  • We conduct periodic security reviews and promptly address reported vulnerabilities.

8. Cookies

  • We use a single session cookie to keep you logged in. We do not use advertising or tracking cookies.
  • Anonymous analytics may use a first-party cookie to distinguish sessions. You can disable this in your browser without affecting core functionality.

9. Changes to This Policy

  • We may update this policy from time to time. We will notify you of material changes by email and by posting a notice in the dashboard. Continued use of Axiom after changes take effect constitutes acceptance of the updated policy.

10. Contact

  • Questions about this policy? Email us at privacy@axiom-prod.vercel.app or write to: Axiom, eng.madansarfraz, online.