privacy policy

1.1 Account and Authentication Information

During onboarding and authentication, we collect:

• Email address and/or authentication identifiers (depending on login method)
• Account metadata (e.g., account creation date, last login timestamp)
• Authentication tokens (securely stored for session management)

1.2 Usage Analytics (Current and Future)

Currently collected: Basic authentication events (sign-in, sign-out)

May be collected in the future (non-content metrics only):

• Feature usage counts (number of transcriptions, notes created, etc.)
• Feature engagement (features enabled, model/provider selection)
• Performance telemetry (latency metrics, crash-free session rates)

IMPORTANT: We collect event counts and timestamps only—never the actual text, audio, or content of your transcriptions, notes, chats, or browsing activity.

1.3 Device and Technical Information

To operate and improve the Services, we may collect:

• App version and build number
• Operating system type and version
• Device type and hardware identifiers (anonymized where possible)
• Language and locale settings

1.4 Diagnostic and Crash Data

To maintain service reliability, we may collect crash reports, error codes, and performance logs. Our crash reporting is configured to automatically redact API keys, user-entered text, and file paths.

We are committed to a local-first, privacy-respecting architecture. We do NOT collect, store, or have access to:

• Content of your notes (text, formatting, attachments)
• Content of your chats (messages, prompts, AI responses)
• Content of your transcriptions (audio, transcribed text)
• Content of your browser activity (URLs visited, page content, browsing history)
• Keystrokes or keyboard input
• Screen contents or screenshots (unless you explicitly share them with support)
• Your API keys (these are stored locally on your device only)

3.1 Transcription (BYO API Key)

When you use transcription:

1. Audio is captured on your device
2. Audio is sent directly from your device to the third-party provider using your API key
3. The transcribed text is returned directly to your device
4. Dawn does not receive, store, or have access to your audio or transcriptions

3.2 AI Chat (BYO API Key)

Same flow as transcription—your device communicates directly with the third-party provider. Dawn servers are not involved.

3.3 Local Notes and Data

All notes, chat history, and local data remain on your device unless you explicitly export or share them. Dawn servers are not involved.

• Provide the Services – authenticate you, maintain your account
• Improve the Services – fix bugs, optimize performance, develop features
• Security – prevent fraud, detect abuse, protect against unauthorized access
• Analytics – understand feature usage patterns (aggregate, non-identifying)
• Communications – respond to support requests, send service notices
• Legal compliance – comply with laws, respond to legal requests

We do not sell your personal information. We share information only in limited circumstances:

5.1 Service Providers

We may share limited information with trusted vendors who help us operate the Services (authentication, analytics, crash reporting, cloud hosting). These providers are bound by contractual obligations.

5.2 Third-Party AI/API Providers (BYO Keys)

When you use features requiring third-party APIs with your own API keys, your device communicates directly with the provider. We do not intermediate, access, or store this data.

5.3 Legal Requirements

We may disclose information if required by law or to protect rights, property, or safety.

• Account data – While your account is active + 30 days after deletion request
• Authentication logs – 90 days (for security purposes)
• Crash/diagnostic data – 30–90 days
• Support communications – 2 years
• Security logs – 30 days

Local data on your device (notes, chats, transcriptions) is under your control. We do not have access to delete it.

We implement reasonable security measures including:

• Encryption in transit (TLS/HTTPS)
• Encryption at rest (for stored account data)
• Access controls (limited personnel access)
• Regular security assessments

No method of transmission or storage is 100% secure. You are responsible for maintaining the security of your device, login credentials, and API keys.

• Access: You can access your account information through the App settings
• Update: You can update your email and preferences in settings
• Delete: You can request account deletion by contacting work.dslalwani@gmail.com
• Local Data: Your local notes, chats, and transcriptions are under your full control
• Device Permissions: You can control microphone access through your operating system settings

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal information
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your personal information
• Portability: Request your data in a portable format

To exercise any privacy rights, contact us at work.dslalwani@gmail.com. We aim to respond within 30 days.

The Services are not directed to children under 13. We do not knowingly collect personal information from children under 13. If we learn we have collected information from a child under 13, we will delete it promptly.

If you access the Services from outside the United States, your information may be transferred to, stored, and processed in the United States. By using the Services, you consent to such transfers.

For EEA/UK users, we use appropriate safeguards such as Standard Contractual Clauses approved by the European Commission.

We may update this Privacy Policy from time to time. For material changes, we will provide prominent notice at least 15 days before the changes take effect.

Your continued use after changes constitutes acceptance.

If you have questions about this Privacy Policy:

Privacy inquiries: work.dslalwani@gmail.com

General support: work.dslalwani@gmail.com

We aim to respond within 5 business days.