Privacy Policy
Last updated: January 2025
Your Privacy Is Our Priority
Hinty does NOT store your audio recordings, does NOT keep transcription history, and does NOT retain your original documents. All audio processing happens in real-time through certified third-party providers and is immediately discarded. Your PDF documents are converted to anonymous vector embeddings - the original content is never stored on our servers.
1. Introduction & Core Principles
Welcome to Hinty ("we," "our," or "us"), operated by WAAM Sp. z o.o. We are committed to protecting your privacy and ensuring the security of your personal information.
- Data Minimization: We collect only the absolute minimum data required to provide our services.
- No Audio Storage: Your voice recordings are processed in real-time and immediately discarded - we never store audio files.
- No Document Storage: Your PDF documents are converted to mathematical vectors and then deleted - original content is never retained.
- User Control: You can delete your account and all associated data at any time.
2. What We Do NOT Collect or Store
We Do NOT:
- Store any audio recordings of your conversations
- Keep transcription text history or conversation logs
- Retain original PDF document content on our servers
- Track your location or collect GPS data
- Sell or share your data with advertisers
- Use your data to train AI models
- Store your payment card details (handled entirely by Stripe)
3. Audio Processing & Real-Time Transcription
3.1 How Audio Processing Works
- Real-Time Streaming: Audio is streamed in small chunks directly to transcription providers via encrypted WebSocket connections.
- No Server Storage: Audio chunks pass through our servers only as a relay - they are never written to disk.
- Complete Deletion: When your session ends, all transcription data is immediately purged from memory.
3.2 Transcription Service Providers
| Provider | Data Center | Data Retention | Certifications |
|---|---|---|---|
| Speechmatics | EU (UK/Ireland) | 0 days | ISO 27001, SOC 2, GDPR |
| ElevenLabs | US/EU | 0 days | SOC 2 Type II |
| Deepgram | US | 0 days | SOC 2, HIPAA eligible |
4. Document Processing & Vector Storage
When you upload a PDF document:
- Text is extracted and converted to mathematical vectors (embeddings)
- Original PDF is immediately deleted after processing
- Only vectors are stored - they cannot reveal original content
- When you delete a document, all vectors are permanently removed
5. Account & Minimal Data We Store
| Data Type | Purpose | Retention |
|---|---|---|
| Email address | Account identification, login | Until account deletion |
| Password (hashed) | Authentication | Until account deletion |
| Subscription status | Access control, billing | Until account deletion |
| Usage statistics | Show your usage history | Until account deletion |
6. Third-Party Service Providers
7. Security Measures
- Encryption: TLS 1.3 for data in transit, AES-256 for data at rest
- Password Security: Passwords hashed with bcrypt
- JWT Tokens: Secure, time-limited authentication
- Rate Limiting: Protection against brute-force attacks
8. Your Rights (GDPR/CCPA)
- Right to Access: Request a copy of your data
- Right to Rectification: Update your account information
- Right to Erasure: Delete your account and all data
- Right to Data Portability: Export your data in JSON format
To exercise your rights, email us at: privacy@hinty.eu
9. Contact Information
Email: privacy@hinty.eu
General Support: support@hinty.eu
Data Controller:
WAAM Sp. z o.o.
Rondo ONZ 1
00-124 Warsaw, Poland
Summary: Your Privacy at Hinty
Audio: Streamed in real-time, never stored.
Transcriptions: Exist only during active sessions, then deleted.
Documents: Converted to vectors, originals deleted immediately.
Your Control: Full access, export, and deletion rights.