Privacy Policy

Effective date: June 11, 2026

1. Overview

Xovera is an AI meeting notetaker operated by Xovera (“we”, “us”). This policy explains what data we collect when you use Xovera, how we use it, who processes it on our behalf, and the choices you have. For anything not covered here, contact hello@xovera.io.

2. Data we collect

  • Account data — your email address, name, and password (stored hashed).
  • Meeting content — meeting audio captured by the notetaker bot or uploaded by you, the transcripts produced from it, and the AI-generated summaries, action items, and analysis derived from those transcripts.
  • Calendar metadata — if you connect Google Calendar: event titles, times, attendee lists, and meeting links, used to schedule the bot.
  • Usage and billing data — credit consumption, plan information, and basic product usage needed to operate and improve the Service.

3. How we use data

We use your data to provide the Service: joining and recording the meetings you choose, transcribing them, generating summaries, delivering notifications, syncing notes to integrations you connect, and billing. We do not sell your personal data or your meeting content, and we do not use your meeting content to train AI models.

4. Subprocessors

We use a small set of service providers to deliver specific parts of the product. Each receives only the data needed for its function:

  • Recall.ai — meeting bots that join Google Meet, Zoom, and Microsoft Teams calls and capture the recording.
  • AssemblyAI — speech-to-text transcription of uploaded and self-recorded audio.
  • Anthropic — AI summarization and analysis of transcripts (Claude models).
  • Stripe — payment processing. We never store your full card details.
  • Resend — transactional email, such as meeting-summary notifications.
  • Google APIs — calendar and account connectivity. Our use of data received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

5. Storage and retention

Meeting history is retained according to your plan's limits (for example, shorter history on the free plan and longer or full history on paid plans). When content ages out of your plan's window or you delete it, it is removed from the product. You can request deletion of your account and all associated data at any time by emailing hello@xovera.io.

6. Sharing

We share data only with the subprocessors listed above, with integrations you explicitly connect (such as your CRM, Slack, Asana, Google Docs, or Zapier), within your own workspace, and where required by law. We never sell your data.

7. Security

Data is encrypted in transit (TLS). Access to production systems and customer content is restricted to authorized personnel with a need to access it, and sessions are protected with signed, expiring credentials. No system is perfectly secure — if we learn of a breach affecting your data, we will notify you as required by law.

8. Your rights

You can access and export your meeting content from within the product, and correct your account details in settings. To exercise access, correction, or deletion rights — or to ask any privacy question — email hello@xovera.io. Depending on where you live, you may have additional rights under local law (such as the GDPR or CCPA), and we will honor valid requests.

9. Cookies

Xovera uses a single session cookie to keep you signed in. We do not use advertising or cross-site tracking cookies.

10. Changes to this policy

If we make material changes to this policy, we will notify you by email or an in-app notice before the changes take effect. The effective date at the top of this page always reflects the current version.