Almost nothing
to see here.

KeyTalk is an on-device app. The audio you record, the transcripts it produces, the notes you save, and the tasks you dictate never leave your Mac. There is no server-side component that handles dictation content. There is nothing to breach.

We do collect the small amount of data required to sell and support the software — essentially, your email and billing information — and to run a basic marketing site. That is it.

When you press a KeyTalk hotkey, your microphone is opened, audio is captured, a local Whisper model transcribes it, and the text is delivered to the focused field, a note, a Kanban card, or a snippet expansion. That entire pipeline runs in the KeyTalk process on your Mac.

• No audio uploads. Raw audio is discarded as soon as transcription is complete. There is no server to send it to.
• No content telemetry. We do not collect the text you dictate, the apps you dictate into, the snippets you set up, or the contents of your Notes / Kanban.
• No account. KeyTalk does not sign you into anything. There is no KeyTalk user account.
• Your history stays local. The last 500 transcriptions are stored on your Mac so you can search them. Nothing is replicated anywhere else.

Only the data required to complete your purchase, deliver your license, and respond to you if you ask for help.

• Email address — used to deliver the license and the download link, to send occasional product updates (you can opt out at any time), and to reply to support messages.
• Billing data — collected by our payment processor, not by us. We see the last 4 digits of the card, the country, and the amount. We never see the full card number.
• Basic marketing-site analytics — anonymous page views and referral sources, aggregated, no personal identifiers. Used to understand which articles and channels bring people to KeyTalk.
• Support correspondence — if you email us, we store that thread so we can help.

The very first time you open KeyTalk, the app downloads a Whisper model (by default, the Small model, ~486 MB) from a public model registry so it has something to transcribe with. Subsequent launches do not require a network connection, and dictation never does.

That initial download is a direct HTTPS request from your Mac to the model registry. We do not route it through our servers and we do not observe it.

The smallest possible list. Each one only sees the data it needs to do its job.

• Payment processor — handles checkout and subscription billing. Sees your billing details under their own privacy policy.
• Transactional email provider — delivers the license email, receipts, and the occasional product update. Receives your email address and our message.
• Model registry — serves the Whisper model on first launch. Sees the IP address of the request, the same way any file download does.
• Analytics for the marketing site only — anonymous, aggregated, no personal identifiers.

We do not sell your data. We do not share it for advertising. We do not buy lists.

The marketing site uses a minimal set of first-party cookies to remember your preferences (for example, if you dismissed a banner) and to keep anonymous analytics consistent across a single session. The KeyTalk app itself does not use cookies.

If you live in a jurisdiction that grants data-protection rights (like the EU under GDPR, Brazil under LGPD, or California under CCPA), you can ask us to:

• Access a copy of the data we hold about you.
• Correct anything that's inaccurate.
• Delete your data (this invalidates your download-link email, but does not revoke the license you bought).
• Export your data in a portable format.
• Opt out of marketing messages at any time.

Email us and we'll process your request within 30 days. We will never charge you for exercising these rights.

• License + billing records — for as long as you hold the license, plus the minimum period our accountants and tax authorities require (typically 7 years after your last transaction).
• Support emails — up to 3 years after the last message, then deleted.
• Analytics — aggregated indefinitely; the raw session data is rolled up within 30 days.

The data we do hold (email, billing, support threads) lives in managed services with encryption in transit and at rest, scoped access, and the usual set of operational safeguards.

Because KeyTalk's dictation data never reaches us in the first place, the worst-case blast radius of a security incident on our end is your email address — not your voice, your notes, or your snippets.

KeyTalk is not directed to children under 13, and we do not knowingly collect data from them. If you believe a child has provided us with personal data, email us and we will delete it.

We'll update the Last updated date at the top of this page whenever anything material changes, and email license holders directly for changes that affect them. If you don't like a change, you can stop using KeyTalk and request deletion of your records.