PRIVACY POLICY

Last updated: 2026-03-28

Sonera is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights as a user.

Data We Collect

Account Information

When you create an account, we collect your email address and a hashed password (or OAuth provider identifier if you use Google Sign-In). We use this to authenticate you across devices.

Transcription History

If you are on a cloud plan, your transcription history (the resulting text — not the audio) is stored in our database to enable cross-device sync. You can delete this at any time from your account settings.

Subscription Data

We store your current plan (Trial, BYOK, or Premium) and payment status. Payment processing is handled by Stripe — we never see or store your credit card details.

API Keys (BYOK)

If you use the BYOK plan, your API keys are stored encrypted at rest in our database. They are only transmitted to the corresponding provider (e.g., Groq, OpenAI) when you make a transcription or AI editing request.

Data We Do NOT Collect

  • Voice recordings — audio is processed in real-time and never stored by Sonera
  • Desktop offline transcriptions — these stay entirely on your computer
  • Keyboard input or clipboard content
  • Device identifiers, telemetry, or crash reports without consent

Data Storage

Your account data and transcription history are stored in Supabase (PostgreSQL) with encryption at rest and in transit (TLS). Supabase infrastructure is hosted in the EU (Frankfurt, Germany) by default.

Third Parties

Supabase

We use Supabase for database storage and authentication. Supabase is GDPR-compliant. See their privacy policy at supabase.com/privacy.

Stripe

Payment processing for the BYOK unlock and Premium subscription is handled by Stripe. We do not store payment card data. See stripe.com/privacy.

Google

If you use Google Sign-In, Google provides us with your email address and profile name. We do not receive or store your Google password.

Groq / OpenAI / Anthropic / Google AI

When you use BYOK or Premium, your audio (for transcription) or text (for AI editing) is sent to the provider of your choice using your API key. Each provider has their own data retention policy — refer to their documentation for details.

Your Data

If you use Sonera without an account, all data (transcription history, statistics, settings) is stored locally on your device only. Nothing is sent to our servers.

If you have an account, your transcription history and statistics are synced to our servers so they are available across your devices. You can delete specific data at any time:

  • Transcription history — delete individual entries or clear all history from the app (mobile or desktop). Deletions sync across all your devices automatically.
  • Statistics — clear your statistics from the app settings. This also syncs across devices.

Your Rights (GDPR)

If you are based in the EU, you have the following rights:

  • Access — request a copy of all personal data we hold about you
  • Deletion — request permanent deletion of your account and all associated data
  • Rectification — request correction of inaccurate personal data
  • Portability — receive your data in a machine-readable format (JSON)
  • Objection — object to specific processing of your data

To delete your account, log in at getsonera.com/accountand select "Delete Account". This permanently deletes your account and all associated data from our servers, including your profile, transcription history, statistics, synced settings, and API keys. This action cannot be undone. You can also contact us at the email below.

Contact

For privacy questions or data requests, contact us at: privacy@getsonera.com