Vozzle (“Vozzle”, “we”, “us”, “our”) is a voice-first productivity app for meetings, notes, tasks, and calendar, built by Norvin Teo, trading as Bebo Studio, based in Singapore.
This policy explains what personal data Vozzle collects, how we use it, who we share it with (including the third-party AI providers that power our AI features), and the rights you have. It covers the Vozzle iOS app and its Apple Watch companion. Questions? Use in-app support (Settings → Support).
1. Summary (the short version)
- Local-first. Your notes, tasks, and meetings live on your device first and sync to our servers.
- End-to-end encryption, on by default. Vozzle encrypts your content on-device before it reaches our servers, so only you can read it. You can turn it off in Settings if you prefer.
- AI features send your content to third-party AI providers. When you use an AI feature (transcription, summary, action items, enhance, translate, voice command, ask-AI, read-out), the relevant content leaves your device and is processed by trusted third-party AI providers. We describe them by category in Section 5.
- No AI training — and zero retention for AI analysis. Our AI providers do not train their models on your content. For language-model analysis of your text (summaries, action items, etc.) we use zero-data-retention routing: your content is processed to produce your result, then permanently discarded — not stored. (Transcription and web search are described in Section 5.)
- You’re in control. You can decline AI features, enable encryption, export, or delete your data.
2. Who we are / data controller
The data controller is Norvin Teo, trading as Bebo Studio, based in Singapore. You can reach us through in-app support (Settings → Support); see Section 15 if you no longer have the app.
3. What data we collect
a. Account data. Email address and authentication credentials, managed via our authentication provider. If you sign in with Apple or Google, we receive the basic profile you authorize (name, email). We do not store your Apple or Google password.
b. Content you create. Notes (text and voice), tasks, meetings, calendar entries, and any files or recordings you capture — including audio recordings of meetings and voice notes, and the transcripts produced from them.
c. Audio. During capture, Vozzle records to a protected on-device “failsafe” buffer so audio survives interruptions. This buffer is stored on your device — and, if you use iCloud, in your own iCloud Drive so it is available across your devices — never on our servers, and is retained for up to 30 days after a meeting ends (to support optional re-processing), then automatically deleted. Audio is sent to our transcription provider (Section 5) to produce transcripts.
d. Usage & diagnostic data. Feature usage, AI usage, and AI spend (to apply your plan’s monthly AI budget, which resets each billing month), error/diagnostic logs, and app/version/device-type information. We do not use third-party advertising or cross-app tracking SDKs.
e. Subscription data. Your subscription tier and entitlement status. Payments are processed by Apple via the App Store; we do not receive your full payment card details.
f. Integrations (optional). If you connect Google Calendar, Notion, or Bebo Work, we process the data needed for that integration (calendar events, notes, tasks, team projects) per your authorization.
We do not sell your personal data, and we do not use it for cross-app tracking or advertising.
4. How we use your data
- To provide the app’s core functions (store and sync your notes, tasks, meetings, calendar).
- To provide AI features you invoke (transcription, summarization, action items, key points, enhancement, translation, document generation, voice commands, ask-AI chat, and read-out).
- To enforce plan limits (your monthly AI budget, which resets each billing month) and prevent abuse.
- To authenticate you and keep your account secure.
- To provide customer support.
- To comply with legal obligations.
Legal bases (EEA/UK GDPR): performance of our contract with you (providing the app and the AI features you request); your consent (for AI processing of your content, and for optional integrations); and our legitimate interests (security, abuse prevention, service improvement), balanced against your rights.
5. AI features and the third-party AI providers we use
When you use an AI feature, the relevant content (e.g., a note body, a meeting transcript, an audio recording for transcription, an action-item title, or a voice-command phrase) is sent off-device to be processed by trusted third-party AI providers in the categories below. We route AI requests through an AI gateway. For language-model analysis we use zero-data-retention routing: requests go only to providers contractually bound not to train on your content and not to retain it, and the request fails rather than fall back to one that would.
| Category of provider | Purpose | What it receives |
|---|---|---|
| Speech-to-text & text-to-speech | Live and asynchronous transcription, and read-out | Audio recordings; text to be read aloud |
| Large-language-model providers | Summaries, action items, key points, enhancement, translation, chat, and voice-command understanding — your text is processed to produce your result, then permanently discarded (zero data retention); never used for training | The text content you submit to an AI feature |
| AI gateway / routing | Forwards AI requests to the providers above under no-training and zero-data-retention settings | The content in transit to the above providers |
| Web search | Live web search when you ask the AI chat to look something up | Your search query and approximate location |
No training; zero retention for analysis. For language-model analysis (the large-language-model providers in the table above), we use zero-data-retention routing: requests go only to providers that contractually do not train on your content and do not retain it — your text is processed to produce your result, then permanently deleted, with nothing kept for abuse-monitoring or model improvement, and the request fails rather than route to a non-compliant provider. Transcription: live audio is processed in memory and not stored; audio sent for asynchronous transcription is deleted immediately after the transcript is produced. Web search: your query and approximate location may be retained briefly to run the search.
You can decline. Before you first use an AI feature, Vozzle shows a consent screen and lets you disable AI entirely. AI features are off until you agree. Content you never run through an AI feature is not sent to these providers.
We disclose the sub-processor categories in the table above — a speech-to-text and read-out provider; large-language-model providers (for analysis and generation); an AI-gateway routing layer; and a web-search provider. The specific provider names are available on request at privacy@vozzle.app. Each is bound by contract to protect your data (providing the same or equal level of protection of your personal data as set out in this Privacy Policy), not to train on your content, and — for language-model analysis — to permanently discard your content immediately after producing your result, with zero retention.
6. Encryption and where your data is stored
- Your content is stored on your device and on our servers, which are hosted by our cloud infrastructure provider (region: Singapore (ap-southeast-1)).
- With end-to-end encryption on — the default — your content is encrypted on your device before it is sent to our servers, using keys held in your device Keychain. In that mode, we cannot read your encrypted content. You can turn it off in Settings.
- AI features require sending the unencrypted content to the AI providers in Section 5 to function. If you keep content encrypted and never invoke an AI feature on it, it is not exposed to those providers.
7. Sharing and disclosure
We share personal data only with:
- Sub-processors that operate the service on our behalf (see the full list in the Appendix). Each is bound by contract to provide the same or equal level of protection of your personal data as set out in this Privacy Policy.
- Bebo Work (team workspace), only if you connect it, to sync the team items you choose to share.
- Authorities, where required by law.
We do not sell personal data or share it for cross-context behavioral advertising.
8. International transfers
We are based in Singapore. Several of our sub-processors (including the AI providers and certain hosting) process data in the United States and other countries. Where we transfer personal data internationally, we rely on appropriate safeguards — such as the providers’ data-processing agreements and Standard Contractual Clauses (or equivalent). You may request details through in-app support (Settings → Support).
9. Data retention
- Account & content: retained while your account is active; deleted within 30 days of account deletion, subject to backup-rotation windows.
- On-device audio failsafe buffer: up to 30 days after a meeting ends, then auto-deleted.
- AI usage logs (counts/spend): retained for 12 months for billing/abuse-prevention.
- Provider-side retention: governed by each AI provider’s terms (Section 5).
You can delete individual items in the app, or delete your entire account in the app under Settings → account → Delete Account.
10. Your rights
Depending on where you live, you may have the right to access, correct, delete, port, restrict, or object to the processing of your personal data, and to withdraw consent. To exercise these rights, contact us through in-app support (Settings → Support) — or, if you no longer have the app, by the email in Section 15.
- EEA/UK (GDPR): rights of access, rectification, erasure, restriction, portability, objection, and to lodge a complaint with your supervisory authority.
- Singapore (PDPA): rights to access and correct your personal data, and to withdraw consent. Reach us through in-app support (Settings → Support).
- California (CCPA/CPRA): rights to know the categories and specific pieces of personal information collected, the categories of third parties to whom it is disclosed, and to request deletion. We do not sell or “share” (for cross-context advertising) personal information.
11. Children
Vozzle is not directed to children under 13, and we do not knowingly collect their personal data.
12. Security
We use industry-standard measures including encryption in transit (TLS) and at rest, optional end-to-end encryption, certificate pinning for our API, and access controls. No method of transmission or storage is 100% secure, but we work to protect your data and to notify you and regulators of breaches where required.
13. Third-party sign-in and integrations
- Apple — App Store, in-app purchases, push notifications, and Sign in with Apple.
- Google — optional “Sign in with Google” and optional Google Calendar/Tasks integration, per your authorization.
- Notion — optional notes/tasks sync, per your authorization.
- Bebo Work — optional team sync.
These third parties process data under their own privacy policies.
14. Google user data (Google API Services)
When you connect Google Calendar or Google Tasks, Vozzle accesses your Google data only to provide the sync features you turn on, and handles it as described below.
- What we access. With your authorization, the Google Calendar (calendar.events) and Google Tasks (tasks) scopes — your calendar events, and your task lists and tasks. We request only the narrowest scopes needed for these features, and no Restricted scopes.
- How we use it. Only to provide the in-app sync you enable: showing your Google Calendar events and Google Tasks inside Vozzle and, when you switch on export, reflecting the items you create in Vozzle back to your Google account. We do not use Google data for advertising.
- Sharing. We do not sell your Google data and do not transfer it to third parties except as needed to provide the feature — our infrastructure sub-processors (listed in Appendix A) acting on our instructions.
- How we protect it. Google data and your OAuth tokens are encrypted in transit (TLS) and at rest, and access is limited to operating the integration.
- Retention and deletion. You can disconnect the integration at any time in Vozzle, which stops the sync and removes the stored Google connection; you can also revoke Vozzle's access from your Google Account settings. Google data is deleted when you disconnect the integration or delete your Vozzle account (within 30 days).
- No AI/ML training. Google Workspace user data (Calendar and Tasks) is not used to develop, improve, or train generalized AI and/or ML models, and is not transferred to third-party AI tools for that purpose.
Limited Use. Vozzle's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy (https://developers.google.com/terms/api-services-user-data-policy), including the Limited Use requirements.
15. Changes to this policy
We may update this policy from time to time. We will post the updated version here with a new “Last updated” date and, for material changes (such as adding a new AI provider), provide a prominent notice and/or re-request your consent in-app.
16. Contact
For most questions, use in-app support (Settings → Support). For formal privacy requests, or if you no longer have the app, you can also reach us at:
Norvin Teo, trading as Bebo Studio
Singapore
Email: privacy@vozzle.app
Appendix A — Categories of sub-processors
We use a small number of established providers in the categories below. We can provide the current list of the specific sub-processors on request through in-app support (Settings → Support).
| Category | Purpose | Location |
|---|---|---|
| Speech-to-text & text-to-speech | Live and asynchronous transcription, and read-out | United States |
| Large-language-model providers | Summaries, action items, key points, enhancement, translation, chat, and voice-command understanding — your text is processed to produce your result, then permanently discarded (zero data retention); never used for training | United States / global |
| AI gateway / routing | Forwards AI requests to the providers above under no-training and zero-data-retention settings | United States |
| Web search | Live web search when you ask the AI chat to look something up | United States |
| Cloud hosting, database & authentication | Stores account data and synced content (ciphertext when you enable encryption) | Singapore (ap-southeast-1) |
| App distribution & payments | App Store distribution, in-app purchases, push notifications | United States / global |
| Bot & abuse protection | Protects the website sign-up form from spam and automated abuse | United States / global |
Our website sign-up form uses Cloudflare Turnstile to protect against spam and automated abuse. For this, Cloudflare processes a challenge token, your IP address, and basic browser/interaction signals. Your use of Turnstile is subject to the Cloudflare Privacy Policy and Turnstile Privacy Addendum.