Privacy Policy
Aide is built on a simple idea: the most private way to handle a sensitive conversation is to never send it off the machine in the first place. This policy explains what data Aide and PM Frontier LLC ("we", "us") collect, what we do with it, and what choices you have.
Plain English summary. Almost everything Aide knows about your meetings lives encrypted on your Mac, not on our servers. We collect the minimum we need to run your account and bill you. We do not sell your data. We do not use your meetings to train models. You can delete your data at any time.
1. Where your data actually lives
Aide has two parts that touch data:
- The Mac app, which captures audio, runs the meeting copilot, and stores your transcripts, memos, and memory in an encrypted database under
~/Library/Application Support/Aide/on your own machine. - The web backend (this website), which exists so you can sign in, manage billing, and authenticate the Mac app.
The web backend does not receive your audio, your transcripts, your meeting memos, or your memory. Those stay on your Mac, full stop.
The Mac app may send audio to a third-party cloud speech-to-text service and short pieces of transcript to a third-party language model service — but only when you have configured those providers. If you select local-only mode for both, nothing about your meetings ever leaves your Mac.
2. What we collect
| Category | Where | What it is and why |
|---|---|---|
| Account | Our servers | Your email address, a hashed sign-in code or session token, the time you created the account, and the time you last signed in. Needed to authenticate you on the web and in the Mac app. |
| Billing | Stripe | Your payment method, billing address, country, plan, subscription status, invoices. We do not store full card numbers — Stripe does that. We store a Stripe customer ID and subscription status so we can entitle your account. |
| Email delivery | Resend (email provider) | Your email address and the body of any transactional email we send you, such as sign-in codes. Needed to deliver login. |
| Server logs | Our servers | Request paths, timestamps, IP address, user agent, error traces. Kept for a short period for security and debugging. |
| Mac app diagnostics | Mac, opt-in | If you choose to send a diagnostic report, the Mac app may include device model, OS version, app version, and recent log lines. Off by default. Never includes audio or transcripts. |
That is the complete list of personal data our servers see in normal use.
3. What stays on your Mac
The following data is created and stored locally by the Aide Mac app, in an encrypted SQLite database under your user account. It does not flow to our servers:
- Captured audio (if you have storage enabled).
- Transcripts.
- Live prompts and the cards Aide surfaced during your meetings.
- Post-call memos and follow-up email drafts.
- Cross-call memory entries and vector embeddings.
- Notes and files you attach to a meeting.
- Per-meeting settings (mode, posture, disclosure script).
You can delete any of it from inside the app. You can also wipe the entire Aide database by removing the application-support directory above.
4. How we use information
We use the limited data we collect to:
- Provide and maintain Aide, including authenticating you and entitling your account.
- Bill you and reconcile payments through Stripe.
- Deliver transactional email (sign-in codes, billing receipts, account notices).
- Diagnose and fix bugs, prevent abuse, and keep the Service secure.
- Communicate important changes to Aide (rarely — we don't run marketing campaigns to your inbox).
- Comply with our legal obligations.
5. We do not train on your data
We do not use your audio, transcripts, memos, follow-up drafts, memory entries, or anything else from your meetings to train, fine-tune, or evaluate any machine-learning model — ours or anyone else's. We do not sell your data. We do not share your data with advertisers, data brokers, or anyone else for commercial purposes.
Third-party providers you choose to configure (e.g. Anthropic, OpenAI, Deepgram) operate under their own terms. We work with providers whose enterprise APIs commit to not training on customer content by default, and we recommend you confirm the terms of any provider you enable.
6. Third-party processors
We use a small number of vendors to deliver Aide. Each only ever receives the data needed to do its job.
| Processor | Purpose | Data shared |
|---|---|---|
| Stripe | Payment processing & billing portal | Your email, billing details, payment method, subscription status. |
| Resend | Transactional email delivery | Your email address and the message content for sign-in codes and billing notices. |
| Supabase / Postgres | Database for accounts & subscriptions | Account record (email, hashed tokens, timestamps), subscription state. |
| Fly.io | Web hosting | HTTP request logs (path, IP, user agent) for the web backend. |
| Anthropic (optional) | Language-model intelligence — only if you configure it | Short windows of your transcript when an LLM call is needed. Configured by you in the Mac app. |
| OpenAI (optional) | Alternative language-model provider | Same as above; only used if you select OpenAI as your LLM. |
| Deepgram (optional) | Cloud speech-to-text — only if you configure it | Audio chunks streamed from the Mac app to the Deepgram API. |
If you run Aide in local-only posture (whisper.cpp + a local LLM), none of the optional providers are contacted.
7. When we share information
We share personal information only:
- With your direction — for example, with a third-party LLM or STT provider you have configured.
- With service providers listed above, under contracts that limit their use of the data to providing the service to us.
- For legal reasons — to comply with a valid legal request, to protect rights, property, or safety, or to investigate fraud or security issues. If we receive a government request for your account information, we will, to the extent permitted, notify you first.
- In a business transfer — if PM Frontier LLC is acquired, merged, or sells assets, your account information may be transferred to the successor under a privacy commitment at least as protective as this one.
8. Recording and other participants
Aide does not join your meetings and does not interact with the other participants. From our servers' point of view, only one person — you — has an account, and only you receive any communication from us about a meeting.
Because Aide runs on your Mac and the other participants do not have accounts with us, they are not our "users" and we do not have a direct relationship with them. You decide whether to record a given conversation and whether to tell them. As described in the Terms of Service, you are responsible for complying with the recording, consent, biometric-data, and privacy laws that apply to your meetings.
If you are a participant in a meeting where someone else uses Aide and you would like to know what happens to your information, please ask the person running Aide — they hold the data, not us.
9. Retention & deletion
- Account: kept while your account is active. If you ask us to delete your account, we delete it within 30 days, except where we need to retain limited records (for example, billing records required by tax law).
- Sign-in tokens: short-lived; sign-in codes expire within minutes, session tokens expire after a fixed period of inactivity.
- Server logs: retained for a short period (typically 30 days) for security and debugging, then rotated out.
- Billing records: retained as required by tax and accounting laws (typically up to 7 years), via Stripe.
- On-device data: retained until you delete it. We can't delete it for you because we don't have it.
10. Security
- On-device data is stored in an encrypted SQLite database (SQLCipher) protected by a per-user key tied to your Mac.
- The local app talks to its local daemon over a loopback WebSocket bound to
127.0.0.1— that traffic never touches the network. - Authentication uses short-lived sign-in codes; sessions are stored as hashed tokens.
- All web traffic to our servers is TLS-encrypted.
- Payments are handled entirely by Stripe (PCI-DSS Level 1); we never see your full card number.
No system is perfectly secure. If you believe you have found a security issue, please email team@myaide.com with details.
11. Your privacy rights
Depending on where you live (for example, the EEA, the UK, California, Virginia, Colorado, Connecticut, Utah, Texas, and other U.S. states with comprehensive privacy laws), you may have the right to:
- Access the personal information we hold about you.
- Correct information that is inaccurate.
- Delete your account and the personal information we hold about you.
- Export a portable copy of your data.
- Object to or restrict certain processing, and withdraw consent where processing relies on it.
- Lodge a complaint with a data-protection authority.
You can act on most of these directly inside Aide: delete your meeting data from the app, manage your subscription from the Stripe-hosted portal, or close your account by emailing us. For any request we can't satisfy in-app, write to team@myaide.com and we will respond within the timeframe required by the law that applies to you.
We do not sell personal information and we do not share it for cross-context behavioral advertising, as those terms are defined under U.S. state privacy laws.
12. Children
Aide is built for adults and is not directed at children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.
13. International users
Aide is operated from the United States. If you use Aide from outside the U.S., your information will be transferred to and processed in the U.S. and other jurisdictions where our service providers operate. We rely on appropriate legal mechanisms (such as the Standard Contractual Clauses where applicable) to protect personal data when it leaves your country.
14. Cookies & analytics
We use a single, strictly necessary cookie (aide_session) to keep you signed in to the website. It's HttpOnly, SameSite, and expires when your session does. We don't use advertising cookies. We do not currently run third-party analytics scripts on our marketing site; if we add lightweight, privacy-respecting analytics in the future, we will update this policy and call it out in-product.
15. Changes to this policy
We will update this page when we change how Aide handles data. If a change is material, we will give you reasonable notice — by email or in-product — before it takes effect. The "Last updated" date at the top always tells you when the current version was posted.
16. Contact
PM Frontier LLC
Email: team@myaide.com
Subject line for privacy requests: "Privacy request".