whatayarn (https://whatayarn.com) values your privacy. This policy explains how we collect, use, and protect your information.
1. The Data We Collect
| Category | Examples | Why We Collect It |
|---|---|---|
| Personal Data | Name, Email, Payment info (processed by Stripe) | Account creation & sign-in, Billing & refunds, Customer support |
| User-Generated Content | Audio recordings, transcripts, tags, comments | Core functionality (store, transcribe, organise, analyse, and display your content) |
| Usage & Device Data | IP address, browser type, device identifiers, log files | Security & fraud prevention, Site analytics & performance |
| Cookies & Similar Tech | Session cookies, preference cookies | Keep you logged in, Remember settings, Aggregate analytics |
We do not intentionally collect sensitive categories of data (e.g., health, political opinions) or data from children under 13 (see § 7).
2. How We Use Your Data
- Provide the Service - store audio, generate transcripts, surface search results, etc.
- Process Payments & Refunds - via Stripe; we never see your full card details.
- Communicate With You - account-related notices, product updates, and support replies.
- Improve & Secure the Service - debugging, usage analytics, and fraud monitoring.
- Legal Obligations - comply with the Australian Privacy Act 1988 (Cth) and other applicable laws.
3. Legal Bases (GDPR Visitors)
For EU/UK users, we rely on:
- Contractual necessity - to deliver the Service you signed up for.
- Legitimate interests - to improve safety, performance, and user experience.
- Consent - for optional cookies or marketing emails (you may withdraw at any time).
- Legal obligation - to satisfy accounting or regulatory requirements.
4. Data Sharing & Disclosure
We do not sell or rent your personal data. We share it only with:
| Recipient | Purpose | Safeguards |
|---|---|---|
| Stripe | Payment processing & refunds | PCI-DSS compliant; data encrypted in transit |
| Cloud hosting & storage providers (e.g., AWS) | Secure infrastructure, backups, media storage | ISO 27001 / SOC 2 where applicable |
| Analytics services (privacy-focused) | Aggregate traffic insights | Pseudonymised where possible |
All third-party processors act under our instructions and must keep data confidential.
5. Data Retention
- Account data - until you delete your account or request erasure.
- Audio & transcripts - until you delete them, or 90 days after account deletion.
- Financial records - 7 years (legal requirement).
6. Your Rights
| Region | Your Rights Include |
|---|---|
| Australia | Access, correction, and complaint lodging under the Privacy Act 1988 |
| EU/UK (GDPR) | Access, rectification, erasure, restriction, portability, objection, and complaint to a supervisory authority |
To exercise any right, email hellowhatayarn@gmail.com.
7. Children’s Privacy
The Service is not directed to children under 13. If you believe a child has provided personal data, please contact us so we can delete it.
8. Cookies & Tracking Choices
Most browsers let you refuse or delete cookies. Disabling cookies might limit functionality (e.g., staying signed in).
9. Security
We employ industry-standard technical and organisational measures such as encryption in transit, role-based access controls, and regular security audits. No system is 100% secure, so we encourage using a strong, unique password.
10. Changes to This Policy
We may update this Privacy Policy periodically. Material changes will be emailed to you and posted on this page with a new “Last updated” date. Continued use of the Service after changes means you accept the revised Policy.
11. Contact
Questions or concerns? Email hellowhatayarn@gmail.com.
