Privacy Policy

vidivici is a field operations platform that connects on-site teams with remote supervisors via smart glasses, live video calls and artificial intelligence. This policy describes how we handle the information you share when using the website vidivici.ai and the vidivici mobile app.

Data controller: vidivici (Dominican Republic). Contact: hola@vidivici.ai.

2.1 Website registration (waitlist): full name, email, company (optional), professional role (optional), team size (optional).

2.2 App account: full name, email, password (hashed, never stored in plaintext), profile picture (optional), preferred language, assigned role in your organization, organization membership.

2.3 Content generated during use:

• Video call sessions: live audio and video (transmitted via LiveKit, see §4). Audio is transcribed in real-time and only the resulting text is stored. Raw audio is NOT persisted beyond the duration of the call.
• Transcripts: speech-to-text output labeled with the identifier of the participant who spoke.
• Notes, action items and comments you create manually or that the AI generates as part of the session summary.
• Photos: images captured during a session (stored in Supabase Storage, see §4).
• Mentions and task assignments to other users in your organization.

2.4 Technical information: device type, operating system, app version, anonymized crash identifiers (Sentry), push notification tokens (FCM/APNs), IP address at connection time (standard server logs).

2.5 What we do NOT collect: GPS location, health data, financial data (card or bank account numbers), device contacts, browsing history outside vidivici.

Only for the purposes listed below:

• Operate the service: authenticate your account, connect you to calls, generate transcripts and summaries, persist your notes and photos.
• Improve the product: diagnose errors (crash logs via Sentry, without user content), understand which features are used most in aggregate.
• Communicate with you: app notifications (push), email confirmations, support when you request it.
• Comply with legal obligations when a competent authority requires it.

We do not sell or share your information with third parties for marketing, advertising or profiling. We do not use advertising tracking cookies.

To operate the service we rely on third-party providers that process data on our behalf (compute, storage, AI, messaging). The full list with each provider's role and region is published on a dedicated page that we update whenever we add, remove or change a provider.

→ View sub-processors

For international transfers we apply Standard Contractual Clauses with each provider, per GDPR.

• User account: for as long as your account is active. If you request deletion, see §7.
• Live call audio: NOT stored. Processed in real-time and discarded when the session closes.
• Transcripts, notes, action items, photos:according to your organization's retention policy (configurable by the admin between 30 and 365 days). After that period, data is automatically deleted by a daily process.
• Technical logs and crashes: 90 days, then aggregated without personal identifiers.
• Waitlist data: as long as you remain interested. On-demand deletion at hola@vidivici.ai.

Data is stored on infrastructure located in the United States (Supabase, LiveKit, Vercel, Cloudflare R2). Encrypted at rest (AES-256) and in transit (TLS 1.2+). Internal access is restricted by Row-Level Security at the database level and by least-privilege principle for authorized personnel.

You can request deletion of your account and all associated data from within the app: Profile → Settings → Delete account.

• Deletion is immediate at the access level (your account becomes inactive right away and you can no longer use the app).
• Data is permanently deleted after 30 days. During that window you can cancel the deletion via the link in the confirmation email.
• After 30 days, data is unrecoverable. Notes and photos you shared with your organization are reassigned to a placeholder "Deleted user" so collaborative history is not broken, but without any link to your identity.
• Logs and backups may retain references for up to 30 additional days until the natural rotation cycle.

If you prefer manual processing, write to hola@vidivici.ai from the email registered to your account.

Subject to applicable law (including GDPR, CCPA and Dominican legislation), you have the right to:

• Access: receive a copy of the data we hold about you, in portable JSON format, from within the app (Profile → Export my data).
• Rectification: correct inaccurate data from the Profile screen or by email request.
• Erasure: see §7.
• Portability: export your data in structured format to move it to another service.
• Objection and restriction of processing in specific cases provided by law.
• Withdraw consent at any time without affecting the legality of prior processing.
• Lodge complaints with the competent data protection authority.

To exercise any of these rights: hola@vidivici.ai. We respond within 30 days max.

vidivici uses AI models (Anthropic Claude for summaries, Deepgram for transcription) to process the content of your sessions. Key points:

• AI providers do not use your data to train their models (commercial agreements with zero-data-retention or no-training).
• AI-generated summaries and action items are suggestions. Final responsibility for operational decisions remains with you and your team.
• If you find an error in a transcript or summary, you can correct it manually in the app.

The vidivici.ai website only uses essential cookies (browser session, language preference). The mobile app uses no cookies — authentication is handled via tokens stored in SecureStore. We have no advertising or third-party analytics tracking cookies. See the Cookie Policy for details.

vidivici is designed for professional B2B use. It is not directed at users under 16 and we do not knowingly collect information from minors. If you believe a minor shared data with us, contact hola@vidivici.ai and we will delete it.

We apply technical and organizational measures: encryption at rest and in transit, Row-Level Security, two-factor authentication available, periodic API key rotation, periodic security audits, error monitoring via Sentry. No system is 100% secure — if we detect a breach affecting your data, we will notify you without undue delay.

If we update this policy, we will change the date and version number above. Material changes will be communicated by email to active users at least 30 days before they take effect.

Questions, requests or complaints: hola@vidivici.ai.

Spanish version available at vidivici.ai/legal/privacidad.