Privacy Policy

Orquestria is a Windows AI communication platform with four modules: Aria (push-to-talk dictation), Harmony (meeting intelligence), Maestro (AI implementation coach), and Pulse (communication analytics). Harmony is also available as a standalone Chrome extension for browser-based meetings.

We take your privacy seriously. This policy explains exactly what data each module collects, why, and how we handle it.

Email address: Collected at registration. Used for account verification, plan management, and support responses. Never sold or shared with third parties for marketing.

Password: Stored as a bcrypt hash. We never see or store your plaintext password.

Plan & billing status: Stored to enforce plan limits and unlock paid features. Payment details are handled entirely by Stripe — we never see your card number.

Audio: Your voice audio is sent to a transcription service (Groq Whisper) via our server proxy. Audio is not stored after transcription — it is deleted immediately upon receiving the text response.

Transcription text: Not stored on our servers. The transcribed text is returned to your device and injected locally.

Word count: We track the number of words transcribed per account per week to enforce the Free plan limit (2,000 words/week). This count is stored server-side and reset weekly. Paid Aria plans have no word limit.

API keys: If you use a custom OpenAI key, it is stored locally on your device only and never transmitted to our servers.

Meeting audio: When you record a meeting, audio is sent to our server proxy and forwarded to a transcription service (Deepgram). Audio is not stored after transcription — it is deleted immediately.

Meeting transcripts & AI outputs: Transcripts, AI summaries, action items, topics, questions, and sentiment data are stored in your account so you can access them later. This data is associated with your user ID.

Meeting retention: Free and Aria accounts do not have meeting storage access. Harmony and Orquestria plan accounts retain meetings for up to 1 year. Enterprise accounts retain meetings indefinitely. You may delete any meeting at any time.

Meeting count: We track the number of meetings per month to enforce the Free plan limit (5 meetings/month).

Chrome extension: The Harmony Chrome extension captures meeting audio from your browser tabs. The same data handling rules above apply — audio is not stored, transcripts and AI outputs are retained per your plan.

Maestro is currently in development. This section will be updated when Maestro launches. No additional data beyond your account information is collected for waitlist registrations.

Pulse derives communication analytics from your Aria word counts and Harmony meeting data. It does not independently collect any new data. All Pulse insights are computed from data already described above and are visible only to you within your account.

• The content of your transcriptions (not stored on our servers)
• Your API keys (stored locally on your device only)
• Browsing history or behavior beyond your use of Orquestria
• Any data from third-party applications you dictate into
• Screen content or screenshots
• Location data

• Email — account verification, password reset, support responses
• Word count — enforce Free plan weekly limit, reset weekly
• Meeting count — enforce Free plan monthly limit
• Meeting transcripts & AI outputs — display in your account dashboard
• Plan status — unlock features, manage subscription lifecycle

We do not use your data to train AI models. We do not sell your data.

Your account data is retained as long as your account exists. Meeting data retention varies by plan as described in the Harmony section above.

You may request full account deletion at any time by emailing contact@orquestria.com. We will delete your account and all associated data within 7 days.

• Groq — transcription API for Aria dictation (audio is not stored)
• Deepgram — transcription API for Harmony meetings (audio is not stored)
• Stripe — payment processing (we never see your card details)
• Resend — transactional email (verification, password reset)
• Supabase — account and meeting data storage (hosted in AWS us-east-1)

Each of these services has their own privacy policy governing how they handle data.

All data in transit is encrypted via HTTPS/TLS. Passwords are hashed with bcrypt before storage. Session tokens are rotated on logout. Audio data is never persisted — it is processed in memory and discarded immediately after transcription.

You have the right to access, correct, export, or delete your personal data at any time. To exercise any of these rights, email contact@orquestria.com.

We may update this policy as our products evolve. We will notify you of material changes by email. Continued use of Orquestria after changes constitutes acceptance of the updated policy.

Privacy questions or data deletion requests: