Privacy Policy (Developer)

Last Updated Date: November 19, 2025

This Privacy Policy ("Policy") explains how we collect, use, and process personal data when you use our web-based and related tools for developers, including the Plaud Developer Portal and our application programming interfaces (collectively, the "Developer Platform" or "Platform"). The Developer Platform allows you to create and manage a developer account, obtain API credentials, and, with authorization from users of the Plaud applications (the "Plaud App"), access certain data of those end users ("End Users") via our APIs (collectively, the "Developer Services"). The Developer Services are provided by Plaud Inc. ("Plaud", "we", "us", "our"), located at 8 The Green, Ste A, Dover, Kent County, Delaware 19901, US. This document is provided in multiple languages for your convenience. If there is any inconsistency, the English version shall take precedence.

Special Notice (Developers & End Users):

This Policy is intended to help you understand:

how we process personal data about Developers who use the Developer Platform (for example, account, contact, and usage information); and
how we facilitate the sharing of End User data (such as account information, audio recordings, and transcriptions from the Plaud App) with third-party developers when End Users choose to authorize such access.

For End Users: when you authorize a third-party developer application to access your data via the Plaud Developer Platform, we will clearly inform you about the types of data that will be shared and the purposes described by the developer. You may withdraw such authorization at any time through the mechanisms we provide. However, withdrawing authorization does not automatically delete data that the developer has already obtained; the developer is responsible for handling that data according to their own privacy policy.

For Developers: this Policy describes how we process your personal data as a user of the Developer Platform. It does not replace or limit your own obligations under applicable laws or the developer terms you have entered into with us. You must maintain your own privacy policy and comply with all applicable data protection and privacy laws when you process End User data received through our APIs.

Scope of This Policy

Please note that this Privacy Policy applies only to the Developer Services provided by Plaud (including the Developer Portal, APIs, SDKs, and related tools). It does not extend to:

the Plaud App and associated consumer services (which are governed by the Plaud App Privacy Policy); or
any third-party websites, services, or applications operated by Developers or other third parties, even if they interact with our APIs or are accessed via links on our Platform.

When Developers or other third parties process personal data independently of Plaud (for example, in their own apps or systems), their own privacy policies and data-handling practices will govern their collection and use of that data. We strongly encourage both Developers and End Users to review those privacy policies carefully.

1 What data do we collect?

We are committed to operating the Developer Platform in a way that respects privacy while enabling secure and reliable API integrations. To achieve this, we strive to collect only the personal data that is necessary to deliver, secure, and improve the Developer Services.

"Personal data" means any information that can be used to identify an individual, directly or indirectly. We process the following categories of personal data in connection with the Developer Platform.

Information Developers directly provide or create

Developer Account Information:
Name, email address, encrypted password or other authentication credentials, organization name, role or title, country/region, and a unique developer account ID.
Contact and Business Information:
Name, business email address, phone number, mailing address, company name, website, and other information you provide about your organization.
Subscription and Payment Information:
Plan type, order details (such as order number, amount, and payment status), and purchase history. We do not directly collect or store your sensitive payment details (like credit card numbers); these are handled securely by our third-party payment partners.
Platform Configuration and Application Information:
Information about the applications you register with the Developer Platform, including application name, description, redirect URIs, configured permissions or scopes, and associated settings.
Support and Feedback Information:
Support requests, issue descriptions, error screenshots, logs or code snippets you voluntarily provide, communication records (chat logs, emails, call recordings), and feedback or survey responses related to the Developer Platform.
Contract and Consent Records:
Records of your acceptance of our developer terms, this Policy, and other related policies (e.g., version number, timestamp, IP address), and preferences related to communications and marketing.

Information we collect automatically

When you use the Developer Platform and APIs, we automatically collect certain technical and usage data, including:

Device & Browser Information:
Device type, operating system and version, browser type and version, language settings, and other technical identifiers.
Usage & Performance Data:
Operational logs (such as login timestamps, pages visited, feature usage, configuration changes in the Developer Portal), diagnostic and performance data (such as error codes, crash logs), and API usage metrics (such as the number and frequency of API requests, endpoint access patterns, and success/failure codes).
Security and Access Logs:
IP addresses, authentication events, token creation and revocation, and other logs used for security monitoring, fraud detection, and abuse prevention.
Cookie Information:
Data collected via cookies and similar technologies when you access the Developer Portal, such as session identifiers and preferences.

End User data processed through the Developer Platform

When an End User authorizes a third-party application built by a Developer to access their data via the Plaud Developer Platform, we process the following categories of End User data to fulfill that authorization:

End User Account Information:
Basic account details from the Plaud App, such as username, display name, email address, language settings, and account identifiers.
End User Content:
Depending on the scopes requested by the Developer and approved by the End User, this may include:
- audio recordings created or stored in the Plaud App;
- AI-generated transcriptions, summaries, and other derived text;
- associated metadata (such as file names, timestamps, tags, and device identifiers).
Technical and Contextual Metadata:
Information about when and how End User data was accessed via the APIs, such as timestamps, API endpoints used, and authorization tokens (but not their plain-text secrets).

Some End User content may indirectly include special or sensitive categories of personal data (for example, information about health, religion, or political views that a user chooses to record in audio form). We do not actively categorize or label content in this way, but we treat such data with a high level of protection and require Developers to do the same.

2 How do we use your data?

We use personal data in connection with the Developer Platform for several key purposes: to provide and maintain the Developer Services, to set up and manage developer accounts, to ensure security and prevent abuse, to facilitate End User authorizations, to improve our services, and to comply with legal obligations.

We only process personal data when we have a valid legal basis to do so, which may include consent, the necessity to perform a contract, or compliance with legal obligations, depending on the context and applicable law.

To provide and operate the Developer Platform

We use Developer data to create and manage developer accounts, issue and manage API credentials and access tokens, allow you to register and configure applications, provide documentation, dashboards, and tools for testing and monitoring integrations, and to ensure the correct technical functioning and reliability of the Platform.

We use End User data to fulfill End Users’ choices when they authorize a Developer application, to route data between the Plaud App services and the authorized applications via our APIs, and to maintain accurate records of authorizations and revocations.

To facilitate End User authorizations and data sharing

When an End User is asked to authorize a Developer application, we display the name and identity of the Developer application, show the types of data and permissions requested, and enable the End User to allow or deny access. If the End User confirms, we allow the Developer application to access only the specific categories of data and functionality covered by the authorization and log these authorizations and subsequent API calls for security, auditing, and troubleshooting. Developers act as independent controllers of the End User data they receive via the Developer Platform and must provide their own privacy notices and legal bases for processing that data.

To ensure security, prevent fraud, and enforce our terms

We use Developer and End User data, particularly technical and log data, to authenticate users and secure the Developer Platform and APIs, detect, investigate, and prevent fraud, abuse, unauthorized access, or other malicious activity, enforce our developer terms, API usage limits, and platform rules, and protect the rights, property, and safety of Plaud, our users, and the public.

To communicate with Developers and provide support

We use Developer Account Information, Contact Information, and Support and Feedback Information to respond to your questions and support requests, send service-related communications such as important updates about the Platform, changes to our terms or policies, and security notices, and to collect feedback, conduct surveys, and improve the Developer experience. These communications are considered part of the Developer Services and are often necessary for the proper use of the Platform.

To analyze and improve the Developer Platform

We use aggregated and de-identified or pseudonymized usage data to understand how the Developer Platform is used, diagnose performance issues and improve stability, plan and prioritize new features and integrations, and evaluate the effectiveness of our documentation and tools. Where we rely on cookies or similar technologies for analytics, we will obtain consent where this is required by applicable law.

To comply with the law

We may need to process Developer or End User data to comply with applicable laws and regulations, respond to valid legal processes or requests from competent authorities, and to establish, exercise, or defend legal claims.

Our Commitment Regarding End User Content and AI

We want to be clear about how we handle End User content in the context of the Developer Platform:

We will not use End User content (such as audio recordings, transcriptions, or summaries) that is processed or transmitted via the Developer Platform to train, optimize, or develop our own or any third-party artificial intelligence (AI) or machine learning models unless we have obtained explicit and informed consent from the relevant End Users in advance.
Certain data, such as content submitted to specific AI features in the Plaud App, may be processed in real time by our Large Language Model (LLM) service providers. Our contracts with these providers require that such data is used solely to perform the requested task and is deleted immediately after processing is complete.
Developers are not permitted under our terms to use End User data obtained via the Developer Platform for their own or third-party general-purpose AI or machine learning training unless they have obtained all necessary consents and comply with applicable laws and our developer terms.

For more information about how we handle content at the consumer level, please refer to the Plaud App Privacy Policy.

3 How do we retain and protect your data?

Personal data processed in connection with the Developer Platform is processed and stored on secure servers located in the United States. We retain data only for as long as it is necessary to fulfill the purposes described in this Policy, including:

operating and securing the Developer Platform;
maintaining records of developer accounts and authorizations;
complying with our legal obligations; and
resolving disputes and enforcing our agreements.

Most Developer data is associated with your Developer account and is kept for as long as your account remains active. Logs and other security-related data may be retained for shorter or longer periods depending on technical and legal requirements.

We are committed to protecting your data and have implemented a range of appropriate technical and organizational security measures designed to safeguard it against unauthorized access, use, alteration, or disclosure. These measures may include access controls, encryption, network monitoring, and regular security reviews.

While we take all reasonable measures to secure your information, please be aware that no internet transmission or storage system is ever fully secure. Any data you send to or receive from the Developer Platform is therefore at your own risk.

4 Who do we disclose your data to?

We do not sell personal data. However, in limited circumstances and for specific purposes, we may disclose Developer or End User data processed in connection with the Developer Platform to the following parties:

With our service providers and affiliates

We work with trusted third-party service providers and our corporate affiliates to help us operate, provide, and improve the Developer Platform and the underlying Plaud services. For example, we may use them for:

cloud hosting and data storage;
security, logging, and monitoring;
customer support tools;
payment processing (for paid developer plans, if applicable);
email delivery and communication tools.

We only share the data that is necessary for them to perform these services on our behalf. We have strict contracts in place that require them to keep your data confidential and secure, and they are prohibited from using your data for any other purpose.

With Developers

When an End User authorizes a specific developer application via the Developer Platform, we disclose the categories of End User data covered by that authorization to the relevant Developer. Developers act as independent controllers of that data and must handle it in accordance with their own privacy policies and applicable laws.

Plaud does not control or assume responsibility for how Developers use End User data once it is transferred to them, but we may take actions (including suspending or terminating access) where a Developer is found to be in violation of our terms or applicable law.

For legal compliance and safety

We may be required to disclose personal data to comply with applicable laws or in response to a valid legal process, such as a court order, subpoena, or request from a public or governmental authority. We may also share your information with our legal advisors, auditors, or other professional consultants when it is necessary for purposes such as auditing, compliance, or defending our legal rights.

In connection with a business transfer

If Plaud is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of our assets, personal data processed in connection with the Developer Platform may be shared or transferred as part of that transaction. We will ensure that the new entity is bound by privacy commitments that are at least as protective as this Policy.

5 Where do we transfer your data?

Our main servers are located in the United States. As a result, personal data processed in connection with the Developer Platform will be transferred to and processed in the U.S., which may be outside your country of residence. Additionally, due to the global nature of our operations, our affiliates and service providers may access your data from other countries for the purposes described in this Policy.

We understand that data protection laws vary between countries. To ensure an adequate level of protection when we transfer your data internationally, we rely on legally recognized safeguards. These may include, for example, implementing approved contractual clauses (such as the Standard Contractual Clauses for Europe) or transferring to countries deemed to provide adequate protection by relevant authorities.

6 What are your rights and choices?

Depending on your location and applicable law, you may have certain rights regarding the personal data we process about you in connection with the Developer Platform. These may include:

the right to access the personal data we hold about you;
the right to correct inaccurate or incomplete data;
the right to request deletion of your personal data, subject to certain legal exceptions;
the right to object to or restrict certain types of processing;
the right to data portability, in some circumstances; and
where processing is based on consent, the right to withdraw that consent at any time.

If you are a Developer, you can access and update certain account information directly through your Developer Portal profile settings. For any other requests, or if you are an End User and believe your data has been processed through the Developer Platform, you may contact us using the details in Section "How can you contact us?".

Please note:

If you are an End User, some of your data may be processed only within the Plaud App and is covered by the Plaud App Privacy Policy; you should refer to that document for details and mechanisms to exercise your rights.
For data that we have already transferred to a Developer acting as an independent controller via the Developer Platform, you may need to contact that Developer directly to exercise your rights in relation to their processing.

When you submit a request, we may need to verify your identity before we can proceed and will respond in accordance with applicable data protection laws. You also have the right to lodge a complaint with your local data protection authority.

7 How do we protect minors?

The Developer Platform and Developer Services are intended for adult, professional users. If you do not meet the legal age requirement for adults in your jurisdiction, please do not register for a developer account or use the Developer Platform.

We do not knowingly collect personal data from minors in connection with the Developer Platform. If you are a parent or guardian and become aware that a minor has created a developer account or is using the Developer Platform, please contact us using the details in Section "How can you contact us?" so that we can take appropriate steps, which may include closing the account and deleting related data.

8 What are your rights as a California resident?

If you are a California resident, the California Privacy Rights Act (CPRA) provides you with certain rights regarding your personal data. For details on the categories of personal data we process in the context of the Developer Platform, please refer to Section 1 and Section 4 of this Policy.

Your California Privacy Rights

Subject to certain conditions and exceptions, you may have the following rights:

Right to Know:
You have the right to request information about what personal data we have collected, used, and disclosed about you.
Right to Correct:
You have the right to request that we correct inaccurate personal data we hold about you.
Right to Delete:
You have the right to request that we delete your personal data, subject to certain legal exceptions (for example, where we must retain data to comply with legal obligations or to detect security incidents).
Right to Opt-Out of Sale / Sharing:
You have the right to direct us not to “sell” or “share” your personal data. We do not sell personal data processed in connection with the Developer Platform in the conventional sense. If we engage in activities that may constitute “sharing” under the CPRA (for example, certain analytics or advertising technologies), you will have the ability to opt out, including by using browser-based signals such as the Global Privacy Control (GPC), where applicable.
Right to Limit Use of Sensitive Personal Data:
You may have the right to request that we limit the use of your sensitive personal data. However, this right is subject to exceptions under the law. For example, certain authentication credentials or security data are considered sensitive but are used only for essential purposes, such as securing your account and our services. We do not “sell” or “share” such sensitive data.
Right to Non-Discrimination:
We will not discriminate against you for exercising any of your privacy rights.

How to Exercise Your Rights

To submit a request to exercise your CPRA rights in relation to the Developer Platform, please contact us using the details in Section "How can you contact us?". We will need to verify your identity before processing your request. You may also designate an authorized agent to make a request on your behalf, subject to verification of their authority.

If you wish to appeal a decision we have made regarding your request, you may do so by contacting us. If your appeal is denied, you may have the right to contact the California Attorney General or other relevant authority.

Other California Disclosures

Shine the Light:
We do not disclose personal data to third parties for their own direct marketing purposes.
Minors:
We do not knowingly sell or share the personal data of users under 16 years of age.

9 EU Representative under Article 27 GDPR

In accordance with Article 27 of the General Data Protection Regulation (GDPR), Plaud Inc. has appointed Prighter Group as its official representative in the European Union. Prighter serves as our point of contact for data subjects and supervisory authorities in the EU regarding all matters related to data protection and this Privacy Policy.

EU Representative Contact Details:

Prighter Group
Website: https://prighter.com
Contact Portal: https://app.prighter.com/portal/plaud

If you are located in the European Union and wish to exercise your data protection rights under the GDPR in relation to the Developer Platform, you may contact our EU representative through the above portal or using the contact details provided there.

10 How can you contact us?

If you have any questions about this Privacy Policy, wish to exercise your rights, or have concerns about your data in connection with the Developer Platform, please do not hesitate to contact us.

Our data controller is Plaud Inc., located at 8 The Green, Ste A, Dover, Kent County, Delaware 19901, US.

To ensure your request is handled efficiently, please use the dedicated email address for your region:

For users in North America & South America: [email protected]
For users in Europe & the United Kingdom: [email protected]
For users in Japan: [email protected]
For all other regions: [email protected]

When contacting us, please specify that your inquiry relates to the Plaud Developer Platform.

11 How will this policy be updated?

We will update this Policy in a timely manner as our Developer Platform and applicable laws evolve. We recommend that you regularly review the latest version of this Policy via the Developer Portal.

If there are any substantial changes to this Policy, depending on the nature of such changes, we will notify you in advance through appropriate means, such as in-Portal notifications, emails, or other prominent notices. Where required by law, we will also seek your consent before changes take effect.