Privacy Policy

Last updated: February 7, 2026

This Privacy Policy (the "Policy") describes how Kirill Dorkin (MicroStudio), Kyrgyz Republic ("we", "us") processes information when you use Whisper (the "Service").

The Service includes the website, backend API and the Whisper desktop application. By using the Service you acknowledge that you have read this Policy. If you disagree with it, do not use the Service.

1. Controller and contacts

  • Controller/Operator: Kirill Dorkin (MicroStudio), Kyrgyz Republic.
  • Email (including privacy/refunds): microstudio132@gmail.com.
  • Telegram: @microstudio_official.

2. What we process

We process information that is necessary to provide the Service, take payments, keep the Service secure, and provide support.

2.1. Information you provide

  • Email (to deliver the activation token and payment-related notifications).
  • Content you submit to the Service (prompts, messages, interview context, screen text, attachments you choose to upload, etc.).
  • Support requests and the information you include in them.

2.2. Technical and usage data

  • IP address, timestamps, User-Agent, request metadata and error logs.
  • Cookies/identifiers (for example auth_token, trial_device_id) for authentication and abuse prevention.
  • Usage and budget metadata (for example usage/limit) to control costs and prevent abuse.

2.3. Payment data

  • We do not store full card details. Payments are processed by payment providers (for example Paddle, Cryptomus and others).
  • We may receive payment status and basic attributes (for example email, amount/currency, transaction/order IDs) to deliver access, provide support and comply with accounting/tax requirements.

3. Purposes

  • Provide the Service features and issue/validate access tokens.
  • Authentication, security, abuse prevention and incident investigation.
  • Payments, delivery of paid access, and refund handling (if applicable).
  • Customer support and troubleshooting.
  • Service improvements and reliability (analytics and diagnostics).
  • Legal compliance and protection of our rights.

4. Sharing and third parties

We do not sell personal data. We may share information only as needed to operate the Service:

  • AI providers used to process requests (for example OpenAI and Google/Gemini).
  • Payment providers (for example Paddle, Cryptomus and others).
  • Email/SMTP providers (to send emails, including activation tokens).
  • Infrastructure providers (hosting, monitoring, security).
  • GeoIP providers (for example ip-api.com) to enrich IP-based security/admin signals.

Each provider processes data under its own terms and policies. We select providers that offer reasonable security safeguards.

5. International processing

Because we use global vendors (including AI and payment providers), information may be processed outside of your country. By using the Service you consent to such transfers to the extent necessary to provide the Service.

6. Storage and retention

  • Token, payment and security data may be stored for as long as needed to provide access, prevent abuse and resolve disputes.
  • Session history and content may be stored if you use history/saving features. You can delete history in the app (if available) or by contacting support.
  • Resume files for analysis are processed in memory and are not stored by us as files; the extracted text and analysis results may be included in the response and in your history if you choose to save it.

7. Security

We use technical and organizational measures (encryption in transit, access control, logging and abuse limits). However, no method of transmission or storage can guarantee absolute security.

8. Cookies

We use cookies and similar technologies for:

  • authentication (for example auth_token),
  • abuse prevention and correct trial operation (for example trial_device_id),
  • reliability and diagnostics.

You can delete cookies in your browser settings, but some features may stop working properly.

9. Your rights

Depending on your location, you may have rights to access, correct or delete personal data, or to restrict processing. To exercise your rights, contact microstudio132@gmail.com.

10. Changes

We may update this Policy. The new version becomes effective when published on the website. The "Last updated" date is shown at the top.