Privacy Policy

Effective as of 01/04/2026

This Privacy Policy describes how Skywalk, Inc. d/b/a Subtle Computing (“Subtle,” “we,” “us,” or “our”) processes personal information that we collect through our digital or online properties or services that link to this Privacy Policy (including as applicable, our website located at https://www.subtle.co/, our hardware devices, companion mobile applications, and social media pages) as well as our marketing activities, and other activities described in this Privacy Policy (collectively, the "Services").

This Privacy Policy does not apply to information that we process on behalf of our business customers (such as businesses and other organizations) while providing the Subtle platform/services to them. Our use of information that we process on behalf of our business customers is governed by our agreements with such customers, and your agreement with them. If you have questions regarding your personal information that we process on behalf of another business that you have a relationship with, please direct your questions to that business.

We do not sell your personal information.

Index

Personal information we collect
How we use your personal information
How we share your personal information
Your choices and rights
Voice data and AI services
Other sites and services
Security
International data transfers
Children
Changes to this Privacy Policy
How to contact us

Key Definitions

“Dictation Data” means (i) audio recordings, (ii) text transcriptions, and (iii) edits/corrections or commands associated with your voice interactions.

“Privacy Mode” is an optional setting that limits how Subtle stores and uses Dictation Data, as described below.

“Context Awareness” (if enabled) means Subtle may process limited, relevant content from the active app (e.g., surrounding text in the current text field, app name) to improve transcription accuracy and formatting.

Personal Information We Collect

Information You Provide to Us

Depending upon the context in which you interact with us, personal information you may provide to us through the Services includes:

Account Information: Name, email address, password, phone number, and other registration details when you create an account.

Communication Information: Information you provide when you contact us, participate in surveys, or engage with our support team.

Payment Information: Billing address, payment card details, and transaction information when you make purchases.

Profile Information: Preferences, interests, and other information you add to your account profile.

Dictation Data

When you use our hardware device and companion applications, we process Dictation Data to provide the Services (e.g., transcription and command execution).

Voice Interactions: Voice recordings that are transcribed into text or passed to a conversational AI model.

Transcription Data: Text transcriptions from all voice interactions with our device, including:

Direct voice commands and queries
Dictation into text fields
Content you affirmatively dictate through our Services

Context Awareness (Optional): If enabled, we may process limited relevant text from the active app (e.g., surrounding text in the current field, app name) to improve formatting and transcription accuracy.

Interaction Metadata: Information about your voice interactions including timestamps, device identifiers, session duration, language preferences, and interaction patterns.

Content of Communications: The substance of what you or others say near the device while activated, which may include names, addresses, health information, financial data, or other sensitive information.

If you enable Privacy Mode (Settings → Data and Privacy), we do not store Dictation Data (audio, transcripts, edits) and do not use it for model training.

If you choose to disable Privacy Mode, your Dictation Data may be used to evaluate, train, and improve Subtle’s AI models and features.

Important Notice: Our device may capture conversations of individuals other than you. You are responsible for informing others in your vicinity that the device may be recording and obtaining any necessary consent. You represent and warrant that you have obtained all necessary consents from third parties whose voices may be captured.

We never sell your data. Our revenue comes from selling products and services, not your information. Any stored Dictation Data is encrypted in transit and at rest in our servers.

Information from Third-Party Sources

We may combine personal information we receive from you with personal information that we obtain from other sources, such as:

Public sources, including public records, social media platforms, and other publicly available sources
Service providers that provide services on our behalf or help us operate the Services
Business partners who provide co-branded services or engage in joint marketing activities

Automatic Data Collection

We, our service providers, and our business partners may automatically log information about you, your computer or mobile device, and your interaction over time with the Services, such as:

Device Information: Hardware model, operating system version, unique device identifiers, network information, IP address, and device settings.

Usage Information: Pages or screens viewed, time spent on pages, navigation paths, click data, and other usage statistics.

Location Information: General location derived from IP address and, with your permission, precise geolocation data.

Voice-Activated Collection: Our hardware device continuously monitors for activation commands when powered on. Upon detecting an activation phrase:

The device begins recording audio
Audio is processed and converted to text in the cloud
The text transcription may be processed by an AI model
AI model outputs are returned to your device
If Privacy Mode is OFF, Dictation Data and AI model outputs may be used to improve our services as described in this Privacy Policy
Background sounds and conversations may be inadvertently captured

Cookies and Tracking Technologies

We use cookies, pixel tags, local storage, and similar technologies to automatically collect information about your activities over time across the Services, including:

Session cookies (deleted when you close your browser)
Persistent cookies (remain until deleted or expired)
Web beacons and pixel tags
Software development kits (SDKs)

How We Use Your Personal Information

Service Delivery and Operations

We use your personal information to:

Provide, maintain, and improve our Services
Process transactions and send related information
Send administrative messages, updates, security alerts, and support messages
Respond to your comments, questions, and requests
Provide customer service and support
Authenticate users and prevent fraud

Model Training and Development

If Privacy Mode is OFF, we may use Dictation Data to:

Train and improve our proprietary AI models and natural language processing capabilities
Develop new features, products, and services
Improve transcription accuracy, response quality, and language understanding
Create aggregated insights about language patterns and usage trends
Enhance wake word detection and voice recognition capabilities

If Privacy Mode is ON, we do not store Dictation Data and do not use it for model training.

Analytics and Improvement

We analyze usage of our Services to:

Understand how users interact with our Services
Identify trends and usage patterns
Measure the effectiveness of features
Diagnose technical issues
Develop new products and services

Marketing and Advertising

With your consent where required, we may use your information to:

Send promotional communications about our products and services
Personalize marketing messages based on your interests
Conduct contests, sweepstakes, and promotions
Measure the effectiveness of our marketing campaigns

Legal Compliance and Protection

We may use your personal information to:

Comply with applicable laws, regulations, and legal processes
Respond to government requests and cooperate with law enforcement
Enforce our terms and policies
Protect our rights, privacy, safety, or property, and that of our users and others
Investigate, prevent, or take action regarding illegal activities, suspected fraud, or violations of our terms

Aggregated and Anonymized Data

We may create aggregated, de-identified, or anonymized data from your personal information. We may use and share this data for any lawful business purpose, including analytics, research, and marketing. This data cannot reasonably be used to identify you.

How We Share Your Personal Information

Third-Party AI Service Providers

We share Dictation Data with third-party artificial intelligence and large language model providers (such as OpenAI, Anthropic, or similar services) to:

Process and understand natural language commands
Generate responses to your queries
Improve transcription accuracy and quality
Provide enhanced AI-powered features

We use enterprise API services from our AI providers that are contractually prohibited from training on your data. Per our agreements, these providers:

Process your data solely to provide services to us
Delete your data within 30 days of processing
Do not use your data for model improvement

While we have contractual protections and monitor for compliance, we cannot provide absolute guarantees about third-party operations.

Service Providers

We share personal information with vendors and service providers that perform services on our behalf, including:

Payment processing
Cloud storage and hosting
Analytics and performance monitoring
Customer support
Marketing and advertising
Security and fraud prevention

Legal and Protective Disclosures

We may disclose personal information:

To comply with law, regulation, legal process, or government request
To protect rights, property, or safety
To investigate or prevent suspected fraud or illegal activity
To enforce our agreements and policies
With your consent or at your direction

Business Transfers

We may transfer personal information in connection with:

Merger, acquisition, or sale of all or a portion of our assets
Bankruptcy, dissolution, or reorganization
Due diligence related to such transactions

We do not sell personal information.

Your Choices and Rights

Data Controls: Privacy Mode

Privacy Mode ON (no storage, no training). If you enable Privacy Mode, we process your Dictation Data only to provide real-time transcription and command execution, and we do not store your Dictation Data and do not use it for model training. We may still collect limited usage statistics that do not include Dictation Data content (e.g., feature usage counts, performance metrics, and crash logs).

Privacy Mode OFF (storage + improvements, including training). If you disable Privacy Mode, we may store and use your Dictation Data to provide, maintain, protect, troubleshoot, and improve the Services, including evaluating, training, and improving our AI models and features.You can change this setting at any time in Settings. Changes apply going forward

Retention of Dictation Data

When Privacy Mode is OFF, we retain Dictation Data for as long as needed to provide and improve the Services, unless you delete it earlier. We may retain certain data longer for security, legal compliance, and dispute resolution.

When Privacy Mode is ON, we do not store Dictation Data.

Data Deletion Rights

You have the right to request deletion of your personal information, including transcription data, at any time by:

Accessing the deletion tool in your account settings
Contacting us at contact@subtle.co
Submitting a request through our privacy portal

Upon receiving a verified deletion request, we will:

Delete your personal information from our active databases within 30 days
Remove your data from future training datasets
Request deletion from our service providers, including third-party AI providers

Important Limitations: We cannot delete:

Data already incorporated into trained AI models
Aggregated or anonymized data that cannot identify you
Data we must retain for legal, tax, or regulatory compliance
Data necessary to complete transactions you've initiated
Data already transmitted to and processed by third-party AI providers
Information necessary for security, fraud prevention, or to protect against illegal activities

Consent Management

Privacy Mode Control (Training + Storage): Privacy Mode controls whether we store and use Dictation Data for improvements, including model training. When Privacy Mode is ON, we do not store or train on Dictation Data. When Privacy Mode is OFF, we may store and use Dictation Data for improvements, including model training. You may change this at any time in Settings.

Third-Party AI Processing: We use enterprise versions of third-party AI services (currently including OpenAI and Anthropic APIs) configured to:

Prevent training on your data
Delete your data within 30 days of processing
Process data only to provide our services

These contractual protections apply to our enterprise API agreements. We cannot guarantee absolute compliance by third parties but select only providers with appropriate privacy commitments and monitor for compliance where possible.

Voice Activation Controls: You may disable always-listening features through device settings. When disabled, you must manually activate recording for each interaction.

Marketing Communications: You may opt out of promotional emails by following the unsubscribe link in any marketing email or by updating your preferences in account settings.

Access and Correction

You may access, review, and update your personal information through your account settings or by contacting us. We may require verification of your identity before processing requests.

Data Portability

Where technically feasible and required by law, you may request a copy of your personal information in a structured, commonly used, and machine-readable format.

Additional Jurisdiction-Specific Rights

Depending on your location, you may have additional rights including:

Right to object to processing
Right to restrict processing
Right to withdraw consent
Right to non-discrimination for exercising privacy rights
Right to designate an authorized agent
Right to appeal our decisions regarding your requests

To exercise any of these rights, contact us using the information provided below. We may need to verify your identity before processing your request.

Voice Data and AI Services

Special Considerations for Voice-Activated Services

Activation and Awareness: By activating our device, you acknowledge and consent to:

Continuous monitoring for wake words when the device is powered on
Recording and transcription of speech following wake word detection
Processing of potentially sensitive information spoken near the device
Possible capture of third-party voices and background conversations
Sharing of transcriptions with third-party AI services for processing

Sensitive Information Risks: Our device may inadvertently capture sensitive information including but not limited to:

Health and medical information
Financial account details
Personal identification numbers
Private conversations
Children's voices
Legally privileged communications
Authentication credentials

We strongly recommend:

Disabling or muting the device during sensitive conversations
Reviewing transcription logs regularly
Immediately deleting sensitive transcriptions
Not speaking passwords or highly sensitive information near the device

Accuracy Disclaimer: Voice transcription and AI-generated responses may contain errors. We do not guarantee accuracy and are not responsible for:

Transcription errors or omissions
Misinterpretation of commands
Incorrect AI-generated responses
Actions taken based on inaccurate transcriptions or responses
Failure to detect wake words or commands

Third-Party Voice Capture: You are solely responsible for:

Informing others that the device may be recording
Obtaining necessary consents from individuals whose voices may be captured
Ensuring compliance with applicable recording and privacy laws in your jurisdiction
Any claims arising from capture of third-party voices

Other Sites and Services

The Services may contain links to third-party websites, applications, and services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing them with personal information.

Security

We implement administrative, technical, and physical security measures designed to protect your personal information, including:

Encryption of data in transit and at rest
Access controls and authentication requirements
Regular security assessments and audits
Employee training on data protection

However, no security measures are perfect or impenetrable. We cannot guarantee the security of your information, particularly:

Data shared with third-party AI providers
Information inadvertently captured through voice activation
Data incorporated into trained AI models
Transcriptions of sensitive information you choose to speak near the device

You are responsible for maintaining the confidentiality of your account credentials and for controlling access to your devices.

International Data Transfers

We are headquartered in the United States and process information in the United States and other countries. Your personal information may be transferred to, stored in, and processed in countries other than your own, which may have different data protection laws than your jurisdiction. By using our Services, you consent to the transfer of your information to countries outside of your jurisdiction.

Where required by law, we implement appropriate safeguards for international data transfers, which may include:

Standard contractual clauses
Adequacy decisions
Your explicit consent

Children

Our Services are not intended for use by or around anyone under 18 years of age. We do not knowingly collect personal information from children under 18. Our device may inadvertently capture children's voices. If you become aware that a child's voice or information has been captured:

Immediately delete the relevant transcriptions
Disable the device when children are present
Contact us at contact@subtle.co for assistance

We will promptly delete any children's data upon becoming aware of its collection, which may impact Service functionality. Parents or guardians who believe we have inadvertently collected information from their child should contact us immediately.

Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy at any time. If we make material changes, we will notify you by:

Updating the effective date at the top of this Privacy Policy
Posting a notice on our Services
Sending you an email notification (if we have your email address)

Material changes will be effective upon posting or as otherwise indicated. Your continued use of the Services after changes become effective constitutes acceptance of the revised Privacy Policy. We may seek affirmative consent for certain material changes as required by law.

Limitation of Liability and Indemnification

TO THE MAXIMUM EXTENT PERMITTED BY LAW, WE DISCLAIM ALL LIABILITY FOR:

UNAUTHORIZED CAPTURE, USE, OR DISCLOSURE OF SENSITIVE INFORMATION
THIRD-PARTY ACCESS TO YOUR DATA OR TRANSCRIPTIONS
ACCURACY OF TRANSCRIPTIONS OR AI-GENERATED RESPONSES
DECISIONS OR ACTIONS BASED ON OUR SERVICES
VIOLATION OF THIRD-PARTY PRIVACY RIGHTS
RETENTION OF DATA BY THIRD-PARTY AI PROVIDERS
INABILITY TO FULLY DELETE DATA FROM TRAINED MODELS
ANY INDIRECT, INCIDENTAL, SPECIAL, OR CONSEQUENTIAL DAMAGES

You agree to indemnify, defend, and hold harmless Skywalk and its officers, directors, employees, and agents from any claims, damages, losses, liabilities, and expenses (including attorneys' fees) arising from: (i) your use of the Services; (ii) your violation of this Privacy Policy; (iii) your violation of any third-party rights, including privacy rights of individuals whose voices are captured by our device; or (iv) your failure to obtain necessary consents.

How to Contact Us

For questions about this Privacy Policy or our privacy practices, please contact us at:

Email: contact@subtle.co

‍

Mailing Address:

Skywalk, Inc. d/b/a Subtle Computing

855 El Camino Real, Suite 13A-230

Palo Alto, CA 94301

United States

‍

For data protection inquiries or to exercise your privacy rights, please include "Privacy Request" in the subject line of your email. We will respond to verified requests within the timeframe required by applicable law.