Privacy Policy

Effective Date: January 30, 2024

1. Introduction

Dicte, an AI-powered meeting recording, transcription, and analysis service (hereinafter "the Service"), is offered by Livdeo SAS, a company registered in France under number 805 407 012, with its headquarters at 2 grande rue, 70190 Bussières, France (hereinafter "Livdeo", "we", or "our").

This Privacy Policy explains how we collect, use, disclose, process, and protect personal information of Dicte users, in compliance with the General Data Protection Regulation (GDPR), the French Data Protection Act, and the European AI Act.

2. Collection and Use of Information

2.1 Types of Information Collected

We collect the following types of information:

  • Account information: name, email address, company, job title, address.
  • Usage data: connection logs, Service usage statistics.
  • User content: audio recordings, transcriptions, generated analyses.

2.2 Purposes of Processing

We use this information to:

  • Provide and improve the Service.
  • Ensure the security and integrity of the Service.
  • Communicate with you regarding your account and the Service.
  • Comply with our legal and regulatory obligations.

2.3 Legal Basis for Processing

The processing of your personal data is based on:

  • The performance of the contract between the user and Livdeo for the provision of the Service.
  • User consent, where required.
  • Livdeo's legitimate interests, while respecting your fundamental rights and freedoms.
  • Compliance with legal obligations to which Livdeo is subject.

3. Processing of Audio Recordings and Transcriptions

3.1 Storage and Transmission of Audio Recordings

Audio recordings are stored locally on users' mobile devices. During processing, the audio is temporarily transferred to Livdeo/Dicte servers for transcription extraction, then immediately deleted.

3.2 Anonymization of Transcriptions

Before any processing by our artificial intelligence modules, the textual content of transcriptions is anonymized to ensure confidentiality and protection of personal data. This anonymization concerns all personally identifiable information, including but not limited to names, addresses, phone numbers, email addresses, identification numbers, and any other information that could directly or indirectly identify an individual.

3.3 Limited Data Use

Anonymized transcriptions are not used to improve our AI services, except with the explicit consent of the user.

4. Data Storage and Security

4.1 Data Location

Our servers are hosted in Europe, in compliance with the strict security and data protection standards of the GDPR.

4.2 Security Measures

We implement appropriate technical and organizational measures to ensure the security of your personal data, including:

  • Encryption of data in transit and at rest.
  • Restricted access to data on a need-to-know basis.
  • Implementation of firewalls and intrusion detection systems.
  • Regular security audits.

4.3 DicteBOX (Enterprise Version)

DicteBOX allows local data processing with specialized AI models for Enterprise plan users, offering enhanced security and confidentiality.

5. Data Retention

5.1 Retention Period

Data is retained for the duration of the Service subscription. At the end of the subscription, data is retained for an additional 30-day period to allow for account reactivation.

5.2 Data Deletion

After the 30-day period following the end of the subscription, all personal data is securely deleted, except for data we are legally required to retain.

6. Data Sharing and Disclosure

6.1 Limited Disclosure

Dicte does not share personal information with third parties, except:

  1. When necessary to provide the Service.
  2. If required by law or in response to a valid legal request.
  3. To protect the rights, property, or safety of Livdeo, its users, or the public.

6.2 Subprocessors

Data may be accessible to selected subprocessors who assist us in operating the Service. These subprocessors are subject to strict confidentiality and data protection obligations.

7. User Rights

In accordance with the GDPR, you have the following rights:

  1. Right to access your personal data.
  2. Right to rectify inaccurate data.
  3. Right to erasure of your data ("right to be forgotten")
  4. Right to restriction of processing.
  5. Right to data portability.
  6. Right to object to processing.
  7. Right not to be subject to a decision based solely on automated processing.

To exercise these rights, contact us at rgpd@livdeo.fr.

8. Compliance with the European AI Act

Dicte commits to comply with the provisions of the European AI Act, including:

  1. Transparency about the use of AI in the Service.
  2. Assessment and management of risks related to AI use.
  3. Appropriate human oversight of AI systems.
  4. Ensuring the quality of data used to train AI models.
  5. Detailed documentation of AI systems used.

9. International Data Transfers

Dicte does not transfer personal data outside the European Union, except under specific agreements compliant with GDPR requirements.

10. Changes to the Privacy Policy

We reserve the right to modify this privacy policy at any time. Changes will be effective upon publication on our website. We will inform you of any significant changes by email or through the Service.

11. Contact

For any questions regarding this privacy policy or our data protection practices, please contact us at:

Livdeo SAS
Attn: Data Protection Officer
14 rue Madeleine Brès
25000 Besançon
France

Email: rgpd@livdeo.fr

You also have the right to lodge a complaint with your local data protection authority if you believe that the processing of your personal data is not compliant with regulations.