Sign in
Legal

Privacy Policy

Last updated: May 19, 2026 · Effective: May 19, 2026

Tayle helps you capture and preserve voice-recorded stories. Those stories are some of the most personal data you'll ever create, and we take that seriously. This policy explains what we collect, why, who we share it with, and the control you have over it.

If you'd rather hear the short version: your stories are yours. We don't sell your data. We don't use your recordings to train public AI models. You can delete your account and your content at any time.

1. Who we are

This policy applies to Tayle ("Tayle," "we," "us"), operator of tayle.co and the Tayle application at beta.tayle.co, including the Tayle Concierge service.

For privacy questions, data requests, or to exercise any right described below, email privacy@tayle.co.

2. What this policy covers

This policy covers personal information we collect when you:

  • Visit our marketing site at tayle.co.
  • Create an account and use the Tayle application.
  • Record interviews, upload media, or contribute as a collaborator on someone else's Tayle.
  • Purchase a subscription, top-off pack, or the Tayle Concierge service.
  • Contact us by email or book a call.

It does not cover third-party websites you reach through links from Tayle. Those services have their own privacy policies.

3. What we collect

Information you give us

  • Account information — name, email address, and password (stored hashed).
  • Voice recordings made during AI-led interviews, including any background sound captured by your microphone while a session is active.
  • Transcripts and AI-generated summaries derived from those recordings.
  • Uploaded media — photos, videos, voice notes, and documents you attach to a Tayle.
  • Story content — anything you write, edit, or rearrange inside the app.
  • Collaborator information — when you invite a family member or friend, we collect the email address or name you provide, and any submissions, questions, or media they contribute.
  • Communications — what you send us by email or contact form.

Information we collect automatically

  • Usage data — pages visited, features used, time on page, and similar product analytics.
  • Device and connection data — IP address, browser type, operating system, device type, and approximate location derived from your IP.
  • Diagnostic data — error logs, performance metrics, and crash reports.
  • Cookies and similar technologies — see Section 9.

Information from third parties

  • Payment information — Stripe collects and processes your card or bank details directly. Tayle never sees your full card number; we receive a token, the last four digits, and subscription status.
  • Concierge inputs — if a family member books a Concierge engagement on your behalf, we receive the contact information they provide.

4. How we use your information

We use the information we collect to:

  • Run the AI interviewer, transcribe recordings, and generate the memoir or story output you asked for.
  • Store your recordings, transcripts, and media so you can return to them, edit them, and share them.
  • Operate collaborator features — invitations, contributed questions, family submissions.
  • Process payments, manage subscriptions, and apply usage limits (minutes, storage).
  • Deliver Tayle Concierge engagements, including human interviewing, editing, and printing.
  • Improve the product — fix bugs, monitor performance, understand which features are working.
  • Communicate with you — onboarding, service announcements, billing notices, and optional product updates.
  • Detect abuse, prevent fraud, and meet legal obligations.

5. Voice recordings and AI

Voice is the heart of Tayle, and it's also our most sensitive category of data. Some specifics:

  • Recordings are processed by our AI voice partner to enable real-time conversation and produce transcripts.
  • Transcripts are processed by AI models to summarize, organize, and stitch stories into a memoir.
  • We do not use your recordings, transcripts, or memoir content to train any general-purpose or third-party AI model. Our subprocessors are contractually prohibited from doing so as well.
  • We may use de-identified, aggregated patterns (e.g., average interview length) to improve our own prompts and features. This never includes the content of what you said.
  • Tayle Concierge involves human team members listening to and editing recordings as part of producing your memoir. Those team members are bound by confidentiality.

6. Who we share information with

We don't sell your personal information. We share it only with the following categories of recipients, and only as needed:

People you choose

When you invite a collaborator or share a Tayle, the people you grant access to can see, hear, and (if you allow it) contribute to that content. You control what each person can do.

Service providers (subprocessors)

We use a small set of trusted vendors to run Tayle. Each is bound by a data processing agreement that restricts their use of your information to providing services to us:

Provider Purpose
Supabase Authentication, database, and storage of stories and media.
Vapi Real-time voice AI for conducting interviews and producing transcripts.
Stripe Payment processing and subscription management.
PostHog Product analytics — which features are used, where users get stuck.
Sentry Error monitoring and performance diagnostics.
Cloud hosting and email Web hosting, transactional email, and backups.

Legal and safety

We may disclose information when required by law, to enforce our Terms, or to protect the rights, property, or safety of Tayle, our users, or others. We push back on overbroad requests and notify affected users where we are legally permitted to do so.

Business transfers

If Tayle is involved in a merger, acquisition, or sale of assets, personal information may transfer as part of that transaction. We will notify you before your information becomes subject to a different privacy policy.

7. How long we keep your information

  • Account, stories, and media — kept for as long as your account is active.
  • Deleted content — removed from active systems within 30 days, and from backups within 90 days.
  • Closed accounts — fully deleted within 30 days of your request, except where we are legally required to retain certain records (e.g., tax and payment records for up to seven years).
  • Diagnostic and analytics data — retained for up to 24 months, then aggregated or deleted.

8. Security

We use encryption in transit (TLS) and at rest for stored content, role-based access controls, and audited infrastructure providers. No system is perfectly secure, but we treat your stories like the heirloom recordings they are. If we ever experience a security incident affecting your data, we will notify you and any relevant regulators as required by law.

9. Cookies and similar technologies

We use a small number of cookies and similar technologies for:

  • Essential — keeping you signed in, remembering basic preferences. These cannot be turned off.
  • Analytics — measuring product usage via PostHog so we can improve Tayle.
  • Fonts — our marketing site loads fonts from Google Fonts, which may receive your IP address and user-agent as a result.

You can control cookies through your browser settings. Blocking essential cookies will prevent you from signing in.

10. Your rights and choices

Depending on where you live, you may have the right to:

  • Access the personal information we hold about you.
  • Correct information that is inaccurate or incomplete.
  • Delete your account and the content tied to it.
  • Export your stories, transcripts, and uploaded media.
  • Object to or restrict certain processing.
  • Withdraw consent where processing is based on consent.
  • Lodge a complaint with your local data protection authority.

Most of these can be done directly inside the app. For anything else, email privacy@tayle.co. We respond within 30 days.

11. For users in the EU, UK, and California

EU/UK (GDPR/UK GDPR). The legal bases we rely on are: performance of a contract (to run the service you signed up for), legitimate interests (to keep Tayle secure and improve it), consent (for optional features and marketing email), and legal obligation. International transfers of personal data outside the EU/UK rely on Standard Contractual Clauses or equivalent safeguards.

California (CCPA/CPRA). In the past 12 months we have collected the categories described in Section 3, used them for the purposes described in Section 4, and disclosed them to the categories of recipients described in Section 6. We do not sell or "share" personal information for cross-context behavioral advertising as those terms are defined under California law. California residents have the right to know, delete, correct, and limit use of sensitive personal information, and to be free from discrimination for exercising those rights.

12. Children

Tayle is not intended for children under 13, and we do not knowingly collect personal information from them. If a child appears in stories or media uploaded by an adult collaborator, that content is treated as the adult account holder's data. If you believe a child has provided us with personal information directly, contact us and we will delete it.

13. Changes to this policy

We may update this policy as Tayle evolves. When we make material changes, we will notify you by email or through the app at least 14 days before the changes take effect. The "Last updated" date at the top of this page always reflects the current version.

14. Contact us

Questions about privacy, a data request, or anything else covered here:

Email: privacy@tayle.co