Whisper — Privacy Policy

Effective Date: May 17, 2026 · Last Updated: May 17, 2026

This Privacy Policy describes how e2partners ("e2partners," "we," "us," or "our") collects, uses, and discloses information about you when you use the Whisper mobile application (the "App") or any related services (collectively, the "Service").

By downloading, installing, or using the App, you agree to the practices described in this Privacy Policy. If you do not agree, do not use the App.

1. Who We Are

e2partners is the operator of the Whisper App. Contact:

Email: hello@e2partners.co

For purposes of the EU/UK General Data Protection Regulation (GDPR), e2partners is the data controller for personal information collected through the App.

2. Information We Collect

We collect only the minimum information necessary to operate the App. We deliberately do not collect contact information, location, photos, contacts, health data, browsing history, search history, or precise location.

2.1 Information you provide

Apple ID identifier — only if you choose to sign in with Apple. We receive an opaque user identifier and, at your option, your email address (which may be a privacy-relay address provided by Apple).
Voice recordings — audio captured by the microphone when you actively record. By default, audio is processed entirely on your device and is not transmitted to our servers.
Transcripts — text produced from your voice recordings. Transcripts may be transmitted to our backend if you use the AI cleanup features.

2.2 Information collected automatically

Anonymous account identifier — Firebase Authentication assigns each install a randomly generated user identifier. This identifier is not linked to your name, email, or any other personal information unless you separately sign in with Apple.
Subscription state — RevenueCat receives a record of in-app purchases tied to the anonymous account identifier.
Diagnostic and usage data — Firebase Analytics receives non-identifying event data (e.g., that a paywall was shown, that a capture was completed, app session duration). We do not enable advertising features or Google Signals.
Device information — operating system version, app version, device model class (e.g., "iPhone"), and crash logs. We do not collect device serial numbers, IDFA, or any persistent device identifier set by Apple.

2.3 Information we expressly do NOT collect

Real name
Phone number
Postal address
Precise geolocation
Photos, videos, or files outside of voice captures you intentionally record
Contact list
Browsing history outside the App
Health, biometric, or financial information

3. How We Use Information

We use the information described above solely to:

Operate the App, including transcribing your voice and presenting your captures back to you.
Maintain and synchronize your captures across devices on which you sign in (only if you sign in with Apple).
Enable AI cleanup of transcripts when you use those features.
Manage and validate your subscription.
Diagnose and fix bugs and improve the App.
Comply with legal obligations, enforce our Terms of Service, and protect against fraud, abuse, or unauthorized use.

We do not use your information for advertising, profiling, behavioral targeting, sale, or any purpose unrelated to operating the App.

4. Third-Party Service Providers

The App uses a small set of third-party processors who act on our instructions and are contractually limited in their use of your information. Each is independently bound by its own privacy policy and applicable data-protection terms.

Processor	Purpose	What they receive
Google Firebase (Google LLC)	Authentication, Firestore data sync, Cloud Functions backend, Analytics	Anonymous user identifier, capture transcripts (when sync enabled), analytics events
RevenueCat, Inc.	Subscription receipt validation and management	Anonymous user identifier, App Store receipt data
OpenAI, L.L.C.	AI cleanup of transcripts when you use those features	Transcript text only. OpenAI receives no user identifier. Audio is not transmitted to OpenAI.
Apple Inc.	In-app purchases, Sign in with Apple, push notifications	Determined by Apple's own policies

These processors may transfer your information to countries outside your country of residence, including the United States. Such transfers are conducted under appropriate legal mechanisms, including Standard Contractual Clauses where applicable.

We do not sell or share your information with advertisers or data brokers.

5. Legal Bases for Processing (EEA/UK Users)

If you are located in the European Economic Area, United Kingdom, or Switzerland, we rely on the following legal bases under GDPR Article 6:

Contract — processing necessary to provide the Service you have agreed to (Article 6(1)(b)).
Legitimate interests — operating, securing, and improving the Service (Article 6(1)(f)). You may object at any time.
Consent — for optional features that send transcripts to OpenAI for AI cleanup. You may withdraw consent at any time by disabling AI cleanup or deleting the App.
Legal obligations — where required by applicable law (Article 6(1)(c)).

6. Data Retention

Audio recordings are deleted from device storage immediately after transcription.
Transcripts are retained on your device and in your Firestore container until you delete them or delete the App.
Anonymous account identifier and analytics data are retained for up to 26 months and then automatically deleted in line with Firebase Analytics default settings.
Subscription records are retained by RevenueCat and Apple per their respective retention schedules and applicable tax/accounting law.

You may delete all of your data by deleting your account from within the App, or by emailing hello@e2partners.co.

7. Your Privacy Rights

Subject to applicable law, you may have the following rights with respect to your personal information:

Access — request a copy of personal information we hold about you.
Correction — request that inaccurate information be corrected.
Deletion — request that we delete information about you. This may also be initiated by deleting the App and/or your account.
Restriction or objection — request that we limit or stop certain processing.
Data portability — request a machine-readable copy of certain information you have provided to us.
Withdrawal of consent — withdraw consent for processing based on consent at any time.

To exercise any of these rights, email hello@e2partners.co. We will respond within 30 days. We may need to verify your identity before fulfilling a request.

California residents (CCPA/CPRA)

California residents have the right to know what personal information we collect, to request deletion, and to opt out of any "sale" or "sharing" of personal information. We do not sell or share personal information. California residents may also designate an authorized agent to exercise rights on their behalf and have the right not to be discriminated against for exercising their rights.

8. Children's Privacy

The App is not directed to children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from such children. If you believe a child under the applicable minimum age has provided personal information to us, please contact hello@e2partners.co and we will delete that information.

The App is rated 4+ on the App Store, indicating no objectionable content; however, the recording and AI processing features are intended for adult users.

9. Security

We employ industry-standard administrative, technical, and physical safeguards designed to protect personal information, including:

Audio captured on device is not transmitted off device unless you actively use a cloud-based feature.
Backend communications are encrypted in transit using TLS.
User data in Firestore is scoped per-user and protected by per-user security rules.
API keys and secrets are stored server-side and not embedded in the App binary.

However, no security measure is perfect, and we cannot guarantee absolute security. You acknowledge that you provide information at your own risk. (See Section 12.)

10. International Data Transfers

Personal information collected by the App may be processed in the United States and other countries where our service providers operate. By using the App, you consent to such transfers. We rely on contractual safeguards, including Standard Contractual Clauses, where required by applicable law.

11. Apple Sign-In and Email Relay

If you sign in with Apple, Apple may provide us with a private relay email address that forwards to your real email. We do not receive your real email unless you choose to share it. Communications we send to a relay address are governed by Apple's privacy policies.

12. Disclaimer and User Responsibility

THE APP AND ALL CONTENT, INCLUDING AI-GENERATED CLEANUPS OF YOUR TRANSCRIPTS, ARE PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTY OF ANY KIND. WE MAKE NO REPRESENTATION OR WARRANTY THAT:

Transcripts will be accurate, complete, or fit for any particular purpose.
AI-generated rewrites will be accurate, appropriate, free of bias, or suitable for any communication you choose to send.
The Service will be uninterrupted, error-free, or secure.
Any defect will be corrected within any particular time.

You are solely responsible for reviewing, editing, and approving any text generated by the App before sending, sharing, or relying on it. You are solely responsible for the content of any voice recording you create and any text you publish, send, or share. e2partners disclaims any and all liability for content created, sent, transmitted, or otherwise used through the App.

You agree that you bear all risk associated with use of the App, including but not limited to risk of:

Inaccurate transcription or AI rewrites;
Loss, corruption, or unavailability of captures;
Disclosure or interception of data sent to third-party processors (Firebase, OpenAI, etc.);
Any communication you send based on App-generated content;
Any decision you make based on App output.

To the maximum extent permitted by law, e2partners disclaims all warranties, express or implied, including warranties of merchantability, fitness for a particular purpose, non-infringement, and any warranties arising out of course of dealing or usage of trade.

13. Limitation of Liability

To the fullest extent permitted by applicable law, IN NO EVENT WILL e2partners, ITS OFFICERS, DIRECTORS, EMPLOYEES, AGENTS, OR LICENSORS BE LIABLE FOR:

ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXEMPLARY, OR PUNITIVE DAMAGES;
ANY LOSS OF PROFITS, REVENUE, DATA, USE, GOODWILL, OR OTHER INTANGIBLE LOSSES;
ANY DAMAGES ARISING FROM YOUR ACCESS TO OR USE OF, OR INABILITY TO ACCESS OR USE, THE APP;
ANY DAMAGES ARISING FROM THIRD-PARTY CONDUCT OR CONTENT;
ANY DAMAGES RELATED TO UNAUTHORIZED ACCESS, USE, OR ALTERATION OF YOUR TRANSMISSIONS OR DATA;

EVEN IF e2partners HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

YOU EXPRESSLY AGREE THAT YOUR SOLE AND EXCLUSIVE REMEDY FOR ANY DISSATISFACTION WITH THE APP IS TO STOP USING IT. TO THE FULLEST EXTENT PERMITTED BY APPLICABLE LAW, YOU ASSUME ALL RISK AND RESPONSIBILITY ARISING FROM YOUR USE OF THE APP, INCLUDING ANY RECORDING YOU CAPTURE, ANY TRANSCRIPT OR AI OUTPUT YOU CREATE, ANY MESSAGE OR EMAIL YOU SEND, ANY DATA YOU TRANSMIT TO THIRD-PARTY PROCESSORS, AND ANY DECISION YOU MAKE BASED ON CONTENT GENERATED OR DISPLAYED BY THE APP.

TO THE MAXIMUM EXTENT PERMITTED BY LAW, e2partners' AGGREGATE LIABILITY FOR ANY AND ALL CLAIMS ARISING OUT OF OR RELATING TO THE APP, THIS POLICY, OR ANY DATA PROCESSING DESCRIBED HEREIN IS LIMITED TO THE LESSER OF (A) THE AMOUNT YOU HAVE PAID TO e2partners IN THE TWELVE (12) MONTHS IMMEDIATELY PRECEDING THE EVENT GIVING RISE TO THE CLAIM, OR (B) US$1 (ONE U.S. DOLLAR), WHICHEVER IS LESS. FOR USERS WHO HAVE PAID NOTHING TO e2partners, OUR AGGREGATE LIABILITY IS US$0. THIS LIMIT APPLIES IN THE AGGREGATE FOR ANY AND ALL CLAIMS, REGARDLESS OF THE NUMBER OR THEORY OF CLAIMS, OR THE NATURE OF THE DAMAGES.

Time limit for claims. You and e2partners agree that any claim arising out of or related to this Privacy Policy or any data processing described herein must be filed within the shortest period permitted by applicable law, but in no event more than six (6) months after the act, omission, or event giving rise to the claim. Any claim not brought within that period is permanently waived and barred.

Notice and opportunity to cure. Before initiating any claim, you must provide e2partners with written notice describing the claim at hello@e2partners.co and allow e2partners sixty (60) days to investigate and propose a resolution. Compliance with this paragraph is a condition precedent to your right to bring any claim.

Acknowledgment. By using the App, you expressly acknowledge that you have read and understood this Section, that you assume all risk associated with use of the App, and that the limitations herein are a fundamental basis of the bargain between you and e2partners.

Severability and reformation. If any portion of this Section is held unenforceable by a court of competent jurisdiction, that portion will be reformed to the minimum extent necessary to render it enforceable while preserving the parties' intent to the maximum extent possible. If reformation is not possible, the offending portion will be severed and the remaining portions of this Section, and of this Privacy Policy, will remain in full force and effect.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top of this page. Material changes will be communicated through the App or by other reasonable means. Your continued use of the App after such changes constitutes your acceptance of the revised Policy. If you do not agree to a revised Policy, you must stop using the App.

15. Contact

Questions, requests, or concerns about this Privacy Policy:

e2partners
Email: hello@e2partners.co

This Privacy Policy is provided for transparency and as required by applicable law. Defined terms used but not defined herein have the meaning given in the Whisper Terms of Service.