Privacy Policy

Last updated: 08.02.2026

This Privacy Policy explains how information is collected, used, and shared when you use the Codictio desktop application (the "App") for Windows.

By using the App, you agree to the collection and use of information in accordance with this Policy.

1. Who we are

Codictio is developed and maintained by beProgressive ("we", "us").

If you have any questions about this Policy, you can contact us at:

2. Data stored locally on your device

The App stores the following data locally on your device:

  • application settings and preferences (hotkey configuration, language, UI preferences)
  • locally downloaded speech recognition model files

This data is stored on your device and is used by the App to provide core functionality. We do not back up this data to our own servers.

Important: Because your settings are stored only on your device, they may be permanently lost if you uninstall the App, clear app data, or reset your device without backing up. We are not responsible for any data loss resulting from these actions.

3. Account creation and authentication

The App requires you to sign in with a supported authentication provider to use cloud AI features.

When you sign in with Google, we receive and store:

  • your email address
  • your name (if provided by Google)
  • Google user ID (internal identifier)

Purpose of processing:

  • to create and maintain your account
  • to authenticate you across devices
  • to link your subscription status with your account
  • to provide customer support and respond to your requests
  • to send you important service-related communications (for example, subscription confirmations, account changes)

Legal basis: Contract performance and legitimate interest.

We do not use your email for marketing purposes unless you explicitly opt in.

You can delete your account at any time by contacting us at codictio.app@gmail.com. For detailed instructions, please see our Account Deletion page.

4. Device information

We collect a hardware fingerprint of your device to manage trial eligibility and enforce device limits for paid subscriptions. This fingerprint is derived from hardware identifiers and is stored only as a one-way cryptographic hash — we never store raw hardware serial numbers or identifiers.

Purpose of processing:

  • to enforce one trial per device policy
  • to manage active device limits for paid subscriptions
  • to prevent abuse

5. Purchases and subscriptions

The App offers a premium subscription. Purchases and subscriptions are handled by:

  • RevenueCat (RevenueCat, Inc.) — subscription and entitlement management
  • Cloudflare D1 (Cloudflare, Inc.) — our database provider for subscription status

We may process the following information related to purchases:

  • information about your purchases and subscription status (for example, whether you have an active subscription, its start and end dates)
  • internal identifiers (such as an app-specific user ID, RevenueCat user ID, subscription or purchase tokens and similar identifiers that allow us to verify your access)

Purpose of processing:

  • to provide and verify access to premium features
  • to restore purchases across devices
  • to prevent abuse and handle support requests

Sharing:

This data is shared with RevenueCat and Cloudflare only as necessary to process subscriptions and maintain your access to premium features.

We do not receive or store your full payment card details. Payment processing is performed by the applicable payment provider.

6. AI features and processing of text

The App offers AI-based features for text enhancement — cleaning up grammar, adding punctuation, and removing filler words from transcribed speech.

When you use these features, the following information may be sent to our cloud AI provider via our backend infrastructure hosted on Cloudflare Workers:

  • transcribed text produced by the local speech recognition engine
  • minimal screen context (active window title, focused UI element names) used to improve accuracy
  • internal identifiers needed to associate the request with your account and subscription
  • user identifier (if you have signed in)

Cloudflare processes this information to host and operate our backend infrastructure and may temporarily store limited logs as part of operating and securing the service, under its own terms and privacy policy.

Purpose of processing:

  • to provide AI-based text enhancement functionality
  • to clean up, format, and improve transcribed text
  • to maintain and improve reliability and security of the AI integration

Important: Speech recognition (speech-to-text) is performed entirely on your local machine using the Whisper model. Your audio recordings are never sent to our servers or any third-party service. Only the resulting transcribed text is sent for cloud AI enhancement.

AI Disclaimer: AI-processed text is provided for convenience purposes only. It may contain errors, inaccuracies, or may not be suitable for your specific situation. You should review all text before use. The AI does not provide professional, medical, legal, financial, or any other specialized advice.

We do not use your text or AI responses to build marketing profiles about you.

If you do not want your transcribed text to be sent to the cloud AI provider, you can use the App without cloud enhancement — local speech-to-text will still work.

7. Screen context

Codictio may read minimal UI context from your active application to improve transcription accuracy:

  • active window title
  • focused UI element names and properties (via UI Automation)

This context data is processed locally and sent along with the transcribed text only when using cloud AI enhancement. It is not stored after processing.

Password fields are never read. The App detects password input fields and excludes their content from context collection.

8. Data sharing

We may share your information with the following categories of recipients, solely for the purposes described above:

  • Authentication providers — Google LLC (Google Sign-In / OAuth authentication)
  • Subscription management — RevenueCat, Inc.
  • Infrastructure providers — Cloudflare, Inc. (Cloudflare D1 database, Cloudflare Workers and related infrastructure)
  • AI providers — cloud AI service provider for text enhancement

These providers act as our service providers and process data on our behalf in order to:

  • operate authentication and account management
  • operate payments and subscriptions
  • provide AI text enhancement
  • store subscription status and account information
  • host and operate the App backend infrastructure

We do not sell your personal data.

9. Data retention

We retain:

  • account information (email, name) for as long as your account is active or as needed to provide you services
  • subscription and purchase related data for as long as it is reasonably necessary to provide access to premium features and comply with legal obligations (for example, accounting and tax requirements)
  • device fingerprint hashes for as long as needed to enforce trial and device limit policies
  • AI related logs only for as long as needed to provide, secure, and debug the AI features

Audio recordings are processed entirely locally and never leave your device. Transcribed text sent for cloud AI enhancement is processed in real-time and is not stored on our servers after processing.

Data stored locally on your device (settings, model files) is kept until you delete it or uninstall the App.

When you delete your account, we will delete your account information within 30 days, except for data we are required to retain for legal or legitimate business reasons.

10. Your rights

Depending on your jurisdiction, you may have certain rights regarding your personal data, including the right to:

  • access the information we hold about you
  • request correction of inaccurate data
  • request deletion of data where applicable
  • object to or restrict certain types of processing

To exercise these rights, please contact us at codictio.app@gmail.com. We may ask you to provide information to verify your identity before processing your request.

Please note that some data (for example, purchase records) may need to be retained for legal or legitimate business reasons.

11. Children's privacy

The App is not directed to children under the age of 13 (or a higher age as required by local law). We do not knowingly collect personal information from children.

If we become aware that we have collected personal information from a child, we will take reasonable steps to delete it. If you believe that a child has provided us with personal information, please contact us.

12. Changes to this Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page.

If the changes are significant, we may also inform you within the App. Your continued use of the App after the updated Policy becomes effective means that you accept the changes.