Privacy Policy

How we collect, use, and protect your information.

Last updated: January 26, 2026

On this page

Overview

Recall ("we," "our," or "us") provides a team memory platform that captures and summarizes AI coding sessions. This Privacy Policy explains how we collect, use, and protect your information when you use our service.

Important: We temporarily process your data in plaintext

Recall is not a zero-knowledge service. When you save a session, your transcript is temporarily processed in plaintext on our servers and sent to third-party AI providers for summarization. This processing typically takes under 3 seconds, after which the original transcript is immediately deleted from our systems. We store only the AI-generated summary.

Information We Collect

We collect information in the following categories:

Account Information

  • GitHub profile data — Username, email address, avatar URL, and profile information obtained via GitHub OAuth
  • Team information — Team names, membership, and role assignments
  • Authentication tokens — API tokens you generate for MCP integration

Session Data

  • Session transcripts — Temporarily processed during summarization, then immediately deleted
  • AI-generated summaries — Stored encrypted with your team's encryption key
  • Extracted metadata — Decisions, mistakes, file paths, and tags (stored to enable search)
  • Session metadata — Timestamps, duration, repository information

Usage Data

  • Log data — IP addresses, browser type, device information
  • Analytics — Feature usage, session counts, error rates
  • Performance data — API response times, processing durations

How We Use Your Information

We use collected information for the following purposes:

  • 1.Provide the service — Generate AI summaries, store encrypted sessions, enable search and context retrieval
  • 2.Authenticate users — Verify your identity via GitHub OAuth, manage access tokens
  • 3.Process payments — Manage subscriptions and billing through Stripe (Enterprise tier)
  • 4.Improve the service — Analyze usage patterns, fix bugs, develop new features
  • 5.Communicate with you — Send service updates, security notices, and support responses
  • 6.Comply with legal obligations — Respond to lawful requests, enforce our terms

Data Processing & AI

Understanding exactly how your session data is processed is critical. Here's the complete flow:

The summarization process

  1. 1Your MCP client encrypts the session transcript and sends it to our servers
  2. 2Our servers decrypt the transcript in memory (not logged or stored)
  3. 3Your transcript is sent in plaintext to a third-party AI provider for summarization
  4. 4The AI generates a structured summary (typically under 3 seconds)
  5. 5The original transcript is immediately deleted from our servers
  6. 6The summary is encrypted with your team key and stored

By using Recall, you consent to this processing

When you save a session through Recall, you are explicitly consenting to have your session transcript temporarily processed in plaintext on our servers and sent to third-party AI providers. If your security or compliance requirements prohibit sending code context to third parties, Recall may not be appropriate for your use case.

Third-Party Services

We use the following third-party services to provide Recall:

AI Providers (Session Summarization)

Your session transcript content is sent in plaintext to one of these providers:

ProviderModelPrivacy Policy
GoogleGemini 2.0 Flashpolicies.google.com
OpenAIGPT-4oopenai.com/privacy
AnthropicClaude Haikuanthropic.com/privacy

We use API endpoints that are not used for model training per each provider's API terms. However, each provider has its own data handling practices. We encourage you to review their privacy policies.

Other Services

  • Cloudflare — Infrastructure hosting, DDoS protection, CDN
  • GitHub — OAuth authentication
  • Stripe — Payment processing (Enterprise tier only)

Encryption & Storage

There are two distinct states to understand:

During Processing

When you save a session, your transcript exists in plaintext on our servers for approximately 3 seconds while it is sent to an AI provider for summarization. During this window, Recall has access to your unencrypted transcript content.

At Rest (Stored Data)

Once processing is complete, only the summary is stored—encrypted with your team's unique encryption key (AES-256-GCM). Recall does not have access to your team key and cannot decrypt stored session content.

What's encrypted vs. plaintext

Encrypted (team key required)

  • • Full session summaries
  • • Detailed decision descriptions
  • • Detailed mistake descriptions
  • • Context documents

Stored unencrypted (for search)

  • • Session titles
  • • Tags and labels
  • • File paths
  • • Decision titles (not descriptions)
  • • Timestamps and metadata

Data Sharing

We do not sell your personal information. We share data only in these circumstances:

  • AI providers — Your session transcript content is sent to third-party AI providers (Google, OpenAI, or Anthropic) for summarization. This is a core part of how Recall works.
  • Service providers — Infrastructure providers (Cloudflare) may process encrypted data as part of hosting the service.
  • Team members — Your session summaries are accessible to other members of your team. This is the intended function of Recall.
  • Legal requirements — We may disclose information if required by law, subpoena, court order, or similar legal process.
  • Business transfers — In the event of a merger, acquisition, or sale of assets, user data may be transferred. We will notify you of any such change.

Data Retention

How long we keep different types of data:

Session transcripts

Deleted immediately after summarization (typically under 3 seconds). We never store raw transcripts.

Session summaries

Retained while your account is active. Deleted within 30 days of account deletion request.

Account information

Retained while your account is active. Deleted within 30 days of account deletion request.

Backups

Encrypted backups are retained for 90 days for disaster recovery. Purged completely within 30 days after account deletion.

Log data

Server logs are retained for 30 days for debugging and security purposes.

Your Rights

Depending on your location, you may have the following rights:

Access & Portability

  • • Request a copy of your personal data
  • • Export your session summaries as JSON
  • • Export decisions and mistakes as CSV
  • • Available to all tiers, anytime

Correction & Deletion

  • • Request correction of inaccurate data
  • • Request deletion of your account and data
  • • Data deleted within 30 days of request
  • • Confirmation email sent when complete

Objection & Restriction

  • • Object to certain processing activities
  • • Request restriction of processing
  • • Withdraw consent where applicable

Regulatory Rights

  • • Lodge a complaint with a supervisory authority (EU residents)
  • • Exercise rights under CCPA (California residents)
  • • We will not discriminate against you for exercising your rights

Contact Us

If you have questions about this Privacy Policy or want to exercise your rights:

Email: hello@stoodio.com

We will respond to privacy-related requests within 30 days. For urgent security matters, please include "URGENT" in your subject line.

Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the service. Continued use of Recall after changes constitutes acceptance of the updated policy.