Privacy Policy for Media2Text by Babay
Media2Text by Babay (hereinafter the "Service") is an international service providing AI-driven transcription services. All media processing and data storage physically occur on secure servers located in Germany (European Union).
The Service is available in two languages: English and Russian.
Our Story
Media2Text was originally created by a journalist for journalists to speed up the processing of media materials. Since then, the project has evolved into a practical tool for anyone who needs a reliable, high-quality, and fast assistant to extract text from audio and video.
Our core mission remains unchanged: providing professional-grade tools while ensuring a high level of privacy of the user and their materials.
The Developer
Media2Text by Babay was developed by a professional journalist with over 30 years of experience. The Service Owner and Data Controller is a private individual, resident of the Republic of Kazakhstan, and a member of the Journalists' Union of Kazakhstan, operating under the alias Babay.
GENERAL PROVISIONS
This Privacy Policy describes how Media2Text collects, uses, and protects your information. We ensure that our operations fully comply with the GDPR (General Data Protection Regulation) of the European Union and Google Play standards.
1. DATA COLLECTION AND USE
We collect only the minimum amount of data technically required to provide and improve our services.
Data obtained through Google authorization is used solely for user authentication. We do not use your data for advertising, profiling, or any other secondary purposes.
Infrastructure & AI:
The Service is hosted on secure servers provided by Hetzner Online GmbH (Germany, EU). All processing and storage are governed by this Policy and GDPR standards.
You may review Hetzner’s privacy policy here.
AI Model: For transcription, we use a fine-tuned version of OpenAI Whisper (MIT License). This model runs locally on our Hetzner servers. No data is ever sent to OpenAI.
Data Types:
1.1. Your Media Files (Audio or Video)
Purpose: To perform automatic transcription into text.
Retention: Files are deleted immediately upon the end of a session (closing or refreshing the page) or when a new file is uploaded.
Safety Net: In case of a technical failure (connection drop, etc.), our system performs an automatic cleanup every 6 hours, purging any remaining temporary files.
Note: We do not view, listen to, copy, or share your files. They are deleted automatically.
1.2. Transcription Results (Extracted Text)
Purpose: To provide you with the finished transcript.
Retention: Transcripts and result files are deleted immediately when you close the session, refresh the page, or upload a new file.
Safety Net: Just like media files, any lingering text data is wiped during the automatic 6-hour cleanup cycle.
1.3. User Registration Data (Google OAuth / Email)
Legal Basis: Performance of a contract (GDPR Art. 6(1)(b)).
Details: We receive only your email address, name, and a technical account ID from Google. We do not request or process contacts, files, or activity history from your Google profile.
Purpose: To identify you, manage your chosen service plan, track usage limits, and communicate regarding support or official inquiries.
Retention:
Guest Plans: Account data is stored for no more than 48 hours after you accept the Terms of Service.
Pro and Standard Plans: Account data and transaction history are stored for the duration of the paid period plus 15 calendar days (to allow easy restoration of access).
Freedom Plan: Stored until the balance is exhausted plus 15 calendar days.
Note: After these periods, your email is permanently deleted from our database. We do not retain or reuse deleted emails.
1.4. Anonymous Metadata
Details: File size, format, transcription duration, and date.
Purpose: Statistical analysis to monitor service stability, performance, and peak load periods.
Anonymity: This data is aggregated and contains no identifying information.
Retention: Stored for 12 months for long-term performance monitoring, then deleted.
1.5. Cookies and Similar Technologies
Purpose: Essential service operation and authentication. These technologies are used strictly for essential service functionality.
Tools: Cookies (session management), JWT Tokens (secure Google authentication), and Local Storage (interface settings).
Retention: JWT tokens expire within 1 hour. Local Storage remains until cleared by you.
Note: You can disable cookies in your browser, but this will limit the Service's functionality.
2. LEGAL BASIS (CONSENT) FOR DATA PROCESSING
By using the Service, you acknowledge and agree that your personal data is processed as necessary for the performance of a contract in accordance with Article 6(1)(b) of the General Data Protection Regulation (GDPR), as described in this Privacy Policy and the Media2Text User Agreement.
3. INTERNATIONAL DATA TRANSFER
Media2Text by Babay is an international service.
Our infrastructure is located in Germany (EU), where GDPR regulations apply.
By using the Service, you acknowledge that your data is processed on servers located in the European Union (Germany).
4. REVOKING CONSENT AND DATA ERASURE (Delete My Data)
You have the right to withdraw your consent or delete your data at any time directly within the app:
"Delete My Data" Button: Instantly stops processing. Personal data is wiped within 24 hours during the next cleanup cycle.
"Withdraw Consent" Button: Revoking consent will result in termination of access to the Service and deletion of associated personal data according to the timelines in Section 1.3.
Discontinuation: Simply stop using the Service; your data will be auto-deleted based on the retention periods in Section 1.3.
Email Request: Contact us at support@media2text.me to request manual deletion within 24 hours.
5. CHILDREN'S PRIVACY
The Service is not intended for individuals under the age of 16. We do not knowingly collect information from children.
6. YOUR RIGHTS (GDPR)
Your rights are protected under the GDPR. You have the right to:
Access: Request a copy of the personal data we process.
Erasure: Request that we delete your data.
Withdraw Consent: Stop using the Service (auto-deletion follows).
Lodge a Complaint: Contact a Data Protection Authority (DPA) in your country or in Germany.
Rectification: Request correction of inaccurate data.
Restriction: Limit how we process your data in specific legal scenarios.
Portability: Receive your data in a structured format.
We commit to responding to all requests sent to support@media2text.me within one month.
7. SECURITY MEASURES
We implement rigorous technical and organizational measures (GDPR Art. 32):
Encryption: All data is transmitted via HTTPS with TLS 1.3.
Isolation: Data is isolated on GDPR-compliant Hetzner servers (Germany).
Access Control: Only essential personnel have strictly limited access.
Automated Deletion: 6-hour system-wide purges of temporary data.
Breach Notification: Per GDPR Art. 33, we will notify the authorities within 72 hours of discovering any breach that risks user rights.
8. TRANSCRIPTION ACCURACY
Transcription is performed using Artificial Intelligence.
Accuracy typically ranges from 91% to 96% for clear speech without heavy background noise.
External factors (noise, accents, recording quality) will affect the result.
We strongly recommend verifying transcripts before professional use.
9. POLICY CHANGES
We will notify you of any changes to this Policy by posting updates within the app and on Media2Text.me at least 30 calendar days before they take effect.
10. CONTACT US
General correspondence: support@media2text.me
Legal/Privacy inquiries: support@media2text.me (Subject: "Legal Inquiry")
Unofficial/Social: https://www.facebook.com/Media2Text
Note: Official data requests are processed exclusively via email. Facebook messages are not considered official channels for GDPR requests.
11. LEGAL REFERENCES
European Union (GDPR):