Legal
Privacy Policy
Effective date: April 13, 2026
Last updated: April 13, 2026
This Privacy Policy describes how AI Meet Live ("we," "us," or "our") collects, uses, stores, and protects your personal information when you use our service at aimeet.live.
How Your Data Is Encrypted
We take encryption seriously. Your data is not just stored behind a password — it is cryptographically protected so that even in the event of unauthorized database access, your content cannot be read.
Encryption at rest: - Every user account has a unique data encryption key (DEK) generated at account creation. Your DEK is itself encrypted by a master key and stored separately from your data. - Meeting transcripts, minutes, and raw audio text are encrypted with your DEK before being written to the database. The plaintext never touches disk. - Knowledge base content you add to your AI personas is encrypted per-persona before storage. - Meeting URLs (which may contain identity tokens for Zoom, Google Meet, or Teams) are encrypted at rest. - Attendee lists are encrypted at rest.
What this means in practice: - If our database were compromised, your meeting content, transcripts, and persona knowledge would be unreadable without your encryption key. - Our support staff cannot read your meeting transcripts or persona knowledge base content. Access to encrypted fields requires the decryption key chain, which is not accessible to operations staff outside of an explicit, time-limited support access grant that you control.
Encryption in transit: - All traffic between your browser and our servers is encrypted via TLS 1.2 or higher. - Communication between our servers and third-party service providers is encrypted in transit.
Data residency: - Your data is stored in the regional infrastructure you registered with and does not cross regional boundaries. - Accounts registered on eu.aimeet.live are stored exclusively in EU-based data centers. This is the only regional deployment hosted within the European Union. - Accounts registered on us.aimeet.live are stored in US-based data centers, regardless of where the account holder is physically located. If EU data residency is a requirement for you, you must register on eu.aimeet.live.
Who We Are
AI Meet Live is operated by VAStaffer. If you have questions about this policy, contact us at:
Email: privacy@aimeet.live
What Information We Collect
Information you provide
- Account information: your name, email address, and password (stored as a bcrypt hash — we never store your plaintext password).
- Persona configuration: names, descriptions, voice settings, and knowledge base content you create for your AI personas.
- Meeting data: meeting URLs you submit, along with transcripts, minutes, and notes generated from those meetings.
- Billing information: subscription and payment details processed by our payment provider. We do not store your credit card number — payment processing is handled by our provider and we receive only a customer ID and subscription status.
Information collected automatically
- Usage data: pages visited, features used, credits consumed, and API call logs used for billing and service improvement.
- Server logs: IP address, browser type, and request timestamps retained for up to 30 days for security and debugging.
- Cookies: session authentication cookies and optional preference cookies. See our Cookie Policy for details.
Information from third-party integrations
- Meeting bot provider: our bot provider joins your meetings and returns transcript data to us. Audio is processed in real time; we receive text transcripts only.
- OpenClaw: if you connect your OpenClaw account, meeting intelligence is synced to your OpenClaw workspace. This sync is opt-in and controlled through your dashboard.
Meeting Recordings, Audio, and Biometric Data
When our AI bot joins a meeting at your request:
- We do not store audio. Meeting audio is processed in real time by our transcription provider and converted to text. We receive text transcripts only. No audio files are retained on our servers, and our processors do not retain audio after the session ends.
- We do not collect, store, or create voice prints or biometric identifiers. Speaker attribution in transcripts — identifying who said what — is produced by speaker diarization, a process that groups voice segments within a single meeting session. No persistent voice profiles, voice models, or biometric templates are created or stored, and no voice matching is performed across meetings.
- Transcript data is personal data and is protected as such. Meeting transcripts, attendee names, speaker labels, and summaries are retained as text, encrypted at rest with your encryption key, and subject to your plan's data retention settings and your deletion rights under this policy.
- Voice cloning. If you use AI Meet Live's voice cloning feature, you upload an audio sample to create a custom voice for your AI persona. By submitting an audio sample, you represent that you own the voice or have obtained explicit written consent from the person whose voice is being cloned. The audio sample is transmitted to our voice synthesis provider and is not retained on our servers after the clone is created.
How We Use Your Information
- To provide the service: joining meetings, generating transcripts and minutes, enabling AI responses, and managing your personas and knowledge base.
- To process billing: managing subscriptions, credit purchases, and invoices via our payment provider.
- To improve the service: analyzing aggregated usage patterns to prioritize features and fix bugs. We do not sell or use individual meeting content for model training.
- To communicate with you: transactional emails (signup confirmation, invoices, low-credit alerts). We do not send marketing email without your explicit opt-in.
- To comply with legal obligations: responding to lawful requests from authorities, and maintaining records required by applicable law.
How We Share Your Information
We do not sell your personal data. We share information only in the following circumstances:
| Recipient | What is shared | Purpose |
|---|---|---|
| Meeting bot provider | Meeting URLs | Bot joins the meeting and returns transcripts |
| AI/LLM provider | Transcript excerpts | Generating minutes, AI responses, and meeting summaries |
| Text-to-speech provider | Text to be spoken | Voice synthesis for AI voice responses |
| Payment processor | Email, name | Payment processing and subscription management |
| Email delivery provider | Email address | Transactional email delivery |
| OpenClaw | Meeting intelligence | Only if you explicitly connect your OpenClaw account |
| GoHighLevel | Name, email, plan status, region | Marketing CRM — only if you opted in to marketing communications at signup or in Settings → Privacy |
We do not share your data with any other third parties without your consent.
Data Retention
| Data type | Retention period |
|---|---|
| Account data | Until account deletion |
| Meeting transcripts and minutes | Per your subscription plan (30 days, 90 days, or 1 year) |
| Billing records | 7 years (legal requirement — retained even after account erasure) |
| Server access logs | 30 days |
| Audit logs | 90 days |
When you request account deletion, your account is immediately deactivated and all personal data — including encrypted meeting content, personas, and knowledge base entries — is permanently and irreversibly deleted after a 30-day grace period. You may cancel the deletion before it executes by contacting support@aimeet.live. Billing records are retained for 7 years as required by applicable tax and accounting law; they contain no meeting transcripts or persona content.
Your Rights
We apply GDPR protections to all users globally, regardless of where you are located. You have the following rights:
- Access (Art. 15): request a copy of all personal data we hold about you, including which consent records we have on file.
- Rectification (Art. 16): request correction of inaccurate or incomplete data. Submit a request via Settings → Privacy → Request Correction. We will respond within 30 days.
- Erasure (Art. 17): request deletion of your account and all associated data via Settings → Privacy → Delete Account. Deletion is scheduled with a 30-day grace period — your account is immediately deactivated and all data is permanently deleted after 30 days. Contact support@aimeet.live before the deletion date to cancel.
- Export / Portability (Art. 20): download all your data in machine-readable format via Settings → Export My Data.
- Restriction (Art. 18): request that we pause processing of your data while a dispute is being resolved. While restriction is active, your data is preserved and not processed by any third-party integrations. Submit via Settings → Privacy → Restrict Processing.
- Objection to marketing (Art. 21): withdraw your marketing communications consent at any time via Settings → Privacy → Marketing Preferences. This takes effect immediately and does not affect your account or service access.
- Withdraw cookie consent: change your cookie preferences at any time via the cookie banner (reload the page to see it again) or by clearing the
consent_prefscookie in your browser.
Lawful basis for processing: - Service delivery — contract (Art. 6(1)(b)) - Marketing communications — consent (Art. 6(1)(a)), where you have opted in - Legal obligations (billing records, breach notification) — legal obligation (Art. 6(1)(c))
Data residency: All accounts are covered by GDPR protections regardless of regional deployment. EU data residency (data stored exclusively in EU data centers) is only guaranteed for accounts registered on eu.aimeet.live. If EU data residency is required, you must use that regional deployment.
Supervisory authority: You may lodge a complaint with your local data protection supervisory authority at any time, regardless of regional deployment.
To exercise any right, email privacy@aimeet.live or use the self-service tools in your dashboard under Settings → Privacy.
Security
We implement industry-standard security measures including:
- Per-user encryption keys for all sensitive content (described above)
- bcrypt password hashing with cost factor 12
- TLS in transit for all connections
- Rate limiting on authentication endpoints
- Automated error logging and alerting for anomalous activity
- Access controls limiting staff access to production systems
No security measure is perfect. In the event of a data breach that affects your personal data, we will notify the relevant supervisory authority within 72 hours of becoming aware of the incident (Article 33 GDPR). Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly without undue delay (Article 34 GDPR), describing the nature of the breach, likely consequences, and steps we have taken.
Cookies
We use cookies for session authentication and preferences. For full details, see our Cookie Policy.
Children's Privacy
AI Meet Live is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us at privacy@aimeet.live and we will delete it.
Changes to This Policy
We will post any changes to this policy on this page with an updated "Last updated" date. For material changes, we will notify you by email at least 14 days before they take effect. Continued use of the service after changes take effect constitutes acceptance of the updated policy.
Contact
VAStaffer
Email: privacy@aimeet.live
Website: aimeet.live