Privacy Policy for Subtightl
Last updated: March 3, 2026
Subtightl ("the App") is operated by BLAID Staq ("we", "us", "our"). This Privacy Policy explains how we collect, use, and protect your information when you use the App.
1. Information We Collect
1.1 Account Information
When you sign in with Google Sign-In, we receive your Google account display name, email address, and profile photo URL. This information is used solely for authentication and displaying your profile within the App.
1.2 Video and Audio Data
When you use the transcription feature, the App extracts the audio track from your selected video and uploads it to our secure backend (Firebase Cloud Functions), which forwards it to Groq's transcription service (Whisper model). Audio data is transmitted over HTTPS and is not stored on our servers. The audio is processed in real time and discarded after the transcription result is returned.
1.3 Device Information
To maintain account security and detect unauthorised sharing, we collect and store the following device information when you sign in:
Device identifier (iOS: identifierForVendor; Android: android.id)
Device model and manufacturer
Operating system version
First and last seen timestamps
This data is stored in your Firebase account profile and is accessible only to you. We process this data on the basis of legitimate interests — specifically, to protect the integrity of the subscription and credit system. You may request deletion of this data at any time (see Section 7).
1.4 Credits and Subscription Status
Your credit balance and subscription status are stored locally on your device using encrypted storage (Android Keystore / iOS Keychain) and synced to Firebase Firestore when you are signed in.
1.5 Purchase Information
When you purchase credits or a subscription through Apple App Store or Google Play, the transaction is handled entirely by Apple or Google respectively. We receive confirmation of the purchase result but do not have access to your payment details.
1.6 Usage Data
We collect basic usage analytics through Firebase, including app opens, feature usage, and crash reports. This data is used to improve app stability and performance.
2. Third-Party Services
The App uses the following third-party services, each governed by their own privacy policies:
Firebase Authentication & Firestore (Google): Used for user authentication, syncing credit balances, and storing device registration data. Google Privacy Policy
Firebase Cloud Functions (Google): Used as a secure proxy for all transcription API calls. API keys are stored server-side and never transmitted to your device.
Groq API: Used for AI transcription (Whisper model). Audio data is forwarded from our Cloud Function to Groq's servers for processing. Groq Privacy Policy
Apple App Store / Google Play Billing: Used for in-app purchases and subscriptions. Apple Privacy Policy · Google Play Terms
3. How We Use Your Information
We use collected information to:
Authenticate your identity and maintain your account
Provide AI transcription services by securely forwarding audio to Groq via our backend
Sync your credit balance across your devices via Firebase
Process in-app purchases and subscription management
Detect unauthorised account sharing to protect subscription integrity (legitimate interests)
Improve app performance and fix bugs through crash analytics
4. Data Storage and Security
Account data, credit balances, and device records are stored in Google Cloud Firestore. Firebase security rules restrict access so that each user can only read or modify their own data.
Sensitive data (credits, subscription status) is stored on-device using platform-encrypted storage: Android Keystore (EncryptedSharedPreferences) and iOS Keychain.
Video and audio files are processed locally on your device and are not uploaded to our servers. Audio is forwarded temporarily to Groq via our Cloud Function for transcription and is not retained.
API keys for third-party services are stored exclusively in Google Cloud Secret Manager and are never included in the App binary.
5. Data Retention
Account data and device records are retained as long as you maintain an active account.
Transcription audio is processed in real time and not stored by us or Groq after the result is returned.
You can delete your account data by contacting us (see Section 9). You can also revoke Google Sign-In access from your Google account settings at any time.
6. Children's Privacy
The App is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us so we can delete it.
7. Your Rights (GDPR)
If you are located in the European Economic Area, you have the following rights regarding your personal data:
Right of access: Request a copy of the personal data we hold about you
Right to rectification: Request correction of inaccurate data
Right to erasure: Request deletion of your personal data (device records, account data, credit history)
Right to restrict processing: Request that we limit how we use your data
Right to object: Object to processing based on legitimate interests (e.g. device tracking)
Right to data portability: Request your data in a portable format
To exercise any of these rights, contact us at the address in Section 9. We will respond within 30 days.
8. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify users of significant changes through an in-app notice or app update notes. The "Last updated" date at the top of this page reflects the most recent revision.
9. Contact Us
If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at:
Email: [email protected]
Terms of Service