Privacy Policy

Updated: February 28, 2026 ScribeSnap.ai (YouTube-Transcript-Extractor)

What we collect

Video URL you submit to generate a transcript.
Auth data if you sign in with Supabase (email, password hash, OAuth profile).
Email address and delivery metadata for transactional emails (password reset/confirm) sent via Resend.
Client-side history stored locally in your browser (`localStorage`), not on our servers.
Server/edge logs (IP address, user agent, request path, success/error) from our hosting/CDN for reliability and abuse prevention.
Analytics data collected by Google Analytics 4 (pages visited, session duration, device type, approximate location derived from IP). No personally identifiable information is sent to Google Analytics.

Generate transcripts and AI responses for the URL you provide.
Authenticate and manage your ScribeSnap account via Supabase Auth.
Send required account emails (e.g., password reset, email confirmation) via Resend.
Improve reliability and prevent abuse (basic operational logs from Railway/Cloudflare).

No sale of personal data.
No ad tracking pixels.
No server-side storage of your transcripts or questions; history is local on your device unless you clear it.

Supabase (authentication, database, object storage).
Groq / OpenRouter (LLM processing) — only when AI features are used.
Resend (transactional email delivery for auth flows).
Railway (application hosting) and Cloudflare (edge/CDN, DNS, security).
Google Analytics 4 (website analytics) — collects anonymised usage data. See Google's Privacy Policy and opt-out tool.

Authentication session cookies via Supabase.
Local storage for transcript history, credits, and UI preferences on your device.
Edge/hosting cookies that may be set by Cloudflare/Railway for security and routing (no ad tracking).
Google Analytics cookies (_ga, _ga_34EYP3ZVZQ) used to distinguish users and sessions. These expire after 2 years and 1 minute respectively and contain no personally identifiable information.

Auth records are retained while your account exists.
Operational logs are kept for short periods for troubleshooting and security.
Email delivery metadata is retained by Resend per their standard retention (no email body content from us beyond what is needed to send the message).
Client history remains in your browser until you clear it.
When you delete your account, a one-way hash (SHA-256) of your email address and your earned credit balance are stored for up to 90 days solely to restore your credits if you re-register. No raw email is retained. This record is permanently deleted after 90 days or upon restoration, whichever comes first.
A deletion reason you optionally provide is stored anonymously (linked only to your former user ID, which no longer corresponds to any active account) for product improvement purposes.

Clear local history in the app (Clear all).
Delete your account at any time via Dashboard → Settings → Delete account. This immediately removes your Supabase auth data and all associated personal information.
Opt out of AI features by not using the “Ask AI” actions.

If your email app does not open, .