Privacy Policy

1. Who We Are

• • Operator: D'Cade ("we", "us")
• • Contact: [email protected]
• • Privacy contact: [email protected]

2. What D'Cade Is

D'Cade is a desktop product designed to be a quiet presence. Your personal notes are stored locally by default. Some features (such as optional cloud sync and Teams features) require servers.

3. Data We Collect

We aim to collect the minimum data required to operate the Services.

A. Website Data

We do not use analytics on dcade.ai. We do not set analytics cookies and do not track you across sites. Like most websites, our hosting provider may process basic request logs (IP address, user agent, timestamp) for security and reliability.

B. Account & Billing Data

If you purchase a subscription, payment is processed by Creem.io as Merchant of Record. We do not store your full card details. We may receive limited billing metadata such as your email, subscription status, plan, invoice IDs, and payment timestamps.

C. D'Cade Personal (Desktop App)

• • Local notes: Stored on your device by default.
• • Encryption: Notes are encrypted at rest using AES-256-GCM. Keys are stored in your OS keychain (Windows Credential Manager / macOS Keychain).
• • Optional cloud sync (Pro): If you enable cloud sync, data is end-to-end encrypted; our servers store ciphertext only.

D. D'Cade Teams (Web App)

Teams is a cloud service designed for shared team knowledge.

• • Uploaded documents & transcripts: Stored in the cloud to provide Teams functionality.
• • Team access: Data is visible to authorized team members according to your role settings.

E. AI & Speech Features (If Enabled)

• • User-initiated only: AI features are triggered only when you request them.
• • Vendors: We may use third-party AI providers (e.g., OpenAI) for transcription and intent classification.
• • What may be sent: Depending on your use, portions of text/audio may be transmitted to the AI provider to produce results.
• • We do not train our own models on your content.

4. How We Use Data

• •Provide, maintain, and secure the Services
• •Process payments and manage subscriptions
• •Provide customer support
• •Improve reliability and debug issues
• •Comply with legal obligations

5. Legal Bases

Depending on your jurisdiction, we process data based on:

• •Performance of a contract (providing the Services you request)
• •Legitimate interests (security, fraud prevention, service reliability)
• •Consent (where required)
• •Legal obligations (tax, accounting)

6. Sharing & Disclosure

We share data only as needed:

• •Payment processor: Creem.io (Merchant of Record)
• •Hosting & storage: Cloud infrastructure providers
• •AI providers (if enabled): OpenAI for transcription and intent classification
• •Legal / compliance: When required by law

7. Data Retention

• •Server logs: Retained per hosting provider defaults
• •Billing records: Retained as required for accounting and tax
• •Teams data: Retained while your workspace is active, unless deleted by you

8. Your Rights

Depending on where you live, you may have rights to:

• •Access, correct, or delete personal data
• •Export your data
• •Object to or restrict processing
• •Withdraw consent (where applicable)

To exercise rights, contact [email protected].

9. Security

We use technical and organizational measures to protect data, including encryption and access controls. No system is 100% secure; you use the Services at your own risk.

10. International Transfers

If we use providers that process data outside your country, we rely on appropriate safeguards (e.g., contractual protections) where required.

11. Children

The Services are not intended for children under 13.

12. Changes

We may update this policy from time to time. We will update the effective date and post the new version on our website.

Contact

Questions about privacy? Email us at [email protected]