Privacy Policy
Libaty GmbH - socalizer.me
Last Updated: 29.08.2025
Version: 1.0
1. INTRODUCTION
Libaty GmbH ("we," "us," "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our conversation analysis service at socalizer.me.
Data Controller:
Libaty GmbH
Am Krummen Graben 23
63150 Heusenstamm
Germany
Email: privacy@socalizer.me
Managing Director: Ulrich Linnebank
Commercial Register: Amtsgericht Offenbach am Main HRB 54881
VAT ID: DE292598453
2. LEGAL BASIS FOR PROCESSING
We process personal data based on:
- Consent (Art. 6(1)(a) GDPR): For recording and analyzing conversations
- Contract (Art. 6(1)(b) GDPR): To provide our services
- Legitimate Interests (Art. 6(1)(f) GDPR): For service improvement and security
- Legal Obligations (Art. 6(1)(c) GDPR): To comply with applicable laws
3. DATA WE COLLECT
3.1 Information You Provide
- Account Information: Name, email address, password
- Payment Information: For premium subscriptions (processed by payment provider)
- Conversation Data: Audio recordings, transcriptions, analysis results
- Consent Records: Documentation of participant consent
3.2 Automatically Collected Information
- Usage Data: Features used, timestamps, frequency of use
- Technical Data: IP address, browser type, device information
- Cookies: Session cookies, preference cookies (see Cookie Policy)
3.3 Special Categories of Data
Conversation recordings may inadvertently contain sensitive personal data. We process this only with explicit consent and implement additional safeguards.
4. HOW WE USE YOUR DATA
We use your data to:
- Provide conversation recording, transcription, and analysis services
- Process payments for premium features
- Improve our AI models and service quality
- Send service-related communications
- Ensure platform security and prevent fraud
- Comply with legal obligations
- With consent, send marketing communications
5. DATA SHARING AND THIRD-PARTY PROCESSORS
5.1 Service Providers
We share data with carefully selected processors:
| Provider | Purpose | Data Shared | Location | DPA |
|---|---|---|---|---|
| Supabase | Database & Storage | All user data, recordings, transcriptions | USA | ✓ DPA in place |
| Vercel | Hosting & Deployment | Technical data, cookies | USA | ✓ DPA in place |
| Google Analytics | Usage Analytics | Anonymous usage data, cookies | USA | Standard Contractual Clauses |
| OpenAI | AI Analysis | Transcription text for analysis | USA | Standard Contractual Clauses |
| AssemblyAI | Transcription | Audio recordings | USA | Standard Contractual Clauses |
| Meeting BaaS | Meeting Infrastructure | Meeting-related data | EU/USA | ✓ DPA in place |
| Pebble | Payment Processing | Payment information, billing data | USA/EU | Standard Contractual Clauses |
6. DATA SECURITY
We implement appropriate technical and organizational measures:
- Encryption in transit (TLS/SSL) and at rest
- Access controls and authentication
- Regular security audits and updates
- Employee data protection training
- Incident response procedures
- Pseudonymization where possible
7. DATA RETENTION
| Data Type | Retention Period | Basis |
|---|---|---|
| Account Information | Duration of account + 30 days | Service provision |
| Recordings & Transcriptions | 5 years or until deletion requested | User control / Service improvement |
| Analysis Results | 5 years or until deletion requested | Service improvement |
| Payment Records | 10 years | German tax law requirement |
| Consent Records | Duration of processing + 3 years | Legal protection |
| Google Analytics Data | 14 months | Analytics standard |
8. YOUR RIGHTS UNDER GDPR
You have the right to:
- Access (Art. 15): Obtain copies of your personal data
- Rectification (Art. 16): Correct inaccurate data
- Erasure (Art. 17): Request deletion ("right to be forgotten")
- Restriction (Art. 18): Limit processing in certain circumstances
- Portability (Art. 20): Receive your data in a portable format
- Object (Art. 21): Object to certain processing
- Withdraw Consent: At any time, without affecting prior processing
- Lodge a Complaint: With your local supervisory authority
To exercise these rights, contact: privacy@socalizer.me
9. SPECIFIC CONSIDERATIONS FOR CONVERSATION DATA
9.1 User Responsibility for Consent
IMPORTANT:
The user initiating any recording is solely responsible for:
- Obtaining all legally required consents from participants
- Storing and maintaining consent documentation
- Ensuring compliance with all applicable recording laws
- Handling any disputes or requests from recorded parties
We provide a technology platform only and do not verify or monitor consent compliance.
10. CHILDREN'S PRIVACY
Our service is not intended for children under 18. We do not knowingly collect data from children. Recording minors is strictly prohibited on our platform. Users who violate this prohibition face immediate account termination. If you believe a minor has been recorded using our service, please contact us immediately at privacy@socalizer.me.
11. CONTACT INFORMATION
For privacy-related inquiries:
Data Protection Contact:
Libaty GmbH
Ulrich Linnebank
Am Krummen Graben 23
63150 Heusenstamm
Germany
Email: privacy@socalizer.me
Supervisory Authority:
Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Gustav-Stresemann-Ring 1
65189 Wiesbaden
Germany
Phone: +49 611 1408-0
Acknowledgment
By using our service, you acknowledge that you have read and understood this Privacy Policy.