EchoDrop Privacy Policy

Effective date: April 20, 2026

EchoDrop helps users record active browser tab audio or upload audio files and turn that audio into transcripts, summaries, and to-do lists. Audio processing starts only after the user explicitly records tab audio or uploads an audio file.

Information We Process

EchoDrop may process the following categories of information:

• Account information needed for sign-in, such as Firebase authentication identifiers and email address.
• Audio that a user intentionally records from an active browser tab or uploads manually.
• Generated outputs, such as transcripts, summaries, to-do items, job history, usage counters, and related metadata.
• Technical information needed to operate the service, such as request IDs, timestamps, API status, and server error logs.

How We Use Information

EchoDrop uses processed information to:

• Authenticate users.
• Upload and process audio submitted by the user.
• Generate transcripts, summaries, and to-do items.
• Show job history, selected results, recording state, and usage state in the extension.
• Support deletion requests made through the product.
• Detect abuse, enforce quotas, apply rate limits, and debug service failures.

AI Processing

When a user submits audio for processing, EchoDrop may send audio or transcript content to third-party AI services that provide speech-to-text or text generation features. In the current product architecture, this can include Google Gemini for transcript, summary, and to-do generation.

Storage and Retention

EchoDrop may store:

• Uploaded audio files on the backend storage layer.
• Job, result, and usage metadata in Firebase/Firestore or an equivalent backend data store.
• Limited operational logs on the backend.
• Local extension state, such as theme preference, cached usage state, selected result ID, current recording state, and recent jobs, in Chrome storage.

Uploaded audio, generated results, and related metadata are kept until the user deletes a completed or failed job through the product or until the service operator removes them through configured retention cleanup. Operational logs may be retained for service reliability, security, and debugging.

Deletion

Users can delete completed or failed jobs from the extension UI. That deletion flow removes the related job metadata, saved result metadata, upload metadata, and stored audio file on the backend.

Sharing

EchoDrop may share information only with service providers required to operate the product, such as:

• Firebase authentication and database services.
• AI model providers used for transcription, summarization, or to-do generation.
• Infrastructure or hosting providers used to run the backend.

EchoDrop does not sell personal information.

Security

EchoDrop uses authenticated API requests, user-scoped data access, request logging, and rate limiting to reduce misuse and protect stored information. No system can guarantee absolute security, so users should avoid submitting audio that they are not allowed to process or share.

Children

EchoDrop is not intended for children under 13, and it should not be used to process audio when doing so would violate local law, workplace policy, or contractual confidentiality requirements.

Changes

This privacy policy may be updated as EchoDrop changes. The effective date will be updated when material changes are made.

Contact

For privacy or support requests, use the support contact listed on the EchoDrop Chrome Web Store listing.