Privacy Policy

Effective date: April 16, 2026 · hello@podlens.app

What we collect

When you use Podlens, we collect what is necessary to provide the service and improve it over time:

URLs you submit. We use the URL you paste to fetch and transcribe the podcast or video.
Transcripts. Episode transcripts are processed to generate your analysis and cached to avoid re-processing the same content. They are never sold or shared with third parties.
Account information (if you sign up): your email address and a securely hashed password, or your name and email if you connect via Google, Spotify, or KakaoTalk. We do not store payment card details; Stripe handles all billing securely.
Usage and preference data: analyses you run, shows you follow or like, topics you select during onboarding, and voice preferences. This powers your library, personal intelligence features, and recommendations.
Intelligence signals. If you use features like the Bias Fingerprint or Echo Chamber Score, listen events are stored locally in your browser to calculate those scores. If you are logged in, these signals may be associated with your account for cross-device continuity.
Connected accounts. If you connect Spotify, Google, or KakaoTalk, we store the OAuth tokens and basic profile info (name, email) those services return, to enable library import and authentication. We never access payment data from connected accounts.
Usage logs: standard server logs (IP address, timestamp, response code) kept for up to 30 days for security and debugging.
Error and performance data: anonymized crash reports and performance metrics that help us diagnose and fix bugs.

How we use your data

To provide analysis results, your library, and personalized intelligence features
To authenticate your account and manage your subscription
To improve analysis accuracy and platform reliability
To send transactional emails (account confirmation, billing receipts) and, if you opt in, product updates
We do not use your data to serve advertising

Third-party services

To provide the service we use the following third-party processors. Each is bound by their own privacy and data processing agreements:

AssemblyAI handles audio transcription. Audio is transmitted to AssemblyAI for processing; see their privacy policy for details on data handling.
Anthropic (Claude API) handles transcript analysis. Episode transcripts are sent to their API. Anthropic does not train on API-submitted data by default; see their usage policies for details.
Stripe handles all payment processing. We do not store or have access to your card number or full payment details.
Supabase provides our database and authentication infrastructure. Account data, analyses, and preferences are stored there.
YouTube Data API is used to verify video metadata. No personal data is sent beyond the URL you are analyzing.
PostHog provides product analytics. We use it to understand aggregate feature usage; data is pseudonymous. You can opt out via browser-level Do Not Track settings.
Hotjar provides heatmaps and session recording so we can understand how people use the UI. Hotjar masks sensitive form inputs by default; see their privacy policy for opt-out options.
Sentry handles error monitoring. Crash reports are sent to Sentry to help us identify and fix bugs; these reports do not include personally identifiable content.
Google, Spotify, KakaoTalk are OAuth authentication providers. We receive only the data you explicitly authorize during the OAuth flow.

Community analysis cache

Completed analyses are stored in a shared cache. When another user analyzes the same episode, they receive the cached result rather than triggering a new analysis. Cached analyses are not linked to any individual user’s identity. This is how Podlens delivers fast results to everyone on the platform.

Cookies and local storage

We use a session cookie when you are logged in. We use your browser’s localStorage to store listen events, analysis history, and UI preferences for users who are not logged in. We do not use third-party advertising cookies.

Data retention

Cached transcripts: up to 30 days
Community analysis cache: indefinite (powers shared results for all users)
Account data: retained until you delete your account
Server logs: 30 days
Connected account tokens: until you disconnect the integration or delete your account

Your rights

Depending on your location, you may have rights to access, correct, delete, or export your personal data. You may also have the right to object to certain processing or to withdraw consent where processing is based on consent.

Access and export: you can view and export your analysis history from your account library at any time.
Deletion: you may delete your account and all associated personal data from Settings → Account → Delete account. We complete deletions within 14 business days. Anonymized data in the community analysis cache is not deleted because it is not linked to your identity.
Correction: email hello@podlens.app to correct inaccurate account information.
Opt out of analytics: browser-level Do Not Track settings or privacy extensions will limit PostHog and Hotjar data collection.

Children

Podlens is not directed to children under 13. We do not knowingly collect data from anyone under 13. If you believe we have inadvertently collected data from a minor, contact us and we will delete it promptly.

Changes to this policy

We may update this policy from time to time. Material changes will be communicated by email to registered users and by updating the effective date above. Continued use of the service after the updated effective date constitutes acceptance of the revised policy.

Contact

Privacy questions or data requests: hello@podlens.app