Whisgram

Privacy Policy

Last updated: 2026-06-27

Whisgram is a Chrome extension and web app that turns videos (YouTube and 1,000+ other sites) into AI-generated study notes, Mermaid diagrams, and transcripts. Using Whisgram requires an account so your credits and history follow you across devices. This policy explains exactly what we collect, why, who we share it with, and how you can delete it. We collect the minimum needed to run a paid, account-based service — and we never sell your data.

1. What we collect

1.1 Account & authentication

1.2 Data you submit

1.3 Data the service generates

1.4 Transcript history (stored in your account)

1.5 Payment data

1.6 Data we observe in the request

1.7 Usage analytics

2. What we do NOT collect

3. Third-party processors

To do its work, Whisgram relies on a small number of third parties. Each one only receives what it needs for its specific task.

ServiceWhat it receivesWhy
Supabase Your email/name (authentication), credit balance, and transcript history Authentication and database. Subject to Supabase's privacy policy.
Stripe Your payment details (entered directly on Stripe), and your email for the receipt Processing credit purchases. Subject to Stripe's privacy policy.
Modal The audio extracted from your video GPU-accelerated transcription (Whisper). Modal does not retain audio after processing.
OpenRouterAnthropic (Claude) The text transcript only Generating the summary, key takeaways, and Mermaid diagram. Subject to OpenRouter and Anthropic privacy policies.
Fly.io Standard HTTP request metadata (IP, headers) Hosting the application server. Subject to Fly's privacy policy.
Cloudflare Aggregate, anonymous page-view data (no cookies, no personal data) CDN, and privacy-first cookieless traffic analytics. Subject to Cloudflare's privacy policy.
Video platforms (e.g. YouTube) The URL you submitted Downloading the audio for transcription, via yt-dlp. We do not authenticate to these platforms.

4. Cookies

Whisgram does not use cookies for advertising or cross-site tracking. Authentication uses browser storage (not third-party cookies) to keep you signed in. The extension uses only browser-extension storage APIs, which are sandboxed to the extension.

5. Children

Whisgram is intended for a general audience of learners and is not directed at children under 13. If you are under 13, please do not use it. If you believe we have unintentionally collected data from a child under 13, contact us at the email below and we will delete it.

6. Your rights (GDPR, CCPA, and similar)

You can access and delete your data directly: your transcript history is deletable from the History view, and you can request deletion of your account and all associated data (email, credit balance, history) by emailing us.

To exercise any right under GDPR, CCPA, or similar laws — access, portability, correction, or deletion — email us at the address below. We respond within 30 days. Deleting your account removes your email, credit balance, and stored transcripts from our database.

7. Security

8. Changes to this policy

We may update this policy as Whisgram evolves. The "Last updated" date at the top reflects the most recent revision. Material changes will be announced on the Whisgram website.

9. Contact

Questions, concerns, or data-rights requests: [email protected].

← Back to Whisgram