Pauso

Pauso

Last updated: January 1, 2025

Privacy Policy

Your privacy is fundamental to how we built Pauso. This policy explains what data we collect, how we use it, and your rights.

1. Introduction

Pauso ("we," "our," or "us") provides a team mindfulness service that integrates with video conferencing platforms. This Privacy Policy describes how we collect, use, and share information when you use our website (pauso.com), web application (app.pauso.com), and related services (collectively, the "Service").

By using Pauso, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our Service.

2. Our Core Privacy Commitment

Pauso is built on a zero-recording, privacy-first foundation. We want to be crystal clear about this:

  • We never record audio or video from your meetings
  • We never transcribe conversations that occur during sessions
  • We never store meeting content of any kind
  • We never analyze what is said during your mindfulness sessions

Our bot joins your video call solely to display visual guidance and play audio for the meditation session. It does not capture or transmit any data from your meeting beyond what is necessary to deliver the session.

3. Information We Collect

3.1 Account Information

When you create an account, we collect:

  • Email address: Used for authentication, communications, and identifying your organization
  • Name: As provided through your authentication provider (e.g., Google)
  • Profile picture: As provided through your authentication provider (optional)
  • Organization domain: Derived from your work email to associate you with your company

3.2 Calendar and Meeting Information

When you invite Pauso to a meeting, we receive:

  • Meeting time and duration: To know when to join
  • Video conferencing link: To join the correct meeting
  • Meeting title: For your reference in usage reports (optional)
  • Organizer email: To associate the session with your organization

We do not:

  • Access your full calendar
  • Read meeting descriptions or agendas
  • See the list of meeting participants
  • Access any other calendar events

3.3 Usage Information

We collect information about how you use the Service:

  • Number of sessions conducted per organization
  • Session completion status (started, completed, or failed)
  • Session duration
  • Video platform used (Zoom, Google Meet, Microsoft Teams)
  • Features accessed in our web application

3.4 Technical Information

We automatically collect certain technical information:

  • IP address (anonymized for analytics)
  • Browser type and version
  • Device type and operating system
  • Pages visited and time spent
  • Referring website
  • Error logs and performance data

3.5 Payment Information

If you subscribe to a paid plan, payment processing is handled by Stripe. We do not store your credit card numbers or banking information. We receive only:

  • Billing name and address
  • Last four digits of payment method (for your reference)
  • Payment status and history

4. How We Use Your Information

We use collected information to:

  • Provide the Service: Join your scheduled meetings, deliver mindfulness sessions, and maintain your account
  • Manage subscriptions: Track session usage against your plan limits and process payments
  • Improve the Service: Analyze usage patterns to enhance features and fix issues
  • Communicate with you: Send service updates, respond to inquiries, and provide support
  • Ensure security: Detect and prevent fraud, abuse, and unauthorized access
  • Comply with legal obligations: Meet regulatory requirements and respond to legal requests

5. Information Sharing

We do not sell your personal information. We share information only in these circumstances:

5.1 Service Providers

We work with trusted third parties who help us operate the Service:

  • Supabase: Database hosting and authentication
  • Stripe: Payment processing
  • Recall.ai: Video conferencing bot infrastructure
  • ElevenLabs: AI-generated meditation audio
  • PostHog: Product analytics
  • Vercel: Website and application hosting

These providers are contractually obligated to protect your data and use it only for the services they provide to us.

5.2 Legal Requirements

We may disclose information if required to:

  • Comply with applicable law, regulation, or legal process
  • Respond to lawful requests from public authorities
  • Protect the rights, privacy, safety, or property of Pauso, our users, or others
  • Enforce our Terms of Service

5.3 Business Transfers

If Pauso is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

5.4 With Your Consent

We may share information for other purposes with your explicit consent.

6. Data Security

We implement appropriate technical and organizational measures to protect your information:

  • Encryption in transit (TLS/HTTPS) and at rest
  • Regular security assessments and updates
  • Access controls and authentication requirements
  • Secure cloud infrastructure with industry-standard protections
  • Employee training on data protection

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

7. Data Retention

We retain your information for as long as:

  • Your account is active
  • Needed to provide the Service
  • Required by law or for legitimate business purposes

When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal, regulatory, or fraud prevention purposes.

Session logs (without personal content) may be retained for up to 12 months for analytics and billing verification purposes.

8. Your Rights and Choices

Depending on your location, you may have the right to:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate information
  • Deletion: Request deletion of your personal information
  • Portability: Receive your data in a portable format
  • Restriction: Request restriction of processing in certain circumstances
  • Objection: Object to processing based on legitimate interests
  • Withdraw consent: Where processing is based on consent

To exercise these rights, contact us at privacy@pauso.com. We will respond within 30 days.

9. Cookies and Tracking

We use cookies and similar technologies for:

  • Essential cookies: Required for the Service to function (authentication, security)
  • Analytics cookies: Help us understand how the Service is used (PostHog)

We do not use advertising cookies or sell data to advertisers. You can control cookie preferences through your browser settings.

10. International Data Transfers

Your information may be processed in countries other than your own, including the United States. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses where required.

11. Children's Privacy

Pauso is designed for workplace use and is not intended for children under 16. We do not knowingly collect information from children. If we learn we have collected information from a child, we will delete it promptly.

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

  • Right to know what personal information is collected, used, and shared
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell data)
  • Right to non-discrimination for exercising your rights

To exercise these rights, contact privacy@pauso.com.

13. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), UK, or Switzerland:

  • Our legal bases for processing include: contract performance, legitimate interests, and consent
  • You have rights to access, rectification, erasure, restriction, portability, and objection
  • You may lodge a complaint with your local data protection authority

For GDPR inquiries, contact our Data Protection contact at privacy@pauso.com.

14. Video Platform Integration

When Pauso joins your video meetings, we comply with the terms and privacy policies of each platform:

  • Zoom: We use Zoom's API in compliance with their Marketplace Developer Agreement
  • Google Meet: We access meetings only through calendar invitations you create
  • Microsoft Teams: We join meetings as an external participant when invited

We recommend reviewing each platform's privacy policy for their data practices.

15. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by:

  • Posting the updated policy on our website
  • Updating the "Last updated" date
  • Sending email notification for significant changes (for registered users)

Your continued use of the Service after changes constitutes acceptance of the updated policy.

16. Contact Us

If you have questions about this Privacy Policy or our data practices: