Matcha Note

Privacy Policy

Matcha Note, LLC

Effective Date: March 23, 2025

Last Updated: March 23, 2025

1Introduction

Matcha Note, LLC ("Matcha Note," "we," "us," or "our") operates an AI-powered note-taking platform that enables users to create, organize, and enhance their notes using artificial intelligence. We are committed to protecting your privacy and ensuring transparency in our data practices.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website matchanotes.com, our mobile applications, and any related services, features, content, or applications (collectively, the "Platform").

Key Commitment: We respect your ownership of your notes. For all users, we implement strict privacy controls, and for Enterprise customers, we guarantee that your data is isolated and never used for general AI model training purposes without explicit consent.

2Information We Collect

2.1 Information You Provide Directly

  • Account Information: Name, email address, username, password, profile picture, and organization details.
  • Note Content: Notes, documents, audio recordings, images, and any data you upload to the Platform.
  • Payment Information: Billing address, payment card details (processed securely through Stripe), subscription preferences.
  • Communications: Messages, feedback, support requests, and any correspondence with our team.

2.2 Information Collected Automatically

  • Usage Data: Note creation patterns, interaction metrics, feature usage, and engagement analytics.
  • Device Information: IP address, browser type, operating system, device identifiers, and device specifications.
  • Cookie Data: Session cookies, preference cookies, security cookies, and analytics cookies.
  • AI Interaction Data: Prompts, queries, and interactions with our AI models.

2.3 Information from Third Parties

  • OAuth Providers: Basic profile information when you sign in using Google or other authentication providers.
  • Integration Partners: Data from connected calendars, cloud storage, or productivity tools you explicitly link.

3AI and Data Training Practices

3.1 Consumer Accounts

For standard user accounts, we may use anonymized and aggregated data to improve our AI models and enhance the platform's capabilities. This includes:

  • Analyzing note structures to improve AI formatting
  • Enhancing natural language processing for better summarization
  • Improving the accuracy of search and organization features

Important: Personal identifiers are removed, and data is aggregated before any AI training occurs. You can opt-out of data usage for AI improvement in your account settings.

3.2 Enterprise Accounts

Zero Training Guarantee: For Enterprise customers, we provide the following commitments:

  • Your data is NEVER used to train, improve, or develop our general AI models.
  • All content remains completely isolated within your organization's instance.
  • Data processing occurs securely and confidentiality is maintained.

4How We Use Your Information

  • Service Delivery: Operating the platform, processing transactions, and providing customer support.
  • AI-Powered Features: Generating summaries, flashcards, quizzes, and organizing content.
  • Communication: Sending service updates, security alerts, and (with consent) promotional materials.
  • Improvement: Analyzing usage patterns to develop new features and improve user experience.
  • Security: Detecting fraud, preventing abuse, and maintaining platform integrity.
  • Legal Compliance: Meeting regulatory requirements and responding to legal processes.

5Information Sharing and Disclosure

5.1 We DO NOT Sell Your Personal Information

We never sell, rent, or trade your personal information to third parties for their marketing purposes.

5.2 Limited Sharing Scenarios

  • Service Providers: Trusted vendors who help operate our platform (e.g., cloud hosting, payment processing), subject to strict confidentiality agreements.
  • Legal Requirements: When required by law, subpoena, or court order.
  • Business Transfers: In connection with mergers, acquisitions, or asset sales (with notice to users).
  • Consent: When you explicitly authorize us to share information.

6Data Security

We implement industry-standard security measures to protect your information:

Encryption

AES-256 encryption for data at rest and TLS 1.3 for data in transit.

Access Controls

Role-based access, multi-factor authentication, and principle of least privilege.

Security Incident Response: In the event of a data breach, we will notify affected users within 72 hours in accordance with applicable laws.

7Your Rights and Choices

  • Access: Request a copy of your personal data.
  • Correction: Update or correct inaccurate information.
  • Deletion: Request deletion of your account and associated data.
  • Portability: Export your data in a machine-readable format.
  • Opt-Out: Unsubscribe from marketing communications.

You can exercise most rights directly through your account settings. For additional requests, contact us at hello@matchanote.app.

8Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

  • Active Account Data: Retained while your account is active.
  • Deleted Content: Permanently deleted from our active servers immediately, and from backups within 90 days.
  • Inactive Accounts: We may delete accounts that have been inactive for an extended period (typically 12 months) with prior notice.

9Contact Information

General Privacy Inquiries

Email: hello@matchanote.app

Support: hello@matchanote.app

Quick Links

By using Matcha Note, you acknowledge that you have read and understood this Privacy Policy.

Version 2.0 | Document ID: PP-2025-01

© 2025 Matcha Note, LLC. All rights reserved.