Skip to content
tonebox
Get early access
Privacy

Privacy policy

Effective 10 May 2026. Plain English first; the longer treatment follows. If anything below is unclear, write to [email protected].

Summary
  • • The Tonebox macOS app stores your recordings, transcripts, and embeddings only on your Mac. Nothing is uploaded by default.
  • • If you opt into a cloud LLM (Anthropic / OpenAI), only the transcript snippets needed for that one request are sent — and they go to your provider, not to us.
  • • The Tonebox website (tonebox.io) collects no analytics and sets no third-party cookies.
  • • If you submit the contact form, we keep your email and message until your request is resolved.
  • • You can delete your local data at any time by removing the Tonebox folder from your Mac.

1. Scope

This policy covers two surfaces: the Tonebox website at tonebox.io, and the Tonebox macOS app distributed through the early-access program. It does not cover third-party services you choose to connect from inside the app (e.g. Anthropic, OpenAI, or a self-hosted Ollama instance) — those have their own policies.

2. The macOS app

Tonebox is local-first. Recordings, transcripts, summaries, and the local search/embedding index are stored in a folder on your Mac. The default location is ~/Library/Application Support/Tonebox, configurable in Settings. The app:

  • Does not require an account, login, or email address.
  • Does not send analytics, telemetry, or crash reports unless you opt in.
  • Does not check for updates against a remote server unless you click "Check for updates."
  • Runs Whisper transcription, diarisation, and the local embedding index on-device. Nothing is shipped to a server for those steps.

The only outbound network traffic is the LLM calls you opt into. When you summarise a session or ask a question, Tonebox sends the relevant transcript snippets to the provider you've configured — Anthropic, OpenAI, or your own Ollama endpoint — using a key you provide. Tonebox does not proxy that traffic; it goes directly from your Mac to the provider.

3. The website

The Tonebox marketing site is statically rendered, served over HTTPS, and (at launch) carries no analytics SDK and no third-party cookies. We may add privacy-respecting analytics (server-side or without cookies) later — if we do, this section will say so before they go live.

4. Contact form & early-access waitlist

If you submit the contact form, the message body, your name, and your email address are stored in our support system so we can reply. We retain those records for as long as needed to resolve your request, plus a small archive window (12 months) for follow-up.

If you join the early-access waitlist, we store the email address you give us (plus the optional name and use-case note) solely to send your invite and essential early-access updates. It is never sold, shared, or used for marketing beyond that. You can ask us to delete either record at any time at [email protected].

5. Cookies

The site does not set tracking cookies. We may use a strictly technical, first-party session cookie if needed for forms or rate limiting — never for advertising or cross-site tracking.

6. Children

Tonebox is not directed at children under 13 (or 16 in the EU/UK) and we do not knowingly collect data from them.

7. Your rights

Because the app collects nothing centrally, the GDPR / CCPA rights you'd typically exercise (access, deletion, portability) resolve to one action: delete the Tonebox folder on your Mac. For website / contact data, write to [email protected] and we'll handle it within 30 days.

8. Changes to this policy

If we change this policy, we'll update the effective date at the top and post the diff in the GitHub repository so you can audit what changed.

9. Contact

Questions, requests, or disclosures: [email protected]. Security issues should go to [email protected].