Data privacy and security
Convo takes data privacy and security seriously. Learn how we protect your conversations and what controls you have over your data.
What data does Convo collect?
Conversation audio
Convo processes real-time audio from your meetings to provide AI assistance. Audio is not permanently stored unless you explicitly choose to save it.
Meeting transcripts
Text transcriptions are created for AI analysis and can be saved based on your retention settings.
Participant information
Names, email addresses, and professional information of meeting participants for context and insights.
Meeting metadata
Date, time, duration, and platform information for organizing and analyzing meeting patterns.
How we protect your data
Encryption
- • AES-256 encryption at rest
- • TLS 1.3 encryption in transit
- • End-to-end encryption for sensitive data
Access controls
- • Role-based access control
- • Multi-factor authentication
- • Regular access audits
Infrastructure
- • SOC 2 certified data centers
- • 24/7 security monitoring
- • Regular penetration testing
Compliance
- • GDPR compliant
- • SOC 2 Type I certified
- • ISO 27001 in progress
Your privacy controls
Data retention settings
Control how long Convo keeps your data:
- Default: 30 days automatic deletion
- Extended: Up to 7 years for compliance needs
- Immediate: Delete after each meeting session
- Custom: Set specific retention periods per data type
Consent management
Convo includes built-in consent workflows:
- Automatic consent prompts for meeting participants
- Granular consent for different data processing activities
- Easy consent withdrawal at any time
- Consent records maintained for compliance
Data export and deletion
You have complete control over your data:
- Export all your data in standard formats
- Delete specific meetings or all data
- Request data deletion via support
- Automatic deletion upon account closure
Regional data handling
Data residency
Your data is processed and stored in secure facilities:
- • US customers: Data stored in US data centers
- • EU customers: EU data centers available (Q1 2025)
- • Enterprise: Custom data residency options
GDPR compliance
Convo is fully GDPR compliant and respects your data rights:
Right to access
View all personal data we have about you
Right to rectification
Correct any inaccurate personal information
Right to erasure
Delete your personal data permanently
Right to portability
Export your data in standard formats
Configuring privacy settings
- Access privacy settings - Go to Settings > Privacy & Security
- Set data retention - Choose how long to keep different types of data
- Configure consent - Set up consent workflows for your organization
- Review permissions - Check what data Convo can access
- Enable notifications - Get alerts about privacy-related events
Security best practices
For individuals:
- • Use strong, unique passwords for your Convo account
- • Enable two-factor authentication
- • Regularly review your meeting history and delete sensitive data
- • Only share meeting insights with authorized team members
- • Keep the Convo app updated
For organizations:
- • Establish clear data handling policies
- • Train team members on consent requirements
- • Regularly audit data access and usage
- • Set up appropriate retention policies
- • Monitor compliance with your industry regulations
Incident response
In the unlikely event of a security incident:
- We detect and respond to incidents within 15 minutes
- Affected customers are notified within 72 hours
- Detailed incident reports are provided
- We work with authorities as required by law
- Post-incident reviews improve our security measures
Third-party integrations
When you connect Convo with other services:
- We only share data necessary for the integration to function
- Third-party services must meet our security standards
- You can revoke integration permissions at any time
- We maintain audit logs of all data sharing
Questions about privacy? Our privacy team is available to answer questions about data handling, compliance, or security. Contact us at privacy@itsconvo.com.