Security and Data Processing
INSIGHT is designed for professional workflows involving interviews, statements, meetings, and sensitive notes. This page explains how data moves through the product, what AI systems may process, and what you should review before relying on an output.
What you upload
You upload audio or video recordings (interviews, statements, meetings, field audio), or paste transcript text and notes. Files up to 50 MB in common formats such as MP3, WAV, M4A, and MP4 are supported. You control what you upload; do not upload content you are not authorized to process.
How transcription works
Recordings are sent over encrypted connections (TLS) to cloud transcription infrastructure, where speech is converted to text. Paid transcriptions include automatic speaker labeling and timestamps. Audio is processed to produce your transcript; it is not used to train AI models.
How report generation works
When you generate a report, transcript text and the case details you enter are sent to a cloud AI model that drafts a structured document using the template you selected. The output is a draft. You review it, edit it, and export it as PDF, Word, or plain text.
How PII shielding works
Where configured, the PII Shield tokenizes personal identifiers (names, Social Security numbers, phone numbers, email addresses, and street addresses) before transcript text is sent to the report-generation model. The AI model sees placeholder tokens such as [NAME_01] instead of the underlying values, and the real values are restored in your finished report. Automated detection is not perfect; review outputs to confirm identifiers were handled as expected.
What third-party providers may process
INSIGHT uses vetted cloud infrastructure to operate: transcription and AI report-generation providers process recording audio and (shielded) transcript text under their API terms, and our hosting, database, and payment providers process account and billing data. We use API services whose terms do not permit training on customer data. We do not sell your data.
Encryption and integrity
- Reports are stored with AES-256-GCM encryption using keys derived per user.
- Data travels only over encrypted (TLS) connections.
- Each report carries a SHA-256 integrity hash and an Ed25519-signed audit trail, so you can check whether a stored report has been altered since generation.
What is not guaranteed
In plain terms, INSIGHT does not guarantee:
- Perfect transcription accuracy. Automated transcription may mishear, omit, or misattribute speech.
- Perfect PII detection. Identifiers can occasionally be missed or over-matched.
- Fitness for any specific legal, regulatory, or evidentiary standard. INSIGHT is not certified against compliance frameworks such as CJIS or HIPAA.
- Factual correctness of generated text. AI drafting can compress, rephrase, or misstate details.
Data retention and deletion
Stored reports remain in your encrypted account storage until you delete them. You can delete reports from your account at any time, which removes them from active storage. Account deletion requests and questions about retention specifics can be sent to [email protected].
Training policy
Your recordings, transcripts, and reports are never used to train AI models, by us or by the AI providers we use.
Your responsibilities
You remain responsible for verifying transcripts, checking facts, confirming speaker identities, meeting your organization's recording-consent and data-handling policies, and ensuring final reports meet applicable requirements before official use.
Security questions
Contact [email protected] with security questions or to report a concern. See also how your data is handled, our privacy policy, and our terms of service.
See the workflow before you upload anything real.
Browse sample reports and templates first, then try INSIGHT with your own recording.
View sample reports