Say

Privacy Policy

Effective Date: April 1st 2026

Say is built by KeptHuman. This Privacy Policy explains what information we collect, how we use it, who we share it with, and what choices you have. We believe in being straightforward — this policy is written in plain language so you can actually understand it.

Say is a messaging app for one-on-one and small group conversations. There are no public profiles, no feeds, and no follower counts. Your display name and profile photo are visible to people you're connected with and to other members of group conversations you join.

1. Information We Collect

Account Information

When you create a Say account, we collect:

Name (required) — displayed to your friends and to members of any group conversations you join
Email address — provided by your sign-in provider (Apple or Google)
Profile photo (optional) — if you choose to add one; visible to your friends and to members of any group conversations you join
Authentication provider ID — a technical identifier from Apple or Google used to authenticate your account

Voice Samples

If you choose to enable cloud processing for a language, you record a short voice sample (3-15 seconds of speech). This voice sample is used to create a voice profile — a technical model derived from your voice that is used to generate audio. You can record voice samples for any of the 42 supported languages. Voice samples may be considered biometric data in some jurisdictions; see "Your Rights" below for more information.

Messages

Text messages — the text you type in conversations

Generated Audio

When cloud processing is enabled, Say creates generated audio from your messages using your voice profile. This generated audio is stored so conversation participants can listen to it.

Friend Codes

Each user gets a unique friend code (format: SAY-XXXXXX). This is the only way to connect with friends on Say — there is no search, no contact upload, and no public directory.

Conversation Metadata

We store technical data needed to run conversations:

Participant lists
Message timestamps
Read receipts
Unread counts
Mute preferences

Group Data

For group conversations:

Group name
Group icon
Member list
Admin designation

Device Tokens

We store push notification tokens (via Firebase Cloud Messaging) so we can deliver notifications to your device.

2. How We Use Your Information

Here is exactly what we do with each type of data and why:

Data	What We Do	Why
Account information	Store it to identify you to your friends	So your friends see your name and photo in conversations
Voice samples	Send to Cartesia to create a voice profile, then delete the raw sample	To create a voice profile used to generate audio
Message text	Deliver to recipients; when cloud processing is enabled, send to OpenAI for emotion detection and to Cartesia for audio generation	To deliver your messages and, when cloud processing is enabled, detect tone/emotion and generate audio
Generated audio	Store in cloud storage	So conversation participants can listen to generated audio of your messages
Friend codes	Store server-side	To let you connect with friends
Conversation metadata	Store in our database	To operate core messaging features (delivery, read receipts, notifications)
Device tokens	Store in your user document	To send you push notifications

Cloud Processing — How It Works

When you enable cloud processing for a language, here is the full data flow:

Voice sample creation: You record a short sample of your speech. It is uploaded to our servers and sent to Cartesia (cartesia.ai), our voice processing provider, to create a voice profile. After the voice profile is created, the raw voice sample is deleted from our servers. Cartesia stores the resulting voice profile.
Text messages: When you send a text message, the text is sent to OpenAI to detect the emotion and speaking style of your message (e.g., excited, calm, questioning). The text and emotion data are then sent to Cartesia to generate audio using your voice profile. The generated audio is stored on our servers and made available to conversation participants.

3. Third-Party Services

We use the following third-party services. We do not sell your personal data. Say does not currently display advertising and does not use third-party analytics tracking.

Cartesia (cartesia.ai) — Voice Processing

What they receive: - Voice samples (to create voice profiles) - Message text (to generate audio)

What they store: - Voice profiles (identified by an opaque ID — not your name or email)

What they do NOT receive: - Your name, email, profile photo, or any account information - Your friend list or conversation metadata

Cartesia processes voice data to provide voice profile creation and text-to-speech services. We have a data processing agreement with Cartesia governing their handling of your data. When you delete a voice profile or your account, we instruct Cartesia to delete the associated voice profile.

OpenAI — Emotion Detection

What they receive: - Message text (to detect emotion and speaking style for natural-sounding audio generation)

What they do NOT receive: - Voice data of any kind - Your name, email, profile photo, or any account information - Your friend list or conversation metadata

OpenAI processes message text solely to improve the expressiveness of generated audio. We have a data processing agreement with OpenAI governing their handling of your data. Under OpenAI's API data usage policy, data sent through the API is not used to train their models.

Firebase / Google Cloud — Infrastructure

What they provide: - Database (Firestore) — stores messages, user profiles, conversation data - Cloud Storage — stores generated audio and profile photos - Cloud Functions — runs server-side logic - Cloud Messaging (FCM) — delivers push notifications

All app data resides on Google Cloud infrastructure. Google acts as a data processor on our behalf.

Apple and Google — Authentication

What they receive: - Only authentication-related data necessary to sign you in

Apple Sign-In and Google Sign-In are used for account creation and login. These providers do not receive your messages, voice data, or any other app content.

4. Data Storage and Security

All data is stored on Firebase / Google Cloud infrastructure. We use the following security measures:

Access controls: Firestore security rules ensure users can only read and write their own data.
Voice profile protection: Voice samples in cloud storage are owner-read-only. Cartesia voice profile IDs are stored in a server-only collection that is not readable by any client app.
Conversation privacy: Generated audio is accessible only to participants of the conversation it belongs to.
Authentication: All server-side functions validate that requests come from authenticated users.
Rate limiting: Sensitive operations are rate-limited to prevent abuse.
Notification tokens: FCM tokens are stored in user documents and are not accessible to other users.

Data is transmitted over encrypted connections (HTTPS/TLS). Please note that messages are not end-to-end encrypted — they are processed server-side to enable cloud processing features (emotion detection and audio generation). This means our servers and our third-party processing providers (Cartesia and OpenAI) can access message content as described in this policy.

No method of electronic storage or transmission is completely secure. While we use reasonable technical and organizational measures to protect your data, we cannot guarantee absolute security, and you acknowledge that you use the Service at your own risk. If we become aware of a data breach affecting your personal information, we will notify you as required by applicable law.

5. Data Retention and Deletion

What Happens When You Delete Your Account

You can delete your account at any time from within the app. When you do, we delete:

Your user profile (name, email, photo)
All your friendships
Your voice samples (from our servers)
Your voice profiles (from Cartesia)
Your messages
Your conversation memberships
Your FCM push notification tokens
All associated files in cloud storage (profile photos, generated audio)

What Happens When You Delete a Voice Profile

You can delete individual voice profiles (per language) at any time from within the app. This deletes:

The voice sample from our cloud storage
The voice profile from Cartesia

Message Retention

Messages are stored for as long as the conversation exists. When you delete your account, your messages are removed. Group conversations continue to exist for other members, but your messages and membership are removed.

Generated Audio Retention

Generated audio files are stored in cloud storage and are accessible to conversation participants. They are cleaned up when you delete your account.

6. Your Rights

For All Users

Regardless of where you live, you can:

Delete your account at any time from within the app
Delete your voice profiles individually at any time
Control cloud processing — choose whether to enable it per language

For Users in the European Economic Area (EEA), UK, and Switzerland (GDPR)

Under the General Data Protection Regulation, you have the right to:

Access — Request a copy of the personal data we hold about you
Correction — Request correction of inaccurate personal data
Deletion — Request deletion of your personal data (you can also do this directly in the app)
Portability — Request your personal data in a structured, machine-readable format
Restriction — Request that we restrict processing of your personal data
Objection — Object to our processing of your personal data
Withdraw consent — Where processing is based on consent, withdraw it at any time

Legal bases for processing:

Contract performance — Processing necessary to provide you with the Say messaging service (account data, messages, conversation metadata)
Consent — Processing of voice samples and generation of audio (you choose whether to create voice profiles and can withdraw consent by deleting them; if you do, message sending may be unavailable until you create a new voice profile)
Legitimate interests — Security measures, abuse prevention, and service improvement

To exercise any of these rights, contact us at the address below.

For California Residents (CCPA / CPRA)

Under the California Consumer Privacy Act and California Privacy Rights Act:

Right to Know — You can request what personal information we collect, use, and disclose. The categories are described in this policy.
Right to Delete — You can request deletion of your personal information. You can also delete your account directly in the app.
Right to Correct — You can request correction of inaccurate personal information.
Right to Opt-Out of Sale or Sharing — We do not sell or share your personal information for cross-context behavioral advertising. There is nothing to opt out of.
Non-Discrimination — We will not discriminate against you for exercising your privacy rights.

Categories of personal information we collect (as defined by the CCPA): - Identifiers (name, email, authentication provider ID) - Audio information (voice samples, generated audio) - Electronic communications information (message text, conversation metadata) - Internet or electronic network activity (message timestamps, read receipts) - Inferences (emotion detection results derived from message text) - Biometric information (voice samples used to create voice profiles — collected only with your explicit consent)

We do not sell personal information. We do not share personal information for cross-context behavioral advertising.

Do Not Track: Say does not track users across third-party websites or services and does not respond to Do Not Track signals, as we do not engage in any tracking.

Biometric Data Notice

In some jurisdictions (such as Illinois, Texas, and Washington), voice samples and voice profiles may be classified as biometric data or biometric identifiers. If you reside in a jurisdiction with biometric privacy laws:

We collect voice samples only with your explicit, informed consent (you must actively choose to enable cloud processing and record a voice sample).
Voice samples are sent to Cartesia solely to create a voice profile and are then deleted from our servers.
Cartesia stores voice profiles identified only by an opaque technical ID, not linked to your name or email.
You can delete your voice profiles at any time from within the app, which also instructs Cartesia to delete the corresponding voice profile.
We do not sell, lease, or trade voice samples or voice profiles.
Voice profiles are retained only as long as needed to provide cloud processing, or until you delete them or your account — whichever comes first.

7. Children's Privacy

Say is not directed at children under 13. You must be at least 13 years old (or the minimum age required in your jurisdiction) to create an account. We do not knowingly collect personal information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly. If you believe a child under 13 has created an account, please contact us.

8. International Data Transfers

Say uses cloud infrastructure and third-party services that may process your data outside your country of residence. When your data is transferred internationally, it is protected by the security measures described in this policy and by the data processing agreements we have with our service providers. For users in the EEA, UK, and Switzerland, transfers to countries without adequate data protection are covered by Standard Contractual Clauses or other approved transfer mechanisms.

9. Changes to This Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you through the app or by other appropriate means. The "Effective Date" at the top of this policy indicates when it was last updated. Your continued use of Say after changes take effect means you accept the updated policy.

10. Contact Us

If you have questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about how your data is handled, contact us at:

KeptHuman Email: legal@kepthuman.com

For GDPR-related inquiries, you also have the right to lodge a complaint with your local data protection authority.

11. Support

For general product support, contact:

KeptHuman Email: support@kepthuman.com