Data Collection Summary
| Data Category | What We Collect | Purpose | Status |
|---|---|---|---|
| Personal Identifiers | Participant ID (alphanumeric) | Link recordings to research studies | Required |
| Audio Files | Voice recordings of research tasks | Linguistics research, AI training | Required |
| Device Info | OS version, device type, app version | Technical support, compatibility | Automatic |
| Usage Data | App interactions, error logs | Improve user experience | Automatic |
Data We Do NOT Collect
- No location data (GPS or network-based)
- No photos or camera access
- No contacts or calendar
- No payment information (app is free)
- No browsing history or web data
- No email, name, or phone number (unless voluntarily provided for support)
How Data Is Used
Primary Uses
- Academic research (voice recordings for linguistics and speech analysis)
- AI model training (anonymized datasets for machine learning research)
- App improvement (usage patterns to enhance functionality)
Secondary Uses
- Technical support (device info and error logs for troubleshooting)
- Security (detect fraud, abuse, or policy violations)
Data Sharing Practices
Third-Party Services
| Service Provider | Data Shared | Purpose | Location |
|---|---|---|---|
| Cloudflare R2 | Audio files, metadata | Secure cloud storage | EU (Germany) |
| Sentry | Error logs, device info | Crash reporting | EU-compliant |
| PostHog | Anonymized usage data | Analytics | EU-compliant |
Research Partners
Voice recordings may be shared with:
- Academic institutions (under research agreements)
- Data labeling partners (for transcription, under NDAs)
- AI research organizations (anonymized datasets only)
All partners sign Data Processing Agreements (DPAs) ensuring GDPR compliance.
We do NOT sell your personal data to advertisers or third parties.
Data Security
Encryption
- Data in transit: TLS 1.3 encryption (HTTPS)
- Data at rest: AES-256 encryption
Access Controls
- Role-based access for YPAI staff
- Audit logging of all data access
- Regular security assessments
Limitations: No system is 100% secure. While we use industry-standard protections, we cannot guarantee absolute security against unauthorized access.
Data Retention and Deletion
Retention Periods
- Voice recordings: 5 years (for longitudinal research)
- Metadata: Anonymized and retained indefinitely
- Participant IDs: 7 years (for audit compliance)
How to Delete Your Data
- Email [email protected] with your Participant ID
- Request deletion of recordings and metadata
- We will process your request within 30 days
Note: Anonymized data used in published research cannot be retracted.
Your Privacy Rights (GDPR)
If you are in the European Economic Area (EEA), you have:
- Right to access: Request a copy of your data
- Right to rectification: Correct inaccurate data
- Right to erasure: Delete your recordings
- Right to restrict processing: Limit how we use your data
- Right to data portability: Receive your data in machine-readable format
- Right to object: Stop certain types of processing
- Right to withdraw consent: Opt out at any time
To exercise rights:
[email protected]Google Play Data Safety Declarations
This section mirrors the information displayed in the Google Play Store Data Safety section.
Data Collection
- Voice recordings (required)
- Participant ID (required)
- Device diagnostics (automatic)
Data Sharing
- Shared with research partners (under DPAs)
- Shared with cloud storage provider (Cloudflare R2)
- NOT sold to third parties
Data Security
- Encrypted in transit (TLS 1.3)
- Encrypted at rest (AES-256)
- User can request data deletion
Data Purposes
- App functionality (recording and upload)
- Analytics (anonymized usage patterns)
- Research (linguistics and AI training)