Security & trust

Sumarii processes meeting audio, transcripts, and minutes. We handle personal information in line with Japan’s Act on the Protection of Personal Information (APPI) and other applicable law.

Personal information (APPI)

Our Terms of Service, Privacy Policy, contracts, and technical and organizational safeguards are designed to meet our obligations and support customers where the APPI applies.

What we do

• Audio, transcripts, and meeting content are not used to train our models or provider models we rely on.
• Customer data is stored on infrastructure located in Japan, in principle.
• Traffic between your browser and Sumarii uses HTTPS. Stored data is encrypted at rest.
• The product requires sign-in. Data is not exposed to anonymous visitors by design.
• Data is scoped to workspaces. Database row-level security limits access to your organization.
• Audio files are not served from permanent public URLs. Access uses short-lived signed URLs.
• You can export sessions as docx, txt, srt, or audio. PDF export is not available today.

Subprocessors

We use the providers below for the roles described. Each processes data only as needed for that role. See also our Privacy Policy.

• Database, authentication, and application object storage
• Audio and media file storage
• Transcription, meeting notes, and chat (via API)
• Transactional email
• CDN and edge security for web delivery

Legal documents on this site

For definitions, retention, and legal terms, see:

• Privacy policy
• Terms of service
• Commerce disclosure

Report a security issue

If you believe you have found a security vulnerability affecting Sumarii, email help@sumarii.com. Include enough detail for us to reproduce the issue. Please do not publish exploit details or customer data before we have had a reasonable chance to investigate.