Yoodle

Privacy Policy

Last updated: March 9, 2026

1. Introduction

Yoodle ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our video meeting and collaboration platform.

2. Information We Collect

Account Information

  • Name and email address (via Google Sign-In or magic link)
  • Profile picture (from Google account, if available)
  • Workspace and organization membership

Meeting Data

  • Meeting metadata (titles, schedules, participants, duration)
  • Meeting recordings (when you choose to record)
  • AI-generated meeting notes, summaries, and action items
  • Chat messages within meetings

Ghost Room Data

  • Ghost room content is ephemeral and automatically deleted after 4 hours
  • We do not retain ghost room messages or files after expiry

Technical Data

  • IP address and approximate location (for rate limiting and abuse prevention)
  • Browser type and operating system
  • Usage analytics (feature usage, meeting frequency)

3. How We Use Your Information

  • To provide and maintain the Yoodle platform
  • To authenticate your identity and manage your account
  • To enable video meetings, recordings, and AI features
  • To connect with your Google Workspace (Calendar, Drive) when authorized
  • To send service-related emails (magic links, meeting invitations)
  • To monitor and prevent abuse, fraud, and security threats
  • To improve the platform based on aggregated usage patterns

4. AI Processing

Yoodle uses third-party AI services (Google Gemini) to generate meeting summaries, action items, and insights. Meeting transcripts may be sent to these providers for processing. We do not use your data to train AI models. Each provider's data handling is governed by their respective privacy policies.

5. Data Storage and Security

  • Data is stored in encrypted MongoDB databases
  • Recordings are stored in the user's Google Drive
  • All connections use TLS 1.2+ encryption
  • Authentication tokens are short-lived (15 minutes) with secure refresh mechanisms
  • Passwords are hashed using bcrypt with appropriate salt rounds
  • We implement rate limiting, CSRF protection, and security headers

6. Data Sharing

We do not sell your personal data. We may share information with:

  • AI Providers — meeting transcripts for generating summaries (processed, not stored)
  • Google — when you authorize Google Workspace integrations
  • Infrastructure Providers — for hosting (data processing agreements in place)
  • Legal Requirements — when required by law or to protect our rights

7. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Export your data in a portable format
  • Withdraw consent for optional data processing
  • Object to processing based on legitimate interests

To exercise these rights, contact us at privacy@yoodle.app.

8. Data Retention

  • Account data is retained while your account is active
  • Meeting recordings are retained until you delete them
  • Ghost room content is automatically deleted after 4 hours
  • Analytics data is aggregated and anonymized after 90 days
  • Upon account deletion, personal data is removed within 30 days

9. Cookies

Yoodle uses essential cookies for authentication (access tokens, refresh tokens). We do not use tracking cookies or third-party advertising cookies. Session cookies are encrypted and expire automatically.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or an in-app notification. Continued use of Yoodle after changes constitutes acceptance.

11. Contact

For privacy-related questions or concerns, contact us at privacy@yoodle.app.