BASHCAT Application Privacy Policy

Developer:BASHCAT

Last Updated:March 2, 2026

This Privacy Policy (hereinafter "Policy") applies to all applications and related services developed and operated by BASHCAT. Please read all provisions carefully before using our services.

Article 1 — Data Collection

To provide and improve our services, we may collect the following categories of personal data:

  • ·Location Data: With your explicit authorization, the service may collect your geographic location information for the purpose of delivering location-based features.
  • ·Usage Data: Anonymized data including application usage frequency, feature utilization statistics, and activity logs.
  • ·Device Data: Technical information such as device model, operating system version, unique device identifiers, and network connection status.
  • ·Account Data: Contact information provided at registration, including name and email address.
  • ·Business Data: Project requirements, technical specifications, and other business-related information you voluntarily provide.

Article 2 — Purpose of Data Use

Data collected by us is used solely for the following defined purposes:

  • ·To provide core application functionality and maintain normal service operation.
  • ·To display necessary user information within community features, where applicable.
  • ·To analyze usage data for the continuous improvement of service quality and user experience.
  • ·To provide technical support and respond to user inquiries and requests.
  • ·To send important service notifications, security alerts, and project update information.
  • ·To detect, prevent, and address technical issues or security threats.

Article 3 — Data Sharing

We are committed to never selling your personal data to any third party. We may share your information only in the following circumstances:

  • ·With your explicit consent.
  • ·Where necessary to share with partners in order to provide services you have requested.
  • ·As required by law, court order, or lawful investigation by a governmental authority.
  • ·Where necessary to protect the rights, property, or safety of BASHCAT, our users, or the public.

Article 4 — Data Security

We implement the following technical and organizational measures to protect the security of your personal data:

  • ·Industry-standard SSL/TLS encryption technology to secure data in transit.
  • ·Strict access controls and authentication mechanisms.
  • ·Regular security system updates and vulnerability patching.
  • ·Restricted internal access to personal data, limited to personnel with a legitimate business need.
  • ·Periodic review of data security measures and ongoing enhancement of protective capabilities.

Article 5 — Data Retention

We retain your personal data only for as long as necessary, in accordance with the following rules:

  • ·Duration of Account: Your account data will be retained until you actively request account deletion.
  • ·Statutory Retention Periods: Certain data will be retained for periods required by applicable laws and regulations.
  • ·Post-Purpose Retention: Once the purpose for which data was collected has been fulfilled and no legal retention obligation exists, data will be securely deleted or anonymized.

Article 6 — User Rights

Subject to applicable law, you have the following rights with respect to your personal data:

  • ·Right of Access: You have the right to request access to the personal data we hold about you.
  • ·Right to Rectification: You have the right to request correction of inaccurate or incomplete personal data.
  • ·Right to Erasure: You have the right to request deletion of personal data we hold about you.
  • ·Right to Restriction of Processing: You have the right to request that we restrict the manner in which we process your personal data.
  • ·Right to Withdraw Consent: You have the right to withdraw any previously granted consent to the processing of your personal data at any time.
  • ·Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.

Article 7 — Location Services

The following provisions apply to the collection and use of location data:

  • ·Collection of location data is entirely voluntary and subject to your authorization; you may choose not to provide it at any time.
  • ·You may disable location service permissions at any time through your device's system settings.
  • ·Disabling location services does not affect the normal use of other application features.
  • ·We will not continuously track your geographic location without your consent.

Article 8 — Cookies and Tracking Technologies

Our websites and applications may use the following technologies:

  • ·Necessary Cookies: Required for the basic functionality of our website and application to operate properly.
  • ·Analytics Cookies: Help us understand how users interact with our services in order to improve the user experience.
  • ·Functional Cookies: Remember your preferences and personalization settings.

You may manage or disable these cookies through your browser settings.

Article 9 — Third-Party Services

Our service may integrate the following third-party services. Each such service maintains its own privacy policy, which we recommend you review independently:

  • ·Analytics tools (e.g., Google Analytics): Used to collect anonymized usage statistics.
  • ·Push notification services (e.g., Firebase Cloud Messaging): Used to deliver application notifications.
  • ·Cloud storage services: Used for data backup and cross-device synchronization.

Article 9-1 — Third-Party AI Services

The application "LM Memo" (LM備忘錄) offers optional AI-powered features, including summary generation and intelligent Q&A. Use of these features may involve transmitting certain data to third-party AI service providers of your choosing.

1. Supported Third-Party AI Service Providers

  • ·OpenAI (https://openai.com)
  • ·DeepSeek (https://deepseek.com)
  • ·OpenRouter (https://openrouter.ai)
  • ·Azure OpenAI (Microsoft)
  • ·Together AI (https://together.xyz)
  • ·Groq (https://groq.com)
  • ·Local models (Ollama, LM Studio) — fully offline; no data is transmitted to any external party

2. Data Transmitted to Third-Party AI Services

  • ·Transcriptions of your recordings (used for summary generation)
  • ·Your chat messages and conversation history (used for intelligent Q&A)
  • ·Metadata such as recording titles and dates (used as contextual reference)

3. Data That Is Not Transmitted

  • ·Raw audio files: Speech-to-text processing is performed entirely on-device using Apple SFSpeechRecognizer (on-device mode) or WhisperKit (offline model); audio data is never transmitted to any third party.
  • ·Personally identifiable information: Including name, email address, phone number, and device identifiers.
  • ·API keys: Provided by you, securely stored in the device Keychain, and used solely to send requests to your selected service.

4. User Controls

  • ·AI features are optional and can only be enabled after you have actively configured an API key.
  • ·Upon first use of any AI feature, the application will display a data usage disclosure; data transmission will only occur after you have acknowledged and consented.
  • ·You may switch to a local AI model (Ollama or LM Studio) at any time in Settings to prevent any data from being transmitted to the cloud.
  • ·The application provides a "Confirm Before Sending" option (enabled by default), allowing you to cancel each transmission before it occurs.

5. Third-Party Service Privacy Policies

Each AI service provider maintains its own privacy policy and data processing practices governing data it receives. We encourage you to independently review the privacy policy of your selected service provider. We assume no responsibility for the data processing practices of third-party AI services.

Article 9-2 — iCloud Backup

The application provides an optional iCloud Drive backup feature that allows you to back up your recordings and data to your personal iCloud account.

  • ·Backup data is stored in your own iCloud Drive account and is governed by Apple's iCloud Terms of Service and Privacy Policy.
  • ·iCloud backup is entirely optional and must be manually initiated by you.
  • ·We do not have access to your iCloud Drive data; all data is encrypted and managed by Apple.

Article 9-3 — Apple Watch Companion App

The application provides a companion Apple Watch app that communicates with the iPhone app via Apple's WatchConnectivity framework.

  • ·Data transferred between iPhone and Apple Watch remains on your devices and is transmitted through Apple's encrypted WatchConnectivity protocol.
  • ·No data from the Watch app is sent to any third-party server.

Article 9-4 — YouTube Content Import

The application provides an optional feature to import audio from YouTube videos for transcription purposes.

  • ·This feature uses a third-party service (Cobalt API) to extract audio from YouTube URLs you provide.
  • ·Only the YouTube URL you specify is sent to the Cobalt API; no personal information is transmitted.
  • ·The extracted audio is processed entirely on-device for transcription and is not stored on any external server.
  • ·You are responsible for ensuring your use of this feature complies with YouTube's Terms of Service.

Article 10 — Children's Privacy

We place great importance on the protection of children's privacy:

  • ·This service is not designed for or directed at children under the age of thirteen.
  • ·We do not knowingly collect personal data from children under the age of thirteen.
  • ·If we discover that we have inadvertently collected personal data from a child, we will promptly take appropriate measures to delete such data.
  • ·If you believe we may hold personal data belonging to a child, please contact us immediately.

Article 11 — Policy Changes

We reserve the right to revise this Policy at any time. The following procedures apply upon any such revision:

  • ·We will publish an update notice within the application or on our website.
  • ·For material changes, users will additionally be notified by email or in-app push notification.
  • ·We recommend that you periodically review this Policy to stay informed of the latest privacy practices.
  • ·Your continued use of the service following any revision to this Policy constitutes your acceptance of the revised terms.

Article 12 — Governing Law and Jurisdiction

  • ·This Policy, including its formation, interpretation, and performance, shall be governed by the laws of the Republic of China (Taiwan).
  • ·All disputes arising out of or in connection with this Policy shall be subject to the exclusive jurisdiction of the Taiwan Taipei District Court as the court of first instance.
  • ·The Traditional Chinese version of this Policy is the official and authoritative version. In the event of any inconsistency between a translation and the Traditional Chinese version, the Traditional Chinese version shall prevail.

Article 13 — Contact Information

If you have any questions or suggestions regarding this Policy, or wish to exercise any of the personal data rights described herein, please contact us through the following:

BASHCAT
Email: bashcat0804@gmail.com
Response Time: Within five business days
This policy was last updated on:March 2, 2026
Contact Us