Skip to main content

Privacy Policy for Threadeo

Last Updated: 2025-09-04

 

 

1. Introduction

This Privacy Policy explains how Threadeo Inc. (“Threadeo,” “we,” “us,” or “our”), a Delaware Corporation based in San Francisco, California, handles information. Our goal is to be transparent about our practices and to demonstrate our deep commitment to protecting the data entrusted to us.

 

2. An Important Distinction: Service Data vs. Website Data

This policy covers two distinct categories of information. It is crucial to understand the difference.

  • Service Data: This is the data that our clients (“Clients”)—typically law firms, court reporting firms, litigation support firms, trial consulting firms, corporate legal departments, and other legal professionals—provide to us for processing through our deposition video synchronization and AI-powered summary services. This data belongs to our Clients, and we are a “Data Processor” or “Service Provider” with respect to this data.
  • Website & Business Data: This is the information we collect about visitors to our website (threadeo.com), prospective clients, and current clients in the context of managing our business relationship. In this case, Threadeo is the “Data Controller.”

The rest of this policy is divided into sections explaining how we handle each category.

 

3. How We Handle Service Data (As a Data Processor)

This section applies to the video files, audio files, transcripts, documents, and other materials you upload to our platform for processing.

What We Do with Your Service Data

  • To Provide the Service: We access and process your Service Data solely to provide, maintain, and improve the services you have requested, such as synchronizing video depositions or generating AI-powered summaries.
  • On Your Instruction: All of our processing activities are performed on behalf of our Clients and in accordance with our contractual agreements, including our Master Service Agreement (MSA) and Data Processing Addendum (DPA).

What We DO NOT Do with Your Service Data

  • We DO NOT sell your Service Data.
  • We DO NOT share your Service Data with third parties, except for the limited purpose of using vetted sub-processors (like our cloud hosting provider) who are contractually bound to protect the data.
  • We DO NOT use your Service Data to advertise or market to you or any third party.
  • Crucially for AI: We DO NOT use your Service Data to train any AI models. Your data is used exclusively to generate summaries for you, and/or support in the creation of deposition video synchronization outputs, and is not used to benefit any other client.

How We Secure Your Service Data
The security of your Service Data is our highest priority. We maintain a comprehensive information security program aligned with the SOC 2 Trust Services Criteria, which includes:

  • Encryption: All Service Data is encrypted in transit and at rest using strong, industry-standard cryptographic protocols.
  • Access Control: We enforce the principle of least privilege, ensuring that access to Service Data is strictly limited to authorized personnel whose job duties require it.
  • Incident Management: We maintain a formal Incident Management Policy and response plan to detect and address any potential security events.

How Long We Retain Your Service Data
We retain Service Data in accordance with our Record Retention Policy.

 

4. How We Handle Website & Business Data (As a Data Controller)

This section applies to you when you visit our website, fill out a contact form, or interact with us as a prospective or current Client.

What We Collect

  • Information You Provide: Such as your name, work email address, phone number, and company name when you request a demo or contact us.
  • Usage Information: We may collect information about your interaction with our website, such as pages visited and links clicked, through the use of cookies and analytics tools.

How We Use It

  • To respond to your inquiries and provide you with information about our services.
  • To manage our business relationship with you and your organization.
  • To improve our website and marketing efforts.
  • To send you marketing communications, which you can opt out of at any time.

 

5. General Provisions (Applicable to All Data)

Data Security
We have implemented a robust set of administrative, technical, and physical security controls designed to protect all information from loss, misuse, and unauthorized access or disclosure.

Your Privacy Rights

  • For Service Data: If your personal information is contained within the Service Data of one of our Clients (for example, you are a witness in a deposition), you must contact that Client (the “Data Controller”) to exercise your rights (such as access or deletion). We will assist our Clients in responding to these requests as required by our DPA.
  • For Website & Business Data: If you have provided us with your information directly, you may have rights under applicable privacy laws. Please contact us at the address below to make a request.

Children’s Privacy
Our services are not directed to individuals under the age of 18, and we do not knowingly collect personal information from children.

Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The “Last Updated” date at the top of this policy indicates when it was last revised. We encourage you to review it periodically.

Contact Us
If you have any questions about this Privacy Policy or our privacy practices, please contact our designated Privacy Officer:

Email: privacy@threadeo.com
Attention: Privacy Officer, Threadeo Inc.

Close Menu