Recall

Privacy Policy

How Recall handles customer-memory data.

Privacy Policy — Recall

Effective Date: April 15, 2026

Last Updated: July 7, 2026

Recall: Recall, operated by Joseph Cornaggia ("we," "us," or "our")


1. What Recall Is

Recall is a customer-memory application for independent sellers and sales professionals. It helps users capture, structure, and find details from customer conversations using voice notes and AI-assisted extraction.

Recall is a productivity and customer-memory tool. It is not a CRM, medical-record system, loan-origination system, insurance policy system, legal matter-management system, password manager, document vault, compliance archive, or employer system of record.


2. What Data You Enter

You may choose to enter customer names, contact details, notes, product interest, follow-up reminders, objections, deal context, and other sales-relevant information.

Customer profiles and saved notes are stored locally on your device by default. If you enable Customer Book Backup with Sign in with Apple, Recall stores a latest recovery backup so you can restore an empty install. Recall does not provide staff with a browsing dashboard for your customer book.


3. Audio, Transcription, and AI Processing

When you submit a recording or note for AI processing, Recall sends the relevant content through Recall’s AI proxy for transcription and structured extraction.

The proxy may use third-party AI providers, including Groq and OpenAI, depending on provider availability and feature needs. AI processing is used to provide the service: transcription, structured extraction, search support, and recovery from malformed or ambiguous extraction results.

For AI processing requests, Recall’s AI proxy processes requests in transit and does not retain your customer profiles, audio, transcripts, or extracted notes as a persistent cloud customer database. Optional Customer Book Backup is separate and described below. AI providers process API requests under their standard API terms. Based on those terms, submitted API content is not used for advertising or model training unless Recall separately opts in, but providers may retain limited request metadata, inputs, outputs, or logs for abuse monitoring, security, reliability, or legal reasons for up to approximately 30 days depending on the provider and endpoint.

Submitted content may be processed by Recall’s AI proxy and AI providers in jurisdictions outside your country as needed to provide the service.

Audio is uploaded only when you submit a recording for transcription. By default, the local recording file is deleted from your device after processing unless you enable an available on-device retention setting.


4. Sensitive and Regulated Data

Recall is designed to preserve sales-relevant context while avoiding extraction or storage of sensitive personal, health, financial, credential, and regulated document contents.

Do not record, enter, upload, or store information in Recall that is unnecessary for sales follow-up, including:

Recall’s templates and AI prompts are designed to ignore blocked sensitive values and retain only non-sensitive business context when possible. For example, Recall may preserve “clinic asked for HIPAA review before trial” while avoiding patient names or medical-record details.

You are responsible for reviewing AI-generated extractions before saving or exporting them.


5. Medical Sales and Health Information

Recall is not designed to store PHI, patient records, or clinical chart content. Unless a separate written agreement says otherwise, Recall is not acting as a HIPAA Business Associate and should not receive, store, or manage protected health information.

Medical sales users should capture only sales-relevant account context, such as clinical champion, value-analysis status, reimbursement question, trial/evaluation stage, training need, or evidence request. Do not store patient-identifying information or patient-specific clinical details in Recall.


6. Usage and Product Events

Recall may store limited product events locally on your device to support app operation, subscription/trial flows, usage caps, and troubleshooting. These events are designed not to include customer names, notes, transcripts, search queries, phone numbers, email addresses, or audio.

Recall does not sell customer records, use customer notes for targeted advertising, license individual customer data, or share personal information for cross-context behavioral advertising. Because Recall does not sell or share personal information in that sense, California “sale” and “sharing” opt-out rights should not apply to Recall’s current practices.


7. Your Responsibilities

You are responsible for using Recall consistently with applicable laws, customer notices, consent requirements, employer policies, industry rules, record-retention obligations, and professional duties.

If your employer requires customer data to be stored in an approved system of record, use that system. Do not use Recall to bypass employer systems, duplicate restricted records, evade retention rules, or export customer information without authorization.


8. Data Export, Deletion, and Retention


9. Third-Party Services

ServicePurpose
Apple App StoreApp distribution, subscription management, purchase processing, refunds, and restore purchases. Apple receives Apple ID, purchase, and subscription information directly under Apple’s own terms.
RevenueCatSubscription entitlement verification, product offering display, and purchase/restore status. RevenueCat may process app user identifiers, purchase identifiers, entitlement status, and related subscription metadata.
Recall AI proxySecure routing for transcription and structured extraction
Recall-operated account recovery serviceOptional Customer Book Backup and restore after Sign in with Apple
Groq / OpenAI or similar AI providersTranscription, structured extraction, and AI processing

We use AI providers whose standard API terms state that submitted content is not used for advertising or model training unless Recall, as the API account holder, separately opts in. Recall transmits content to these providers only for the purpose of providing app features, such as transcription, structured extraction, and search support.

Recall may disclose information when required by law, valid legal process, or necessary to protect the security, rights, and safety of Recall, users, or others.


10. Data Security

Recall uses HTTPS/TLS for AI processing requests. Local data benefits from iOS device-level protections. You should protect your device with a strong passcode, Face ID or Touch ID, current OS updates, and any employer-required device-management controls.

No security system is perfect. If we learn of a security incident affecting data for which Recall is responsible, we will provide legally required notices.


11. Children’s Privacy

Recall is intended for adults using it in professional settings. We do not knowingly collect information from children under 13.


12. Changes to This Policy

We may update this policy. When we do, we will update the “Last Updated” date and provide notice where legally required.


13. Contact

Questions or requests:

Email: [email protected]

Mailing: Recall, c/o Joseph Cornaggia, 3031 Stanford Ranch Rd, Ste 2 - 1086, Rocklin, CA 95765-5554, United States


This policy should be reviewed by qualified counsel before publication or App Store submission.