Last updated: July 5, 2026
This Privacy Policy describes how Narelio (a sole proprietorship, "we", "us") handles your information in connection with the macOS application "Dictum" (the "App") and the official website dictum.app (the "Site").
1. Core Principle — Local Processing
The App is built on a fully-local processing architecture.
- Your screen recordings, audio, transcripts, and generated documents never leave your Mac. Recording, speech recognition, and document generation all run on your device.
- We have no means of accessing your recordings, audio, transcripts, or documents. They are stored only on your device, under your control (the storage location is shown in the App's settings).
- By default, the App performs no network communication except as described in Section 2.
2. When the App Communicates
2.1 AI Model Downloads (functionally required)
Speech recognition and document generation require downloading AI model files from the Hugging Face Hub operated by Hugging Face, Inc. (huggingface.co). Your IP address and related connection data are transmitted to Hugging Face in the process, governed by their privacy policy (https://huggingface.co/privacy). Only model files are downloaded; none of your data is uploaded.
2.2 Anonymous Usage Statistics & Crash Reports (opt-in; OFF by default)
Only if you explicitly enable it in Settings, we receive the following. This is disabled by default, and every feature works with it disabled.
- What is sent: feature usage counts (e.g., recording completed, document generated), error categories, crash information (stack traces), App/macOS versions, chip type, installed memory, and an anonymous identifier.
- What is never sent: recordings, audio, transcripts, generated documents, file names, custom template contents, vocabulary entries, or any other content you create.
- Processors: crash reports are processed by Functional Software, Inc. (Sentry); usage statistics by PostHog, Inc. (EU-region servers), each under their own privacy policies.
- Retention: such data is deleted or anonymized within 12 months.
- You can withdraw your opt-in at any time in Settings; no further data will be sent.
2.3 Purchases & License Activation
Paid licenses are sold by Paddle.com Market Ltd. ("Paddle") as Merchant of Record. Payment details (such as card numbers) are processed directly by Paddle and never reach us. We receive only order information (email address, plan, country, license key) from Paddle, governed by Paddle's privacy policy (https://www.paddle.com/legal/privacy). License activation is designed to work offline on your device.
2.4 Update Checks
The App may query our server for new-version information (via the Sparkle framework), transmitting technical data such as app and OS versions. Automatic checks can be disabled in Settings.
3. The Website
The Site may collect anonymous analytics; where it does, we will notify you (e.g., via a cookie banner) and will not track you without consent. Contact details you provide (such as an email address) are used solely to respond to your inquiry.
4. Purposes of Use
- Providing the App, managing licenses, and handling purchases
- Diagnosing and fixing defects and improving quality (opt-in crash/usage data only)
- Responding to inquiries
- Complying with legal obligations
5. Disclosure to Third Parties
We do not disclose your information to third parties except: (1) with your consent; (2) to the processors listed in Section 2 (Hugging Face, Sentry, PostHog, Paddle) to the extent necessary; or (3) where required by law.
6. For EU/EEA and UK Users (GDPR)
- The legal basis for opt-in usage/crash data is consent (Art. 6(1)(a) GDPR); for purchase-related data, performance of a contract (Art. 6(1)(b)).
- You have the rights of access, rectification, erasure, restriction, data portability, and withdrawal of consent. Contact us via Section 9.
- Usage statistics are processed in PostHog's EU region. Where transfers outside the EEA occur (e.g., crash reporting), we rely on appropriate safeguards such as Standard Contractual Clauses.
7. For Users in Japan (APPI)
We handle personal information within the stated purposes and implement appropriate security controls under the Act on the Protection of Personal Information. Requests concerning disclosure, correction, or suspension of use may be made via Section 9.
8. Security
We apply reasonable safeguards (access restriction, TLS encryption in transit, careful selection of processors) to information we receive. Data stored on your device (recordings, documents, etc.) is under your control and your responsibility.
9. Contact
- Business name: Narelio ([proprietor name])
- Address: [address]
- Contact: support@narelio.com
10. Changes
We may update this Policy. Material changes will be announced on the Site and in the App. The updated Policy takes effect when posted on the Site.