Your data, clearly explained.

Last updated: May 24, 2026. By creating an account or using Nativo, you consent to this policy and our Terms and Conditions.

What we collect

We collect your account data (such as email and user identifiers), your audio recordings, transcripts, and generated language-learning content. Please do not record other people without permission or upload audio that includes highly sensitive information you do not want processed.

Generated learning content includes transcripts, translations, chunked phrases, and vocabulary items produced from your recordings.

Where your data is stored

Audio recordings are stored in a Cloudflare R2 bucket. User accounts and generated learning data (transcripts, translations, chunks, and words) are stored in Supabase.

Audio and transcript text may be sent to OpenAI to create transcripts and lessons. We use these providers to operate Nativo; we do not sell your recordings or transcripts.

Why we process your data

We process data to provide core app functionality: authentication, recording management, lesson generation, and progress history. We also process limited technical metadata for reliability, abuse prevention, and security.

Because voice recordings and transcripts can reveal personal details, you remain in control of what you record and can remove sessions from your history.

Retention and deletion

Account data (Supabase)

Stored while your account is active. After account deletion, we keep limited account records for up to 24 months to handle reactivation requests, security investigations, and disputes.

Recordings (Cloudflare R2)

Stored while your account is active so you can access your learning history. After deletion requests, we remove recordings from active systems within 30 days and from backups within up to 90 additional days.

Learning outputs (Supabase transcripts, translations, chunks, words)

Stored while your account is active to provide lessons and progress history. Deleted with your account, subject to the same operational backup window.

Legal and compliance records

Where required by law (for example tax, accounting, fraud prevention, or legal claims), some records may be retained for up to 10 years.

We aim to keep data only as long as needed for product, security, and legal obligations. If you request deletion, we start removal workflows promptly.

Your rights

You can request access, correction, export, or deletion of your personal data. For privacy requests, contact us through the support channel listed in the app.