Privacy Policy
Last updated: June 22, 2026
This Privacy Policy explains how Sotto Cue ("Sotto Cue", "Sotto", "we", "us", or "our") collects, uses, shares, stores, and protects information when you use our website, desktop app, account dashboard, billing flow, AI coaching features, and related services (the "Services"). Sotto Cue is a service operated by Lonnie Moon, a sole proprietor based in New York, United States. If the business is incorporated, this Policy will be carried over to the successor entity (expected to be Sotto Cue, Inc.) as described in Section 12 and Section 23.
Because Sotto can process live call audio, transcripts, and AI-generated coaching, please read this Policy carefully. You are responsible for making sure you have all rights, notices, permissions, and consents required before using Sotto on a call. See Section 13.
1. Scope
This Policy applies to information we process when you visit our website, create an account, download or use the desktop app, start checkout, manage billing, contact support, or otherwise use the Services.
This Policy does not apply to third-party websites, apps, platforms, payment processors, AI providers, transcription providers, meeting tools, or other services that operate under their own terms and privacy policies. If you use Sotto on behalf of a business, that business may have its own privacy obligations to its employees, customers, prospects, and call participants.
2. Information we collect
We collect information you provide directly, information generated by your use of the Services, information processed through the desktop app, and information from third-party service providers.
3. Account information
When you create or access an account, we may collect your email address, name, authentication provider, user ID, profile information provided by your sign-in provider, account status, plan, subscription status, and related identifiers.
4. Billing information
If you purchase a paid plan or Time Pack, our payment processor may collect payment card details, billing address, tax information, invoice information, and other payment details. We do not store full payment card numbers. We may store limited billing information such as Stripe customer ID, subscription ID, plan, billing cycle, payment status, invoice status, cancellation status, and transaction metadata so membership can sync between the website and desktop app.
5. Call content and coaching data
Sotto may process call audio, system audio, transcripts, speaker text, excerpts, conversation context, notes, prompts, generated suggestions, coaching labels, sales-stage signals, objections, and related analytics (collectively, "Call Content"). Call Content may include personal information about you, your Users, prospects, customers, or other call participants.
We do not store raw call audio. During a call, audio is streamed to our transcription provider to convert it to text and is processed transiently; we store the resulting transcript and the cues Sotto generates, linked to your account.
Do not use Sotto for calls where recording, monitoring, transcription, streaming, AI processing, or analysis is prohibited or where you have not obtained required consent. Do not submit sensitive information unless necessary and lawful for your use of the Services.
6. Device, app, and usage information
We may collect device and app information such as operating system, app version, browser type, IP address, time zone, country or general location derived from IP address, device identifiers, log data, diagnostic events, crash reports, feature usage, call and usage metering, subscription checks, error messages, consent acknowledgments and their timestamps, and performance information.
7. Communications and support
If you contact us, we may collect your name, email, message contents, attachments, support history, feedback, survey responses, and other information you choose to provide.
8. Information from third parties
We may receive information from authentication providers, payment processors, hosting providers, analytics providers, AI and transcription providers, operating systems, app distribution platforms, support tools, publicly available sources, and other service providers. We may combine this information with information we collect directly.
9. Cookies and similar technologies
We may use cookies, local storage, pixels, SDKs, and similar technologies to operate the website, keep you signed in, remember preferences, measure usage, understand traffic, improve the Services, detect abuse, and support marketing. You can control cookies through your browser settings, but disabling cookies may cause parts of the Services to stop working.
Required cookies and local storage are used for security, authentication, checkout, and core site functionality. Analytics and performance tools help us understand how users interact with the Services. Marketing technologies may be used if we run advertising, attribution, or growth campaigns.
10. How we use information
We use information to:
- provide, operate, maintain, secure, and improve the Services;
- authenticate users and sync account status between the website and desktop app;
- process payments, manage subscriptions and Time Packs, send receipts, and enforce billing and usage limits;
- capture, transcribe, analyze, and generate coaching for calls at your direction;
- record consent acknowledgments to help administer the Services and maintain compliance records;
- respond to support requests, debug issues, and communicate with you;
- detect, prevent, investigate, and respond to fraud, abuse, security incidents, and policy violations;
- measure performance, understand product usage, and develop new features;
- send administrative notices, product updates, security alerts, and service communications;
- send marketing communications where permitted by law, with opt-out options where required;
- comply with legal obligations, enforce agreements, and protect rights and safety; and
- create aggregated, de-identified, or anonymized information that does not reasonably identify you or call participants.
11. AI and transcription providers (subprocessors)
Sotto may transmit prompts, transcripts, audio, excerpts, and related context to AI, speech-to-text, and infrastructure providers so the Services can operate. These providers may process information according to their own terms, privacy policies, data retention settings, and security practices. Our current core providers are:
- Deepgram — converts call audio to text (speech-to-text transcription).
- Anthropic — generates live cues from the transcript (AI coaching).
- Supabase — stores account data, transcripts, and cues (database and hosting).
- Stripe — processes payments and manages subscriptions.
We do not claim ownership of your Call Content. We may use Call Content and related metadata to provide, support, debug, secure, evaluate, and improve Sotto, subject to this Policy and our Terms. If we materially change how we use Call Content for model training or product development, we will update this Policy.
12. How we share information
We do not sell personal information. We may share information in the following circumstances:
- with service providers that help us run the Services, including hosting, authentication, database, payment, analytics, AI, transcription, support, security, and email providers;
- with payment processors to process charges, invoices, refunds, disputes, taxes, and subscription changes;
- with AI and transcription providers to process Call Content and generate coaching at your direction;
- with your organization or account administrator if you use Sotto through an organization, employer, or team account;
- with professional advisers such as lawyers, accountants, insurers, auditors, and security consultants;
- with authorities, courts, regulators, or other parties when we believe disclosure is required or appropriate to comply with law, legal process, or safety obligations;
- to enforce our Terms, prevent abuse, investigate security issues, or protect the rights, property, and safety of Sotto, users, call participants, or others;
- in connection with the incorporation of the business (for example, to Sotto Cue, Inc.), or a merger, acquisition, financing, reorganization, bankruptcy, sale of assets, or transition of the Services to another provider; and
- with your consent or at your direction.
13. Recording, consent, and your responsibility
Sotto is a tool you control. You are responsible for obtaining any consent required by law from other participants before recording, transcribing, or processing a call. Recording and wiretap laws vary by jurisdiction, and some require the consent of all parties. To help you, the desktop app requires you to acknowledge before each call that the call will be recorded and transcribed and that you are responsible for obtaining consent from others on the call, and it prompts you at the start of each call to disclose recording to the other participants and obtain their agreement. These tools are aids only and do not relieve you of your legal obligations. See our Terms of Service for details.
14. Data retention
We retain information for as long as needed to provide the Services, maintain accounts, process billing, comply with legal obligations, resolve disputes, enforce agreements, prevent fraud, improve the product, and maintain business records.
Retention periods vary by data type. Account and billing records may be retained while your account is active and for a reasonable period after cancellation. Support messages may be retained to maintain support history. Logs and diagnostics may be retained for security and debugging. Deleted information may remain in backups for a limited period. If you ask us to delete your data, we will delete it within 30 days of a verified request, except where we must keep limited records to comply with law (for example, billing records).
15. Security
We use reasonable administrative, technical, and organizational safeguards designed to protect information against unauthorized access, disclosure, alteration, and destruction. These safeguards may include access controls, encryption in transit, vendor controls, logging, least-privilege practices, and security monitoring.
No system is perfectly secure. We cannot guarantee that information will never be accessed, disclosed, altered, or destroyed. You are responsible for securing your devices, operating system permissions, account access, and call environments.
16. Your choices and rights
You may be able to access, update, export, correct, or delete certain information by using your account or contacting support@trysotto.app. You may cancel billing through the account page or billing portal where available. You may stop using the desktop app, revoke local operating system permissions, or uninstall the App.
Depending on where you live, you may have rights to request access, correction, deletion, portability, restriction, objection, withdrawal of consent, or appeal of a decision. We may need to verify your identity before fulfilling a request. Some rights are limited by law, security needs, billing records, fraud prevention, and technical feasibility.
17. Marketing communications
If we send marketing emails, you may opt out by using the unsubscribe link or contacting us. Even if you opt out of marketing, we may still send transactional or administrative messages about your account, billing, security, or the Services.
18. Do Not Track and Global Privacy Control
Some browsers send "Do Not Track" signals. There is no uniform standard for responding to these signals, and we do not currently respond to them. Where required by applicable law, we will treat a recognized opt-out preference signal (such as Global Privacy Control) as a valid request to opt out of sale or sharing for that browser or device. We will update this Policy if our practices change.
19. Children
The Services are intended for business use by adults and are not directed to anyone under 18. We do not knowingly collect personal information from anyone under 18. If you believe someone under 18 has provided information to us, contact support@trysotto.app and we will take appropriate steps.
20. International transfers
Sotto is operated from the United States. We and our service providers may process and store information in the United States and other countries. Those countries may have privacy and data protection laws different from the laws where you live.
21. California privacy notice
If California privacy law applies to your information, you may have rights to know, access, correct, delete, and obtain a copy of personal information, and to opt out of certain sharing or sales. We do not sell personal information, and we do not knowingly sell or share personal information of consumers under 16.
Categories of personal information we may collect include identifiers, commercial information, internet or network activity, audio and transcript information, professional or employment-related information if you provide it, inferences from product usage, and other information you choose to provide. We collect and use these categories for the purposes described in this Policy. You may exercise these rights by contacting support@trysotto.app, and you have the right not to be discriminated against for exercising them.
22. Nevada privacy notice
Nevada residents may have the right to opt out of certain sales of covered information. We do not currently sell personal information as defined by Nevada law. You may contact support@trysotto.app with the subject "Nevada Do Not Sell Request" for questions.
23. European, UK, and Swiss users
If European, UK, or Swiss data protection law applies, our legal bases for processing may include performance of a contract, legitimate interests, consent, and compliance with legal obligations. Our legitimate interests include providing and improving the Services, securing the Services, preventing abuse, communicating with users, and operating our business.
Where we process personal data on behalf of a business customer, that customer may be the controller and Sotto may act as a processor or service provider. In that case, privacy requests about Call Content may need to be directed to the customer that controlled the call or account.
24. Changes to this Policy
We may update this Policy from time to time. The updated version will be posted on this page with a new "Last updated" date. If changes are material, we may provide additional notice through the website, app, account page, or email.
25. Contact
For privacy questions or requests, contact support@trysotto.app.