Data & Privacy FAQ

Common questions about how VideoToBe handles your data.

Where is my data stored?

VideoToBe uses secure cloud infrastructure:

• Database: PostgreSQL hosted on Supabase
• File Storage: Cloudflare R2 (S3-compatible)
• Processing: Modal.com for transcription jobs

Is my data encrypted?

Yes. All data is encrypted:

• In transit: HTTPS/TLS for all connections
• At rest: Encrypted storage on Cloudflare R2
• Database: Encrypted PostgreSQL connections

Who can access my content?

• Private content: Only you and workspace members you've invited
• Public content: Anyone with the public link
• VideoToBe staff: No access to your content except for support requests

Do you share my data with third parties?

VideoToBe does not sell or share your content with third parties. We use trusted service providers:

• OpenAI Whisper: Transcription processing via Modal.com
• Cloudflare: CDN and storage
• Stripe: Payment processing (no card data stored on our servers)

How long is my data retained?

• Active content: Retained indefinitely while your account is active
• Deleted content: Soft-deleted, permanently removed after 30 days
• Closed accounts: Data deleted 90 days after account closure

Can I export my data?

Yes! You can download all transcripts in multiple formats (TXT, SRT, VTT, JSON). For complete data export including metadata, contact support.

Can I delete my account?

Yes. Contact support to request account deletion. All data will be permanently removed within 90 days.

Is VideoToBe GDPR compliant?

VideoToBe follows GDPR principles including:

• Right to access your data
• Right to deletion
• Right to data portability
• Transparent data practices

Do you use cookies?

Yes, for:

• Authentication (session management)
• Analytics (Google Analytics, Microsoft Clarity)
• Functional cookies (preferences)