VidSum← Back to home

Privacy Policy

Last updated: 2026-04-26

This Privacy Policy describes how VidSum (“VidSum,” “we,” “our,” or “us”), available at vidsum.ai, collects, uses, stores, and shares information when you use our service to generate AI summaries, transcripts, and chats for YouTube videos. By using VidSum you agree to the practices described here.

1. Information we collect

We collect only what we need to operate VidSum:

  • Google account information.When you sign in with Google (via Supabase Auth), we receive your email address, name, profile picture, and Google account identifier (the “sub” claim).
  • YouTube data accessed via the YouTube Data API v3. With the youtube.readonlyscope you grant, we read, on your behalf, your subscriptions, channel uploads, video metadata, captions, comments, and search results — solely to display them inside VidSum and to power summaries, takeaways, transcripts, and chat over the video you choose.
  • OAuth tokens. Access and refresh tokens issued by Google for the scopes you approve, stored encrypted at rest so we can call the YouTube API on your behalf while your account is active.
  • Product data you create. Saved playlists, generated summaries, takeaways, transcripts, and chat history produced inside VidSum.
  • Billing state. Subscription tier, credit balance, and Stripe customer/subscription identifiers. Card numbers are entered directly into Stripe and are never received or stored by VidSum.
  • Operational logs. Standard request logs (IP address, user agent, timestamps, error traces) used to keep the service running, prevent abuse, and debug issues.

2. How we use your information

We use the information above only to provide and improve VidSum’s user-facing features — the summarization product. Specifically:

  • Authenticate you and keep you signed in.
  • Show your YouTube subscriptions, search results, channel uploads, and video pages inside VidSum.
  • Generate AI summaries, takeaways, transcripts, and chat responses from videos you open in VidSum.
  • Save playlists and summaries to your account so you can return to them.
  • Operate billing and credit accounting via Stripe.
  • Monitor reliability, prevent abuse, and improve product quality.

We do not sell your personal information, we do not use your data for third-party advertising, and we do not use information received from Google APIs to build, train, or improve generalized or non-personalized AI or ML models.

3. Limited Use of Google user data

VidSum’s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

In practice this means: we use Google user data only to provide or improve user-facing features that are prominent in VidSum’s interface; we do not transfer Google user data to third parties except as necessary to provide or improve those features, to comply with applicable law, or as part of a merger, acquisition, or sale of assets with notice to users; we do not use Google user data for serving advertisements; and we do not allow humans to read Google user data unless we have your affirmative agreement for specific messages, it is necessary for security purposes (such as investigating abuse), to comply with applicable law, or the data is aggregated and used for internal operations in compliance with applicable privacy and other laws.

4. Sharing and sub-processors

We do not sell user data and we do not transfer YouTube user data to third parties for any purpose unrelated to VidSum’s user-facing features. We rely on the following sub-processors, each engaged solely to operate VidSum:

  • Google LLC— OAuth sign-in and YouTube Data API v3 calls made on your behalf.
  • Supabase— managed Postgres database, authentication, and storage hosting your account, OAuth tokens, saved content, and billing state in EU/US regions.
  • fal.ai— AI inference provider used to generate summaries, transcripts, and chat responses from video content you open in VidSum.
  • Stripe— payment processing and subscription management. Card data is entered directly with Stripe and never reaches VidSum servers.

None of these sub-processors receive YouTube user data for purposes unrelated to providing VidSum to you. We may also disclose information when required by law, valid legal process, or to protect the rights, property, or safety of VidSum, our users, or the public.

5. Data retention

  • OAuth tokens are stored only while your VidSum account is active and your Google authorization is valid. They are deleted when you disconnect Google, delete your VidSum account, or revoke access from your Google account.
  • Summaries, transcripts, chats, and saved playlists are retained until you delete them or delete your VidSum account.
  • Operational logs are retained for a limited period (typically up to 90 days) for reliability and abuse prevention.
  • Billing records may be retained as required by tax, accounting, and other legal obligations.

6. Your rights and controls

You have the right to access, correct, export, and delete the personal information we hold about you, and to object to or restrict certain processing. To exercise any of these rights, email [email protected].

You can revoke VidSum’s access to your Google account at any time at https://myaccount.google.com/permissions. Revoking access immediately stops VidSum from making further YouTube API calls on your behalf.

7. Account and data deletion

You can delete your VidSum account and associated data at any time:

  • In-app: open Settingsin VidSum and use the “Delete account” option. This permanently removes your profile, OAuth tokens, saved playlists, summaries, transcripts, and chats from our active systems.
  • By email: send a deletion request from your account email to [email protected] and we will action it within a reasonable timeframe.

Backups are rotated on a schedule, so residual copies may persist briefly before being overwritten. Deletion does not affect data we are legally required to retain (for example, billing records).

8. Cookies and tracking

VidSum uses only cookies that are necessary to operate the service: authentication and session cookies set by Supabase Auth, and basic preferences (such as theme). We do not use third-party advertising cookies, ad pixels, cross-site behavioral trackers, or fingerprinting for marketing purposes.

9. Children

VidSum is not directed to children. The service is not intended for users under 13 years of age, or under 16 in the European Economic Area where a higher minimum applies. If you believe a child has provided us with personal information, contact [email protected] and we will delete it.

10. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date at the top of this page and, for material changes, provide additional notice (for example, by email or via an in-app message). Continued use of VidSum after a change becomes effective constitutes acceptance of the updated policy.

11. Contact

For privacy questions, data requests, or concerns about this policy, contact us at [email protected].