Legal

Privacy Policy

Effective June 12, 2026 · Performle ("we", "us") — a Meadow Mountain AI product · performle.com

The plain-English version: we never record or join your meetings; we process the meeting notes your own Google Workspace Gemini wrote (or that a manager pastes). Raw notes are encrypted and never displayed. Employees can see their structured record. Organizations can export or permanently delete any employee's data. We do not sell data or use it to train AI models.

1. What we collect

Category	Examples	Source
Account data	Name, work email, password hash, role	You, at signup
Team member records	Names, work emails, roles, reporting lines	Your organization's managers/admins
Meeting note content	Gemini meeting summaries or manually pasted 1:1 notes	Your Google Drive folder (with your authorization) or manual entry
Derived performance data	Extracted wins, roadblocks, commitments, sentiment scores, evaluation drafts	Generated by our processing pipeline
Billing data	Subscription tier, payment status	Stripe (we never see card numbers)
Usage & audit data	Sign-ins, data access events, administrative actions	Generated automatically (immutable audit log)

2. What we deliberately do NOT do

We do not join, record, listen to, or transcribe any meeting or call.
We do not sell or rent personal data to anyone.
We do not use your content to train AI models — ours or anyone else's.
We do not run advertising or tracking SDKs in the product.
We do not display raw meeting notes in the product. They are stored encrypted (AES-256-GCM) and only structured extractions are visible.

3. How we use data

Solely to provide the service to your organization: extracting structured performance records from meeting notes, syncing commitments to your team calendar, computing team-health analytics, generating evaluation drafts on request, billing, support, and security. Processing is performed under contract with your organization, which acts as the data controller; we are the processor.

4. Employee transparency

Structured records (wins, roadblocks, commitments) are visible to the employee they concern by default — transparency is a design principle, not a setting. Sentiment analytics are presented as team-level and trajectory views to managers. Raw notes are never shown to anyone through the product.

5. Subprocessors

Provider	Purpose	Location
Supabase	Database, authentication, processing functions	United States (AWS us-east-1)
Stripe	Subscription billing	United States
Netlify	Website and application hosting	United States / global CDN
Google (APIs)	Reading your designated Drive notes folder; writing calendar events — only with your organization's OAuth consent	Per your Google Workspace configuration
Anthropic	AI extraction of structured records from note text (no training on your data)	United States

6. Security

Raw meeting notes encrypted at rest with AES-256-GCM; all traffic encrypted in transit (TLS).
Strict tenant isolation: database row-level security guarantees one organization's data is invisible to every other organization.
Multi-factor authentication available; sensitive operations are MFA-gated.
An immutable audit log records every read and write of performance data; it cannot be edited or deleted, including by us.

7. Your rights (GDPR / CCPA)

Access & portability: your organization's admins can export a complete archive of any employee's data in machine-readable form, on demand, from inside the product.
Erasure ("right to be forgotten"): a built-in pipeline permanently deletes an employee's database records, encrypted transcripts, and AI embeddings. The deletion event itself is the only trace, in the audit log.
Correction & objection: contact your organization's admin, or us directly at privacy@performle.com.
If you are an employee whose organization uses Performle, your organization is the data controller — direct requests to them first; we support them in fulfilling every request above.

8. Retention

Data is retained while your organization's account is active. On subscription termination, all organization data is deleted within 30 days (backups age out within a further 30). Erasure requests are honored immediately regardless of subscription status.

9. Google API Services disclosure

Performle's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Drive access is read-only and limited to the single folder your organization designates; Calendar access is limited to the team calendar your organization designates.

10. Changes & contact

We will notify organization admins by email of material changes to this policy. Questions: privacy@performle.com.