Willow Privacy Policy

Last Updated: 01/27/2024

1. Introduction

This Privacy Policy explains how Willow ("Willow," "we," or "our") collects, uses, and manages your personal information ("Personal Data") when you use our website, applications, and services (collectively, the "Services"). By using our Services, you agree to the practices outlined in this Privacy Policy. If you disagree, please stop using the Services. Any terms not defined here will have the same meaning as in our Terms of Service.


2. Information We Collect

Willow collects different types of information to operate our Services. If you don’t provide certain information, you may not be able to fully access or use the Services.

  • Personal Data:
    Information you provide directly to us, such as:

    • Name

    • Email address

    • Account details

    • Cookies

    • Any other information you choose to share with Willow.

  • Usage Data:
    Data collected automatically about how you use the Services, including:

    • IP address

    • Device type and settings

    • Browser type and version

    • Application performance data

  • Customer Content:
    Content you provide while using the Services, like contextual information you choose to share. If enabled, Willow may temporarily capture on-screen text or screenshots for the purpose of improving speech-to-text accuracy using context. This feature is entirely opt-in and requires your explicit consent. The captured data is anonymized as plain text, processed locally on your device, and immediately deleted once processed. Willow does not store any of this screen data on its servers.

  • Third-Party Account Data:
    If you link your Willow account to third-party platforms like Google or Facebook, we may collect account information from those platforms with your permission.

  • Payment Information:
    Payment-related details, such as billing address and card details, are collected and processed by our trusted payment provider.

  • Additional Information:
    Feedback or survey responses that you voluntarily share.


  1. How We Use Your Data

We use your information for the following purposes:

  • Service Operation: To provide, maintain, and improve our Services.

  • Communication: To respond to your questions, provide updates, and send technical or support messages.

  • Marketing: To send you promotional materials about Willow. You can opt out at any time.

  • Digital Advertising: To display relevant ads about Willow’s Services.

  • Security: To detect and prevent fraudulent activity or misuse of our Services.

  • Legal Compliance: To comply with applicable laws, regulations, or legal processes.


4. Data Retention and Transfer

We keep your Personal Data only for as long as necessary to fulfill the purposes described in this Privacy Policy. Afterward, we securely delete or anonymize your data. Usage Data is generally kept for a shorter period unless needed for security or legal obligations. If you use Willow outside the United States, your data may be transferred to and processed in the U.S. By using our Services, you agree to this transfer. We take steps to protect your data during such transfers.


5. Sharing Information

We may share your Personal Data in the following situations:

  • Service Providers: With third parties like payment processors, analytics providers, or cloud service platforms who help us operate our Services.

  • Business Partners: In the event of a merger, acquisition, or sale of our business assets.

  • Legal Obligations: To comply with legal requirements or protect the safety and rights of Willow, our users, or the public.

  • Advertising Partners: For marketing our products on platforms like LinkedIn or Google Ads.

  • With Your Consent: When you explicitly agree to share your data.


  1. Data Security

We use a combination of technical and organizational measures to protect your data. However, no method of storage or transmission is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.


We rely on Supabase for our database infrastructure, which includes the following security features by default:

  1. Encryption at Rest
    All data in the Postgres database is encrypted at rest. This means that if physical storage were compromised, the data would still be protected.

  2. TLS Encryption In Transit
    Supabase enforces secure connections (TLS) by default, protecting data during transfer between your device and our servers.

  3. Row-Level Security (RLS)
    Supabase’s Postgres database supports row-level security, allowing fine-grained access control so that only authorized roles or users can access specific rows of data.

  4. Role-Based Access Control
    Access to the database is managed through roles, ensuring that sensitive operations are restricted to authorized personnel only.

  5. Automated Backups
    Supabase performs automated backups of the database. These backups are also encrypted and stored securely.

  6. Compliance and Best Practices
    Supabase hosts its infrastructure on reputable cloud providers that adhere to industry standards and compliance requirements (e.g., ISO, SOC, and GDPR).

With Supabase, we have these default security measures to help safeguard your data. We also implement our own internal policies, such as limiting employee access to production data, periodically reviewing permissions, and rotating credentials, to further protect user information.


  1. Children Data

Willow is not intended for children under 13 (or 16 outside the U.S.) without parental consent. If you believe a child has shared Personal Data with us, please contact us immediately.


8. Policy Updates

This Privacy Policy may be updated periodically. If changes are significant, we’ll notify you (e.g., via email or a notice on our Services). Check this page for the latest version.

9. Contact Us

If you have questions or concerns about this Privacy Policy, email us at support@seewillow.com.