Who we are

Surfnote AI is a Telegram-based service (@surfnoteiobot) that transcribes and summarizes meetings for individual users. You send us a meeting link or an audio file — we return a structured PDF summary in your Telegram chat. We are operated by AI Surfers (aisurfers.ai).

Contact us anytime: support@salesaibootcamp.ink

What we collect

• Telegram user identifiers (user ID, username, first name) provided by the Telegram platform when you start the bot.
• Meeting links you send manually (Google Meet, Zoom, Yandex Telemost).
• Google Calendar events (read-only) if you connect Google Calendar — used only to identify meeting links and trigger the bot automatically.
• Audio files you upload directly in Telegram or via the Mini App cabinet — stored in Google Cloud Storage to enable transcription.
• Transcribed text produced by processing your meeting audio or uploaded files.
• AI-generated summaries based on your chosen prompt and the transcript.
• Legal consent state (whether you have accepted the current Terms and Privacy versions).
• Your custom summary prompts created and edited in the Mini App.

How we use the data

• Join meeting rooms (Google Meet, Zoom, Yandex Telemost) via Attendee bot on your behalf and obtain transcripts.
• Transcribe uploaded audio files using Deepgram with speaker diarization.
• Generate meeting summaries using Anthropic Claude based on your selected prompt.
• Deliver the final PDF (transcript + optional summary) to your Telegram chat.
• Maintain service reliability, investigate incidents, and improve the product.

Data retention

• Meeting audio captured by the bot: never stored — deleted immediately after transcription completes.
• Uploaded audio files: stored in Google Cloud Storage until you delete the call or your account.
• Transcripts and summaries: retained until you delete the call or your account.
• Account and all associated data: permanently deleted when you use self-serve account deletion in the Mini App Profile section.
• You can delete individual calls or your entire account at any time via the Mini App.

Legal basis & roles

• You are the data controller for any meeting content you process through Surfnote AI.
• You are responsible for obtaining consent from all meeting participants before recording or transcribing.
• Surfnote AI acts as a data processor, handling data only to deliver the services you request.
• Processing takes place to fulfill the service contract you accept when you start using the bot.

Subprocessors

We rely on trusted vendors who meet our security requirements:

• Attendee — meeting bot service that joins video calls on your behalf and produces transcripts.
• Deepgram — speech-to-text transcription with speaker diarization for uploaded audio files.
• Anthropic — AI-powered summary generation via Claude models.
• Google Cloud Storage — object storage for uploaded audio files (S3-compatible API).
• Telegram — message delivery platform and Mini App host.
• Google Calendar API — read-only calendar access for automatic meeting detection (optional).

Google user data & third-party disclosure

When you connect Google Calendar, we access limited Google user data solely to provide the automatic meeting detection service you have requested.

• We access your Google Calendar events (read-only) to identify upcoming meetings with supported conferencing links.
• We access your Google account email solely to display your connected account in the Mini App Profile.
• We do not transfer or disclose your Google user data to third parties for purposes other than those explicitly stated in this policy.
• We do not use Google user data for advertising, marketing, or any purposes unrelated to automatic meeting detection.
• All Google user data is subject to the same security measures, retention policies, and data subject rights described in this policy.

Google API Services Limited Use disclosure

Surfnote AI's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

• We only use Google user data to provide or improve user-facing features that are prominent in Surfnote AI's user interface.
• We do not use Google user data for serving advertisements.
• We do not allow humans to read Google user data unless we have obtained your affirmative agreement, it is necessary for security purposes, or to comply with applicable law.
• We do not transfer Google user data to others unless necessary to provide or improve user-facing features, for security purposes, to comply with applicable law, or as part of a merger or acquisition (with prior notice).

Security measures

• TLS encryption for all data in transit.
• Google Cloud encryption at rest for databases and object storage.
• Access restricted to vetted personnel with multi-factor authentication.
• Regular vulnerability scanning, patching, and incident response procedures.

Your rights

You can exercise the following rights directly in the Mini App or by contacting us:

• Delete individual calls (transcript, summary, and uploaded audio) from the Calls section.
• Delete your entire account and all associated data from the Profile section — self-serve, no email required.
• Disconnect Google Calendar at any time from the Profile section.
• Access or correct your personal data by contacting support@salesaibootcamp.ink.