Voibe Logo voibe
Home Why Voibe? How to Use Pricing Windows? Join the waitlist

Security at Voibe

Voibe's security posture begins with data minimisation. Voice dictation is processed entirely on your Mac - audio never leaves your device and is never transmitted to our servers. Everything below describes how we handle the limited information we do collect to operate your account.

For a full account of what personal data we collect, why, and your rights under UK GDPR, please refer to our Privacy Policy.

What never leaves your device

Voibe's speech-to-text models run locally on macOS. Your dictated audio, transcripts, and any content you produce with Voibe are processed on your Mac. None of it is sent to us, stored by us, or accessible to us at any point.

What we collect and who processes it

We collect only what is necessary to operate the Service:

  • Account identifiers - your email address and technical identifiers used to associate your licence with your device and manage your account.
  • Usage analytics - product and website usage data collected to understand how Voibe is used and to improve the Service. This data is not used to identify you personally.
  • Error and crash reports - technical diagnostic data sent when the application encounters a problem. These reports do not include your dictated content.

We work with the following subprocessors, each contractually bound to protect data processed on our behalf:

  • Amazon Web Services (AWS) - application hosting and transactional email delivery via AWS SES.
  • Lemon Squeezy LLC - payment processing. We do not receive or store payment card details.
  • Sentry - error and crash report tracking.
  • Datafast and Google Analytics - product and website analytics.

Access controls

  • Source code is held in private GitHub repositories. Access is restricted to authorised members of the Voibe team.
  • Access to production servers is restricted to a limited number of team members on a need-to-have basis.
  • Multi-factor authentication is enforced on all critical infrastructure, including GitHub and AWS.

Secure development

  • Code changes undergo review prior to release.
  • Our repositories are automatically monitored for known security vulnerabilities in third-party dependencies, with updates applied promptly.
  • Every Voibe release is notarised by Apple before distribution. Apple's notarisation process includes automated malware and integrity scanning, providing an additional independent layer of review.
  • Releases undergo manual testing prior to distribution.

Data protection

  • In transit: all communication between the Voibe application, our servers, and our subprocessors is encrypted using TLS.
  • At rest: data stored in AWS is encrypted using AWS-managed encryption.
  • Hosting location: our infrastructure is primarily hosted in AWS US regions.
  • UK GDPR: Essence AI Ltd is registered with the UK Information Commissioner's Office (registration no. ZB977990). Where personal data is transferred outside the United Kingdom, we rely on the safeguards described in our Privacy Policy.

Compliance

Voibe does not currently hold SOC 2 or ISO 27001 certification. We are considering formal certification as the business grows.

In the meantime, much of what those frameworks exist to assure is addressed directly by Voibe's architecture. The most sensitive data those controls are designed to protect - your voice, your transcripts, your dictated content - is never transmitted to us in the first place. The remaining surface area is the limited account and telemetry data described above, handled under the controls on this page and the commitments in our Privacy Policy.

Vulnerability disclosure

If you believe you have identified a security vulnerability in Voibe, please email security@getvoibe.com. We ask that you:

  • Give us a reasonable opportunity to investigate and remediate the issue before disclosing it publicly.
  • Avoid accessing, modifying, or deleting data belonging to other users.

We aim to acknowledge reports within three business days and keep you informed as we investigate.

Incident response

In the event of a personal data breach, we will notify the UK Information Commissioner's Office within 72 hours of becoming aware of it, as required by UK GDPR. Where the breach is likely to result in a high risk to affected users, we will notify those users directly without undue delay.

Contact

For security questions, vulnerability reports, or information not covered here:

security@getvoibe.com

Essence AI Ltd, trading as Voibe
Registered in England and Wales, Company No. 16349308
ICO registration no. ZB977990

Last updated: April 2026