Privacy Policy
Queryable turns the tools your team already uses into one searchable memory. That means we process the content you choose to connect — so here is exactly what we collect, why, and the control you have over it.
Queryable (“Queryable”, “we”, “us” or “our”) is a product operated by Orion Tech. This Privacy Policy explains how we collect, use, disclose and safeguard information when you use the Queryable application and related services (the “Service”) at queryable.digital and app.queryable.digital. By using the Service you agree to the practices described here. If you do not agree, please do not use the Service.
01Who we are & scope
Queryable is operated by Orion Tech, which acts as the data controller for personal data processed through the Service. You can reach us at contact@oriontech.me for any privacy question or request.
This policy covers the Queryable Service only. It does not cover the third-party services you choose to connect (such as Google, Microsoft, Slack, GitHub, HubSpot or WhatsApp), which are governed by their own privacy policies. When you connect a service, you act as the controller of the content in it and rely on Queryable to process that content on your behalf.
02Information we collect
We collect the following categories of information:
- Account & profile information — your name, email address, organization or workspace name, authentication identifiers, and billing details when you subscribe to a paid plan. Credentials are handled by our authentication and payment providers; we do not store your passwords or full card numbers.
- Content from connected services — when you enable an integration you authorize Queryable to access data from it on your behalf. Depending on which integrations you turn on, this can include meeting audio, video and transcripts; meeting metadata (title, participants, time); chat messages and threads; emails and their metadata; calendar events; documents, files and their metadata; issues, pull requests and comments; and CRM or task records. It also includes the summaries, action items, key terms and answers we generate from that content.
- Integration authorization data — the OAuth access and refresh tokens and the specific permission scopes you granted, used solely to operate the integrations you enabled.
- Usage & log data — how you interact with the Service (features used, searches and questions you run), plus technical data such as IP address, browser and device type, and timestamps, collected for security, troubleshooting and product improvement.
- Cookies & similar technologies — see Cookies & analytics.
03How we use your information
We use the information above to:
- Provide, operate and maintain the Service — capturing, transcribing, summarizing and indexing the content you connect so you can search and ask questions across it.
- Generate summaries, action items, key-term analysis and answers through automated processing and AI models (see AI & automated processing).
- Authenticate you, secure your account and prevent fraud or abuse.
- Communicate with you — service, security and transactional messages, and, where permitted, product updates you can opt out of.
- Process payments and manage subscriptions.
- Monitor, debug and improve the reliability, safety and features of the Service.
- Comply with legal obligations and enforce our terms.
04Legal bases
Where the GDPR (EEA/UK) or Brazil's LGPD applies, we process personal data on these legal bases: performance of a contract (to provide the Service you request); your consent (for example, when you connect an integration or opt into marketing); our legitimate interests (to secure, maintain and improve the Service, balanced against your rights); and compliance with legal obligations. Under the LGPD we rely on the corresponding bases in Art. 7. You may withdraw consent at any time — see Your rights.
05AI & automated processing
The core of the Service relies on automated systems and third-party large-language-model (LLM) providers to transcribe audio, produce summaries and action items, extract key terms, and answer your questions from the content you connect. This processing exists to deliver the features you ask for. Specifically:
- We do not sell your personal data.
- We do not use the content of your meetings, messages or files to train third-party foundation models, and the AI subprocessors we use are contractually bound not to use your content to train their models.
- Automated summaries and answers are aids, not decisions with legal or similarly significant effects on you; you remain responsible for how you use the output.
06Integrations & Google API use
When you connect a third-party service, that service remains governed by its own terms and privacy policy. Queryable only accesses the data covered by the scopes you grant, and only to provide the corresponding features. You can disconnect any integration at any time from your account settings, which revokes our ongoing access to it.
Google API Services Limited Use. Queryable’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including its Limited Use requirements. We only use Google user data to provide and improve user-facing features of the Service, do not transfer or sell it for advertising, and do not use it to develop, improve or train generalized AI or machine-learning models.
07How we share information
We do not sell your personal data. We share it only in these situations:
- Service providers & subprocessors — trusted vendors that process data on our behalf under contract, including cloud hosting and infrastructure, database and storage, AI/LLM processing, authentication, payment processing and analytics. They may use the data only to provide services to us.
- Legal & safety — when required by law, regulation or legal process, or to protect the rights, property, safety and security of Queryable, our users or the public.
- Business transfers — in connection with a merger, acquisition, financing or sale of assets, where the recipient agrees to honor this policy.
- With your consent or direction — including the integrations you choose to connect.
08Data retention
We retain personal data for as long as your account is active or as needed to provide the Service, and afterwards only as required to comply with legal obligations, resolve disputes and enforce our agreements. You can delete connected content or your entire account at any time. When you delete your account we delete or anonymize your personal data within a reasonable period, except where retention is legally required.
09Data security
We use technical and organizational measures to protect your information, including encryption in transit, access controls and least-privilege handling of integration tokens. No method of transmission or storage is completely secure, but we work to protect your data and to notify you and the relevant authorities of security incidents where required by law.
10International data transfers
We and our subprocessors may process data in countries other than the one you live in, including the United States and countries in the European Union. Where such transfers are subject to data-protection law, we rely on appropriate safeguards — such as the European Commission’s Standard Contractual Clauses — to protect your information.
11Your rights
Depending on where you live, you may have the right to access the personal data we hold about you, correct inaccurate data, delete it, restrict or object to processing, obtain a portable copy, and withdraw consent. Under Brazil’s LGPD, you (the data subject, or titular) also have the rights set out in Art. 18, including confirmation of processing, anonymization or blocking of unnecessary data, information about the entities we share data with, and the right to petition the national authority (ANPD). Under the GDPR you may lodge a complaint with your local supervisory authority.
To exercise any of these rights, email us at contact@oriontech.me. We will respond within the timeframe required by applicable law and may need to verify your identity first.
12Cookies & analytics
We use strictly necessary cookies and local storage to run the Service — for example, to keep you signed in and to remember preferences such as your light or dark theme. On our marketing site we also use analytics and advertising technologies, including Google tags, to understand traffic and measure our campaigns. You can control cookies through your browser settings; blocking some cookies may affect how the Service works.
13Children's privacy
The Service is not directed to children under 16 (or the minimum age required in your jurisdiction), and we do not knowingly collect their personal data. If you believe a child has provided us personal data, contact us and we will delete it.
14Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will post the updated version on this page and revise the “Last updated” date above. If the changes are material, we will provide a more prominent notice through the Service or by email.
15Contact us
If you have questions or requests about this policy or your personal data, contact us at contact@oriontech.me. Queryable is operated by Orion Tech.
One memory for everything your team says.
Connect your channels and let Queryable turn them into a single place you can actually ask — privately and securely.