Does Otter.ai use my recordings to train its AI?

Otter.ai's published policies state that de-identified user content can be used to improve their models. Users can request to opt out via privacy@otter.ai, but the default for individual plans is opt-in. Enterprise contracts typically negotiate this separately.

Is Otter.ai HIPAA compliant?

Otter.ai offers a Business Associate Agreement (BAA) only for Enterprise plans. Free, Pro, and Business plans are not HIPAA-eligible. If you transcribe protected health information without an executed BAA you are out of compliance.

Where are Otter.ai recordings stored?

On Otter.ai's cloud infrastructure, primarily AWS in US regions. Recordings persist on their servers until you manually delete them or close your account. There is no built-in option to keep audio off their servers.

Has Otter.ai had any privacy incidents?

In 2022 a journalist reported receiving an unsolicited follow-up email from Otter.ai inquiring about a meeting they had transcribed, raising questions about how transcript metadata is used internally. Otter.ai responded that transcripts are not read by humans without consent.

What is the most private alternative to Otter.ai?

An on-device transcription tool like Hapi, where audio is processed locally on your Mac using Apple Silicon and never leaves the device. There is no account, no cloud upload, no sub-processor chain to audit.

2026 · 05 · 08

Is Otter.ai Safe? Independent Privacy & Security Review (2026)

What Otter.ai actually does with your meeting audio: data flow, retention, sub-processors, AI training opt-outs, and how it compares to a fully local alternative.

6 min read·Privacy

Otter.ai is one of the most widely used meeting transcription services, with over 25 million users as of late 2025. If you record sensitive conversations — client calls, therapy sessions, legal interviews, internal HR meetings, investor updates — it is worth understanding exactly what happens to that audio after you hit record.

This review reads Otter.ai's public Privacy Policy, Terms of Service, and Trust Center, then translates the legalese into the operational questions most people actually ask.

What Otter.ai Does With Your Audio

When you record or upload audio in Otter, three things happen:

Audio is uploaded to Otter.ai's cloud infrastructure. Their stack runs primarily on AWS in the United States. Audio leaves your device the moment you press record.
Speech-to-text runs on their servers. Otter uses proprietary models combined with third-party AI providers (their Trust Center has historically listed OpenAI as a sub-processor for certain summarization features).
Recordings, transcripts, summaries, and meeting metadata are stored persistently on their infrastructure, indexed in your account, and accessible via web, mobile, and API.

Nothing in this flow is unusual for a SaaS transcription product — but the implications matter when the conversation contains health information, attorney-client privilege, financial data, M&A discussions, or anything else governed by data-protection laws.

Data Retention: How Long Otter Keeps Your Recordings

Otter retains audio and transcripts indefinitely until you act:

Action	What gets deleted	Timeline
Delete a single conversation	Transcript + audio for that meeting	Immediate (per policy)
Cancel paid subscription	Nothing automatic — recordings remain on free tier limits	Indefinite
Close account	All user content	Within 30 days per policy
Inactivity	No automatic deletion documented	Indefinite

There is no "auto-delete after N days" toggle on individual or Pro plans. If you record 50 client calls and never log in again, those calls sit on Otter's servers until somebody closes the account.

AI Training: The Default Is Opt-In

Otter.ai's privacy policy reserves the right to use de-identified user content to improve speech models. As of 2026, the default for individual accounts is enrolled — you have to email privacy@otter.ai to opt out.

Two important caveats:

"De-identified" is defined by Otter, not by you. Voice biometrics, speaking style, and even unredacted proper nouns can survive a de-identification pipeline.
The opt-out is by request, not a checkbox. There is no audit trail you can pull to confirm your audio was never included in a training run that already started.

Enterprise plans typically negotiate explicit no-training clauses in their MSA, but you have to ask for them.

Sub-Processors: Who Else Sees Your Data

Otter publishes a sub-processor list. Recent versions have included:

AWS — primary infrastructure (US regions)
Stripe — billing
Salesforce / HubSpot — CRM, customer support
Major LLM providers — for AI summaries and Otter Chat features
Analytics providers (Mixpanel, Segment historically) — product telemetry

Each sub-processor adds a contract surface, a legal jurisdiction, and a potential breach vector. If you operate under GDPR, you are responsible for documenting that chain in your Records of Processing Activities (ROPA).

US Jurisdiction and the CLOUD Act

Otter.ai is a US company, so its data is subject to the US CLOUD Act. In practice:

US law enforcement can serve a warrant and compel Otter to produce stored recordings.
Foreign-government data requests are routed through the MLAT process, but the EU has flagged this as one of the open issues that complicates Schrems II compliance for US-hosted SaaS.
Even if you are an EU customer of Otter, the parent entity sits in US jurisdiction.

For most use cases this is acceptable. For privileged communications, regulated health data, or anything that crosses a competitive moat, it is worth at least documenting.

Compliance Status — Plan by Plan

Compliance	Free	Pro	Business	Enterprise
SOC 2 Type II	Covered (org-wide)	Covered	Covered	Covered
HIPAA / BAA	❌	❌	❌	✅ on request
GDPR DPA	Standard	Standard	Standard	Custom available
Data residency choice	❌	❌	❌	Limited
Training opt-out	Email request	Email request	Email request	Contractual

If you transcribe PHI on Free, Pro, or Business and there is no executed BAA, you are not HIPAA compliant — full stop. Many users do not realize this.

When Cloud Transcription Is Fine

To be clear: cloud transcription is fine for plenty of use cases.

Public-facing podcast or video transcripts
Internal meetings with no protected data
Brainstorms, retros, all-hands
Educational content

If your threat model is "I would rather not type this up myself," Otter is excellent and fast.

When You Should Not Use Otter

You should pick a fully local tool, or a vendor with a signed BAA and a no-training contract, when:

You record patients, clients, or anyone protected by professional privilege
Your recordings include attorney work product, source-protected journalism, or active litigation material
You operate under HIPAA, GDPR Article 9 special-category data, FERPA, or PCI scope
Your IT or compliance team has not approved Otter as an authorized sub-processor

How a Local Alternative Compares

Hapi takes the opposite architectural approach. Audio is captured by the menu-bar app on your Mac, transcribed locally using Apple Silicon, and stored in a local SQLite database. There is no account, no upload, no sub-processor chain.

Dimension	Otter.ai	Hapi (local)
Audio destination	Otter's AWS infrastructure	Stays on the Mac
Account required	Yes	No
AI training default	Opt-in (request to opt out)	Not possible — no data leaves device
Sub-processors	~10 published	None
HIPAA-ready without BAA	No	Yes (no covered transmission occurs)
Works offline	No	Yes
Internet exposure	Required	Zero
Cost	$8.33–$30/user/month	Free

The trade-offs are real: Hapi runs only on macOS (Apple Silicon), and shared cloud features like multi-device sync and team workspaces look different when there is no shared cloud. For privacy-sensitive professionals, those trade-offs are usually worth it.

Bottom Line

Otter.ai is a competently built SaaS product with reasonable defaults for non-sensitive content. It is not a private tool — your audio leaves your device, persists on US infrastructure, and may be used to improve their models unless you explicitly opt out. For regulated industries or confidential conversations, the only architecturally honest answer is to keep the audio on your device.