How Fireflies.ai keeps your information safe

Last updated: January 20, 2026

Trust is everything when it comes to your conversations. At Fireflies, we prioritize your privacy and security, ensuring you always have control over your data. This guide outlines how we safeguard your information.

Your Data, Your Control

At Fireflies, we believe privacy is a fundamental human right β€” and that belief guides every decision we make about privacy and security.

No AI Training. Ever.

Your meeting content β€” including audio, video, transcripts, and summaries β€” is never used to train any AI models. We enforce a Zero Data Retention policy, meaning:

  • No storing: Your data is not stored by any third-party vendors after processing

  • No accessing: Vendors do not retain access to your data once the service is delivered

  • No training: Your data is never used to train AI models, internally or externally

This commitment extends to all our trusted partners, including transcription providers and services like OpenAI and Anthropic. Our Zero Day Retention vendor agreements strictly uphold these standards.

This also means that we adhere to the Google User Data Policy, included the Limited Use requirements. Raw or derived user data received from Google Workspace APIs is not used to train foundation models.

Fireflies.ai acts solely as a data custodian β€” you retain full ownership and control of your data. Internally, our teams do not have access to your meeting content by default. Any access requires your explicit permission, typically granted for support-related purposes only.

How we meet compliance standards

Fireflies.ai adheres to leading compliance frameworks to protect your data and support your regulatory needs:

πŸ”’For detailed documentation, visit our Trust Center

SOC 2 & Enterprise-Grade Security

Fireflies.ai is built on a foundation of SOC 2-compliant practices, ensuring your data is handled with the highest standards of security and integrity. Our infrastructure includes:

  • End-to-end encryption:
    AES 256-bit encryption for data at rest and TLS 1.2+ for data in transit

  • Proactive vulnerability management:
    Continuous automated scanning and a HackerOne-powered bug bounty program

  • Responsible backups:
    Regular backups of system configs and metadata (excluding sensitive meeting content)

These controls are designed to meet rigorous compliance and reliability standards β€” because keeping your data safe is non-negotiable.

Privacy built by design

You’re in control of your data β€” and we’ve built features that put privacy at the center:

  • You control recordings: You (or the meeting host) choose which meetings are recorded

  • You manage access: Set visibility preferences from the Meeting Notepad β€” limit access to just participants, make it private, or share with a link

    Privacy New 1.png

    Privacy New 2.png

  • Admin governance: Admins can manage data retention, control workspace access, and set user permissions through Groups

  • Rules Engine (Enterprise): Automate data governance with policies for recording, transcription, and retention across your organization

🚦Want to see how the Rules Engine works? Read more about this feature

πŸ‘‰ Need help with meeting privacy? See How to control who gets meeting recaps (Email Settings) and who can view them on Fireflies (Privacy Settings)

Making sense of it all

  • You own your data, and Fireflies.ai serves as a data custodian

  • Fireflies.ai's vendors operate under strict agreements to protect your data and never train on it

  • We use multiple security layers, including encryption and vulnerability management, to ensure your data stays safe

  • You have full control over recordings and access, with privacy settings tailored to your needs

πŸ€” Curious how the Super Admin role helps manage workspace permissions and security? Learn about the Super Admin role

πŸ” Got more questions about security or compliance? Check our terms of service