Security measures by feature.
This page explains practical protections and controls without publishing exploit-sensitive implementation details.
Last updated: 2026-02-28
| Feature | Data touched | Permission | Storage behavior | Encryption and handling | Upload behavior | User controls | Indicator visibility |
|---|---|---|---|---|---|---|---|
| Capture mode | Voice/text capture payloads and routing metadata | Microphone when capture is user-triggered | Local queue for offline-safe retry and delivery workflow | Encrypted at rest in app-private storage | User-initiated or policy-gated queued delivery | Can stop capture, clear queue, and revoke permissions | Visible recording state and status updates |
| Assistant mode | Structured text/context payloads for assistant lanes | No additional permission beyond source action | Local handling before queue dispatch | Encrypted handling and minimized metadata retention | Delivery only when destination and consent conditions are met | Can disable assistant lane and remove queued items | Explicit mode/status indicators in app flow |
| Ambient mode (testing) | Ambient capture-derived context and transcripts | Mic/background controls depending on OS policy | Local testing buffers with controlled retention windows | Encrypted local handling with beta-specific safeguards | Approval-gated testing workflow, not unrestricted background export | Can disable ambient mode and clear testing data | Persistent indicator requirements in active capture states |