Enterprise Privacy Policy

DubDash ("we," "our," or "us"), operated under JVDB Studios, is committed to providing standard-setting AI localization and voice-matching services with solid security practices. Built for high-frequency creators and enterprise procurement teams (including global brands like L'Oréal), our platform is designed around strict data access controls, alignment with global data protection standards, and secure workflow containment.

1. Information We Collect

To deliver high-quality dubs, we collect and process several categories of information:

• Account Information: Name, work email address, company structure, and professional billing details.
• Source Media Assets: Video files (such as .mp4 formats including localized samples in Spanish, Arabic, or English), clean audio tracks, script guides, and transcript files uploaded for processing.
• Voice Sample Profiles: Short recordings used to generate target vocal matches under strict consent protocols.
• Usage & Interaction Data: System activity logs, performance metadata, and workflow metrics. We do not track facial biometrics or unrelated personal markers.

2. Voice Characterization & Consent Management

DubDash treats synthetic voices and vocal patterns with extreme sensitivity. We operate under rigorous governance standards:

• Explicit Consent Required: Voice-matching pipelines are activated strictly for voices owned directly by the client organization, or where explicit written clearance has been obtained from the talent. We do not engage in generic scraping of public voice profiles.
• Data Isolation: Vocal characteristics are converted to encoded numeric profiles and are processed only for the authorized project scope, segregated from other pipelines.
• Vocal Data Minimization: Encoded vocal characteristics are kept for the duration of the project or service agreement, and are securely deleted or anonymized upon request or following account termination in accordance with our standard retention policies.

3. Where Your Data Lives & Global Data Standards

To assist with European procurement requirements, cloud hosting assets can be structured inside standard European regions. We safeguard files in transit and at rest:

• Encryption Protocols: Media assets are protected using standard encryption protocols, including secure transmission channels (HTTPS/TLS) during active transit and standard cloud provider encryption controls at rest.
• Data Ownership: Clients retain 100% of global Intellectual Property (IP) rights for all localized output videos.
• Subprocessor Standards: Our primary hosting and storage subprocessors (such as leading cloud infrastructure providers like Google Cloud Platform) maintain rigorous security certifications, including SOC 2 Type II and ISO 27001. We leverage these verified services to ensure the physical and environmental security of your data. While DubDash itself is not separately SOC 2 certified, our operations are built on top of these enterprise-grade infrastructure layers.

4. Data Retention and Destruction

We do not store high-resolution primary files indefinitely:

• Production Window: Source video files (e.g., raw MP4s) and generated rendering caches are retained for **30 days** post-delivery to allow for corrections, quality assurance audits, and client approvals.
• Automated Scratch Cleanups: Following the 30-day window, intermediate workspace files are wiped securely from our active cloud render buckets via programmed lifecycles.

5. Enterprise Security Audits

Enterprise accounts may request our standard security answers or scheduled reviews. We maintain clean, isolated environments and structured access controls on all internal servers.

6. Your Legal Rights (GDPR / CCPA)

We design our services to support and align with key global privacy frameworks, including the GDPR and CCPA, enabling users and enterprises to exercise their native data privacy rights. For privacy claims, compliance questions, or data removal requests, contact our privacy contact at:

Email: contact@dubdash.ai