Voice dictation privacy — what actually happens to your audio
Your microphone picks up a lot more than you intend. Here's how voice dictation apps handle the audio, what gets stored, what gets sent where, and how to tell whether a tool is worth trusting.
Voice dictation has a privacy surface every other tool you use doesn't. The microphone picks up background noise — your kid playing in the next room, your spouse on a call, the TV. Anything you say near the microphone for the duration of a dictation session ends up in audio that has to be processed somewhere.
The privacy question that matters: what happens to that audio after the transcript comes back? Here's the honest answer for the category — what most apps do, what the corners cut look like, and how to evaluate a tool before installing it.
Two architectures
Every voice dictation app falls into one of two buckets:
- Local processing. The transcription model runs on your CPU/GPU. Audio never leaves your machine. Dragon and Talon Voice are the prominent examples.
- Cloud processing. Audio is sent to a server. The server transcribes, optionally runs AI cleanup, sends back the cleaned text. Pithflow, Wispr Flow, SuperWhisper, Win+H all work this way.
The cloud approach is faster and more accurate today. The local approach is structurally more private because the audio never traverses a network. Both are reasonable; pick based on threat model.
What cloud dictation tools actually do with your audio
For cloud tools (most of the category), here's the typical lifecycle:
- Your hotkey starts recording. Audio is buffered locally as PCM.
- When you release, the buffered audio is sent over HTTPS to the vendor's backend (their server, or a cloud transcription provider they use).
- The backend runs a transcription model. Some vendors then run a second model for AI cleanup.
- The cleaned text comes back. The desktop app types it into whatever has focus.
- The audio is supposed to be discarded at this point. Whether it actually is depends on the vendor's data policy.
Step 5 is where the meaningful differences live. The honest split:
- Most vendors don't store audio. The standard is "audio is processed and immediately discarded." This is the policy for Pithflow, SuperWhisper, MacWhisper, and most legitimate AI dictation companies.
- Some vendors store transcripts (text) for product analytics. Common but should be disclosed. Pithflow doesn't.
- Some vendors retain audio for model training. This is where to push back. Free-tier products in adjacent categories (voice assistants) sometimes do this with opt-out you have to find.
What to actually check before installing
1. Read the privacy policy
Specifically search for "audio" in the policy. Look for:
- "We do not retain audio after transcription" (good)
- "Audio is deleted immediately after processing" (good)
- "We may retain audio to improve our models" (proceed with caution)
- "You can opt out by..." (means audio IS retained by default)
- No mention of audio handling at all (red flag — assume the worst)
2. Check whether transcripts are stored
Distinct question from audio. Some vendors discard audio but store transcripts (text) tied to your account. This is usually for "history" features. Decide whether that's OK for you — if you dictate sensitive content, even text-only history is a leak surface.
Pithflow stores transcripts locally on your machine in an encrypted SQLite database. The server doesn't see them. The transcript is sent, the cleaned text is returned, and then both sides discard. Your local history is yours.
3. Look for SOC 2, ISO 27001, or HIPAA mentions
These don't guarantee anything by themselves, but their absence in a 2026 SaaS product is a yellow flag. SOC 2 means the company has documented + audited security practices. HIPAA means they have a BAA-eligible plan if you need to handle PHI.
Pithflow Pro and Team are NOT HIPAA-eligible today. An Enterprise tier with BAA is planned Q4 2026. If you need HIPAA compliance, wait for that or use Dragon Medical (local-only) until then.
4. Check whether the app phones home unprompted
Some apps send telemetry every few minutes regardless of whether you're using them. That's separate from dictation audio but worth knowing.
Pithflow's desktop app sends:
- One authentication check on launch
- An "updates available" check on launch
- Audio + JWT on each dictation
- Optional telemetry events for crashes (no audio, no transcripts — just error codes)
Nothing else. No background "engagement" tracking, no microphone activation outside of explicit dictation, no continuous audio stream.
The microphone hijacking question
The most common privacy fear: "Can the app secretly turn on the microphone when I'm not dictating?"
Technically yes — any installed app with microphone permission can listen at any time. Practically, that would be a one-way ticket to a PR disaster for any legitimate company. Plus modern OSes show a microphone-in-use indicator (red dot on macOS, badge on Windows 11) that catches this kind of thing.
For Pithflow specifically: the app only activates the microphone when you press the configured hotkey. The mic indicator on your OS will appear during that window only. If you ever see the indicator while you're not actively dictating, that's a bug we'd want to know about.
The realistic threat model
Most dictation users aren't being targeted by attackers. The actual risks are:
- Background audio in your recordings. A coworker says something confidential while you're dictating; that audio is in the file the model receives. Mitigation: dictate in private spaces for sensitive work.
- The vendor changes their privacy policy. Future you finds out that audio is now retained for training. Mitigation: review the policy after major company changes (acquisition, founding-team departure, pivot announcement).
- The vendor's server is breached. Audio in flight or in temporary processing buffers could be exposed. Mitigation: pick vendors with documented security practices.
- You install a sketchy free dictation app. Many free apps in adjacent categories make money by selling data. Mitigation: pay for the tool. The economics make sense for legitimate vendors.
The practical playbook
- Pick a vendor with explicit, audit-passing privacy claims.
- Don't dictate next to other people speaking unless you're OK with that audio being processed.
- Turn off cleanup history if you don't need it (or use a local-history tool like Pithflow that doesn't sync transcripts to a server).
- Watch the mic indicator. If it appears outside of dictation, file a bug.
- Skip cloud-based AI dictation entirely if you handle HIPAA-controlled data. Use Dragon Medical locally until vendor BAA tiers are generally available.
Try Pithflow free
Voice dictation that's faster than typing. Hold a key, speak, get clean text in any Windows or Mac app. Free tier: 2,000 words a week, no credit card.