Security Overview

Last updated: April 19, 2026

Available on: Mac, Windows, iOS, Android

Wispr Flow protects your voice dictation with enterprise-grade encryption, compliance controls, and configurable retention policies. Whether you're an individual or part of an organization, your privacy is built into every layer.

What it is

Wispr Flow's security architecture combines encryption, access controls, compliance certifications, and privacy features to keep your data safe. Security is integrated into every aspect of the platform — from how your voice is transmitted to how transcripts are stored and deleted.

How it works in Flow

Overview

Security is integrated into every aspect of Wispr Flow, from initial development through ongoing operations. The engineering team follows secure development practices, including code reviews, security testing, and regular updates to address emerging threats.

Key behaviors

  • Encryption in transit: All data is protected with industry-standard TLS/HTTPS encryption.

  • Encryption at rest: Data at rest is protected through infrastructure-level security controls.

  • Credential security: Authentication tokens (Supabase JWTs) are stored via electron-store without additional encryption or hashing.

  • Token validation: Authentication tokens are validated via JWT expiry, with session refresh managed through Supabase's built-in mechanism.

  • Policy enforcement: Enterprise security policies (such as Zero Data Retention and local data deletion) are actively enforced on client devices, not just configured server-side.

  • Monitoring: Real-time error monitoring and distributed tracing across all platforms for rapid incident response.

  • PII protection in monitoring: On the backend, error monitoring events are stripped of sensitive data (authorization tokens, cookies, request bodies, email, and name) before transmission. Only anonymized identifiers are retained. Client-side platforms handle monitoring data differently.

Privacy controls

Wispr Flow offers Privacy Mode (Zero Data Retention) across Desktop, iOS, and Android. When enabled, none of your dictation data is stored or used for model training by Wispr or any third party.

  • Enabling Privacy Mode: Go to Settings → Data & Privacy on Desktop and iOS. On Android, the Privacy Mode toggle is found within the Settings screen under the "Data & Privacy" section. On Android, Privacy Mode can also be selected during onboarding.

  • Default state: Privacy Mode is off by default. When off, dictation data may be used to improve Wispr Flow.

  • Data Storage setting (Desktop): In Settings → Data & Privacy on Desktop, you can control how your transcripts and polish history are stored locally using the Data Storage dropdown. There are three options:

    • Store data locally — keeps transcripts as usual (default).

    • Auto-delete local data every 24 hours — automatically removes transcripts and polish history older than 24 hours.

    • Never store data locally — immediately deletes all existing transcripts and polish history, and prevents any future local storage.

    Switching to "Auto-delete" or "Never store" shows a confirmation prompt before the change takes effect. Switching back to "Store data locally" takes effect immediately with no confirmation prompt. When data storage is disabled, the History page shows a message explaining why your history is empty. Auto-deletion runs on a daily schedule, so transcripts may persist slightly longer than 24 hours until the next scheduled cleanup.

  • Context Awareness setting (Desktop): In Settings → Data & Privacy on Desktop, you can toggle Context Awareness on or off. Context Awareness is enabled by default. This controls whether Flow uses context from your screen to improve transcription accuracy.

  • Enterprise enforcement: Privacy Mode can be enforced organization-wide via Zero Data Retention (ZDR). Separately, administrators can configure a local data storage policy: store data locally (default), auto-delete after 24 hours, or never store data locally. Administrators can also control the Context Awareness setting for all users. These are independent Enterprise-plan-only controls. Enterprise policy settings (Context Awareness, ZDR, local data policies, SSO enforcement) are configured by administrators through the admin portal, not within the Wispr Flow desktop app settings.

  • HIPAA BAA: For healthcare customers, signing the HIPAA Business Associate Agreement permanently locks Privacy Mode on. The BAA can be signed in-app on both Desktop and iOS. Enterprise users who have not yet signed the BAA individually may be directed to their organization's admin portal for signing.

  • Enterprise ZDR lock: If your organization enforces Zero Data Retention, Privacy Mode is automatically locked on and cannot be disabled by individual users. ZDR enforcement and local data storage policies are available to Enterprise plan administrators only.

  • iOS notes and system integrations: On iOS, note content is indexed in Spotlight search and notes can be created via Siri Shortcuts to make it easier to find and create notes hands-free. Siri Shortcuts enable voice creation of notes but do not provide read access to existing note content. For HIPAA users, these features — along with note syncing and AI summaries — are disabled by default to protect sensitive data.

Note: Privacy and data control features vary by platform. Desktop and iOS offer the most comprehensive controls including HIPAA BAA signing and transcript deletion. The Data Storage dropdown is currently available on Desktop only. Android currently offers a Privacy Mode toggle with additional controls coming soon.

Enterprise security

Wispr Flow provides comprehensive enterprise security controls:

  • SSO/SAML: Single sign-on via WorkOS, supporting both SP-initiated and IdP-initiated flows. SSO can be enforced so non-SSO login methods are blocked for your domain. SSO enforcement requires an active enterprise subscription — if the subscription lapses, non-SSO login methods are temporarily re-enabled.

  • SCIM provisioning: Automated user provisioning through your identity provider (e.g., Okta, Azure AD). SCIM-managed domains block self-registration.

  • Zero Data Retention (ZDR): Enforce Privacy Mode across all team members.

  • Local data policies: Configure whether local data is stored (default), deleted after 24 hours, or never stored. When set by your organization, this policy sets a minimum data restriction level. If the organization sets "Never store data locally," the setting is fully locked and cannot be changed. If the organization sets "Auto-delete," users can choose that option or the more restrictive "Never store" option, but cannot choose "Store data locally." The dropdown shows a note that some or all options are managed by your organization.

  • Context Awareness policy: Control whether Context Awareness is available to users or disabled for the entire organization. When disabled by an administrator, the Context Awareness toggle in each user's Settings → Data & Privacy is turned off and locked, showing a message that the setting is managed by the organization. Configured via the Context Awareness dropdown in Organization settings under Data Controls (Enterprise plan only).

  • HIPAA BAA: In-app Business Associate Agreement signing for healthcare compliance.

  • Domain-based auto-add: Automatically add new users with a matching company email domain to your enterprise plan.

  • Domain access restriction: Optionally block login for users with your company email domain who are not members of your enterprise. Requires an active enterprise subscription — if the subscription lapses, the restriction is temporarily lifted. In case of unexpected errors, login is permitted to prevent lockouts.

  • Policy resilience: Enterprise security policies remain enforced even when the device is temporarily offline. Cached policies are preserved until the server explicitly confirms a membership change.

Compliance and certifications

  • HIPAA: In-app BAA signing available on Desktop and iOS.

  • Zero Data Retention: Enforcement available for enterprise customers.

  • SSO/SAML: With enforcement options.

  • SCIM provisioning: For automated user management.

  • SOC 2 Type II and ISO 27001: Certifications in progress.

  • Third-party audits: Regular audits to verify security controls.

For more detailed information, explore the other Security & Compliance articles or visit the Data Controls page.

FAQs

Is my voice data used to train AI models?

With Privacy Mode enabled, none of your dictation data is stored or used for model training by Wispr or any third party.

Does Wispr Flow support HIPAA compliance?

Yes. Healthcare customers can sign the HIPAA Business Associate Agreement in-app on Desktop and iOS, which permanently enables Privacy Mode.

What enterprise security features are available?

Enterprise plans include SSO/SAML, SCIM provisioning, Zero Data Retention enforcement, local data policies, Context Awareness policy, domain-based auto-add, and domain access restriction.

How do I control how my transcripts are stored locally on Desktop?

Go to Settings → Data & Privacy on Desktop and use the Data Storage dropdown. You can choose to store data locally (default), auto-delete local data every 24 hours, or never store data locally. Switching to a more restrictive option prompts a confirmation before any data is deleted. If your organization manages this setting, the dropdown is disabled — contact your admin to change it.

My Context Awareness toggle is locked — what does that mean?

If the Context Awareness toggle in Settings → Data & Privacy is turned off and locked, your organization has disabled this feature for all users. The toggle shows a message indicating it is managed by your organization. Contact your administrator if you have questions about this policy.

Can my iOS notes be found in Spotlight search or used with Siri?

Yes, for most users. Note content is indexed in iOS Spotlight so you can search for it from your home screen, and Siri Shortcuts let you create or save notes using your voice. Siri Shortcuts do not provide read access to existing note content. If you are a HIPAA user, these features are disabled by default to protect your data.

Are AI note summaries available for HIPAA users?

No. AI note summaries are disabled by default for HIPAA users. This ensures note content is not sent for AI processing in data-restricted environments.

Limitations and notes

  • Privacy and data control features vary by platform — Desktop and iOS offer the most comprehensive controls.

  • The Data Storage dropdown (Store data locally, Auto-delete local data every 24 hours, Never store data locally) is currently available on Desktop only.

  • Android currently offers a Privacy Mode toggle with additional controls coming soon.

  • HIPAA BAA signing is available on Desktop and iOS only.

  • Enterprise security features require an Enterprise plan.

  • If your organization has locked the Data Storage setting, the dropdown in Settings → Data & Privacy is disabled and cannot be changed by individual users.

  • If your organization has disabled Context Awareness, the toggle in Settings → Data & Privacy is locked off and cannot be changed by individual users.

  • On iOS, Spotlight indexing of notes, Siri Shortcuts, note syncing, and AI summaries are disabled by default for HIPAA users to prevent sensitive data from being exposed through system-level features.

  • On Android, the Flow dictation bubble is automatically hidden in banking and financial apps (136 apps across 9 regions), and text from those apps is never read or used as transcription context.