Thursday, July 16, 2026

AI Notetakers Spark Privacy and Legal Worries as Suits Grow

Valyrian News Network 5 min read

AI Notetakers Spark Privacy and Legal Worries as Suits Grow

NEW YORK (AP) — AI-powered notetaking tools that automatically record, transcribe, and summarize virtual meetings are gaining widespread adoption across industries, promising significant productivity gains. But a growing chorus of privacy experts, attorneys, and corporate leaders is warning that these tools carry substantial legal and security risks that many organizations have not yet addressed.

According to AP News, AI notetakers use speech recognition and large language models to deliver recaps and to-do lists seconds after a meeting ends. Yet the same technology that makes them useful also makes them dangerous: everything said during a meeting — confidential personnel information, corporate strategies, trade secrets — becomes data that could end up in the wrong hands.

The Privacy Problem

Amy Dufrane, CEO of HRCI, a human resources training and certification provider, offered a stark assessment: “There are huge risks to the organization on AI notetakers. I don’t think companies should use it at all.”

Central to the concern is the creation of voiceprints — unique acoustic signatures that function as biometric identifiers similar to fingerprints. AI notetakers generate these voiceprints to distinguish speakers, but the same biometric data can be used to access bank accounts and other restricted information. In Illinois, the Biometric Information Privacy Act (BIPA) treats voiceprints as biometric identifiers requiring written notice and informed consent before collection, a requirement that many companies have not met.

Chris Pluymers, an associate attorney at The Dillon Law Group, emphasized the urgency: “In the world of AI, the world of data and privacy, the world of biometric identification, I don’t think you can have such a lax approach to it. I think getting out ahead of it is crucial.”

The legal landscape is shifting rapidly. Otter.ai, one of the most popular AI notetaking platforms, faces a consolidated federal class action — In re Otter.AI Privacy Litigation — in the Northern District of California, as detailed by Recording Law. The lawsuit alleges the company recorded and transcribed meeting participants without obtaining consent from all parties, in violation of the California Invasion of Privacy Act (CIPA) and the federal Wiretap Act. Judge Eumi K. Lee heard Otter’s motion to dismiss on May 20, 2026, and a ruling is pending.

The outcome could have far-reaching implications. Twelve states — including California, Florida, Illinois, and New York — require all-party consent before recording private conversations. California’s CIPA carries statutory damages of $5,000 per violation, while the federal Wiretap Act allows up to $10,000 per violation. For organizations using these tools across multiple jurisdictions, the exposure is significant.

Attorney-Client Privilege at Risk

Perhaps the most alarming risk involves attorney-client privilege. A February 2026 ruling in United States v. Heppner by a New York federal judge found that materials created using a consumer-grade AI platform (Claude) were not protected by attorney-client privilege, setting a precedent that could extend to AI notetakers.

Justin Daniels, a corporate attorney at Baker Donelson, explained: “People who use AI notetakers, they don’t always know where the data goes. And in my context, if the data goes anywhere else and they’re not aware of it, that attorney-client-privileged conversation may not be attorney-client-privileged anymore.”

A comprehensive legal analysis by Mayer Brown LLP noted that AI notetakers “fundamentally change the nature of meetings. They transform conversations that would otherwise fade from memory into searchable, reusable records capable of circulating well beyond their original context.”

Data Storage and Secondary Use

Even when content is deleted, metadata about meetings can persist with vendors. AI-generated text is far easier to search and cheaper to store than video or audio files, creating additional privacy risks. Some companies resell data from notetaking tools or use confidential meeting transcripts to train their AI models — a practice that may violate privacy laws in multiple jurisdictions.

Thorin Klosowski, senior security and privacy analyst at the Electronic Frontier Foundation, advised: “You hope the other person would tell you that they’re doing that. Asking everyone for consent before doing a sensitive meeting would be the most polite approach to take.”

What Organizations Should Do

Danielle Kays, a partner at Fisher Phillips who represents businesses on privacy matters, urged organizations to thoroughly vet their AI notetaker vendors: “If there is some sort of speaker ID or voice recognition, really understand what that is and how it works.”

Experts recommend that companies establish clear policies on AI notetaker use, implement consent procedures, conduct vendor due diligence, and create data retention schedules. For legal professionals, the advice is even more cautious: avoid using AI notetakers in meetings involving privileged communications unless the tool has been vetted and approved by legal counsel.

The Road Ahead

As AI notetakers become further embedded in workplace routines, the gap between adoption and regulation continues to widen. The Otter.ai case is widely seen as a bellwether that could determine how existing wiretap and privacy laws apply to a new generation of AI-powered tools. Until courts provide clearer guidance, the safest approach may be the simplest: ask before you record.