Privacy Policy

Last updated: January 2025

1. Introduction

TrueLang is committed to protecting the privacy of its users. This privacy policy explains how we collect, use, and protect your personal data in accordance with the General Data Protection Regulation (GDPR).

2. Data Controller

The data controller is:

3. Data Collected

3.1 Registration Data

  • First and last name
  • Email address
  • Organization name
  • Password (encrypted)

3.2 Usage Data

  • URLs of translated websites
  • Usage statistics (number of words translated, languages used)
  • Connection logs

3.3 Payment Data

Payment information is processed directly by our payment provider Stripe. TrueLang does not store any payment card data.

4. Processing Purposes

Your data is used for:

  • Providing and improving our translation services
  • Managing your account and subscription
  • Contacting you regarding your account or our services
  • Ensuring the security of the platform
  • Complying with our legal obligations

5. Legal Basis

The processing of your data is based on:

  • Contract performance: to provide our services
  • Legitimate interest: to improve our services and ensure security
  • Legal obligation: for billing and accounting

6. Data Sharing

Your data may be shared with:

  • Supabase: database hosting (EU)
  • Vercel: application hosting (US, GDPR compliant)
  • Stripe: payment processing (GDPR compliant)
  • Upstash: Redis cache (GDPR compliant)

Privacy.s6Outro

7. Transfers Outside the EU

Some of our subprocessors are based in the United States. These transfers are governed by standard contractual clauses approved by the European Commission.

8. Data Retention Period

  • Account data: retained for the duration of your subscription + 3 years
  • Billing data: 10 years (legal obligation)
  • Connection logs: 1 year
  • Cached translations: 30 days after last use

9. Your Rights

In accordance with the GDPR, you have the following rights:

  • Access: obtain a copy of your data
  • Rectification: correct inaccurate data
  • Erasure: delete your data
  • Data portability: receive your data in a structured format
  • Objection: object to certain processing
  • Restriction: restrict the processing of your data

Privacy.s9Outro

10. Security

We implement appropriate technical and organizational measures to protect your data:

  • Encryption of data in transit (HTTPS/TLS)
  • Encryption of passwords
  • Restricted access to data
  • Security monitoring and alerts

11. Cookies

Our website uses cookies necessary for the functioning of the service (authentication, preferences) as well as analytics and advertising cookies (Google Ads, Meta/Facebook Pixel) to improve our campaigns. These measurement cookies are only activated after your explicit consent via our cookie banner.

12. Modifications

This policy may be updated. In case of significant changes, we will notify you by email or through our platform.

13. Contact and Complaints

Privacy.s13Content1

Privacy.s13Content2