Privacy Policy
Last updated: 22 Aug 2025
Who we are
Penguin Translator (âweâ, âusâ, âourâ) is an online translation service with grammar correction. This policy explains what data we collect, how we use it, and your rights. If you have questions, contact: privacy@penguintranslator.com.
Version française ci-dessous (abridged). The English version prevails for international users.
Summary
- We use an anonymized identifier (salted SHAâ256 hash) derived from IP for abuse prevention and rateâlimiting. The clear IP is neither stored nor retained.
- We send an internal notification email when a suggestion form is submitted; it contains the form content. No clear IP is included; only an anonymized identifier.
- Texts you translate are processed to produce results and may be transiently logged for reliability and abuse prevention.
- No advertising; no sale of personal data.
- You can request access, correction, deletion, or objection under GDPR/CCPA equivalents.
Data we collect
- Usage data: request timestamps, request counts, rateâlimit keys, approximate IP (from HTTP headers), userâagent.
- Content data: the text you submit for translation and the model output. We process it to deliver the result; by default we avoid storing content beyond shortâlived logs strictly necessary for reliability, debugging, and abuse detection.
- Preferences: target language saved locally in your browser (
localStorage), not on our servers. - Contact & billing (future): If/when subscriptions are enabled, we will process account data (name, email) and payment identifiers via our payment provider (Stripe).
- Cookies: none required for the public MVP; future authentication may set essential cookies.
Purposes & legal bases (GDPR)
- Provide the service (perform translations, correct grammar) â Contract / Legitimate interest.
- Security & antiâabuse (rateâlimit, detect automated misuse) â Legitimate interest.
- Analytics (quality, reliability) â Legitimate interest.
- Payments (future) â Performance of a contract.
- Legal compliance â Legal obligation.
Processors & transfers
We rely on reputable subprocessors to operate the service:
- Vercel â hosting and serverless infrastructure (deployment, logs).
- Upstash â Redis for rateâlimiting and caching.
- OpenAI â AI model API to process your text and return translations.
- Stripe (future) â billing and payments (if you subscribe).
Data may be processed in the EU or outside the EU/EEA. Where applicable, we rely on appropriate safeguards (e.g., Standard Contractual Clauses) provided by our processors. We strive to keep processing in the EU where feasible.
Retention
- Content data: not stored persistently by default. Shortâlived logs (if any) are purged within 30 days.
- Usage & security logs: typically retained up to 90 days, unless required longer for security/legal reasons.
- Billing data (future): retained for statutory periods (e.g., accounting/tax).
Your rights
Under GDPR (EU/EEA/UK) and similar laws, you may request: access, rectification, deletion, portability, and to object or restrict certain processing. Contact: privacy@penguintranslator.com.
CCPA/CPRA (California): We do not sell personal data. You may request disclosure or deletion of personal information about you.
Security
- Encryption in transit (HTTPS), secret management via environment variables.
- Principle of least privilege; no public exposure of API keys.
- Rateâlimiting and abuse controls; continuous patching of dependencies.
Children
The service is not directed to children under 13. If you believe a child provided data, contact us for deletion.
Changes
We may update this policy; significant changes will be highlighted on this page with a new âLast updatedâ date.
Politique de confidentialité (résumé FR)
Nous collectons le minimum nĂ©cessaire (IP approximative, compteurs, journaux techniques). Les textes soumis sont traitĂ©s pour fournir la traduction puis non conservĂ©s de maniĂšre persistante par dĂ©faut (hors journaux courts pour la fiabilitĂ© et lâantiâabus). Pas de publicitĂ© ni revente de donnĂ©es. Droits RGPD : accĂšs, rectification, effacement, opposition. Contact : privacy@penguintranslator.com.