Privacy Policy
Last updated: [DATE] · See also our Terms of Service.
This Privacy Policy explains how [COMPANY NAME] ("we", "us") collects, uses, and shares information when you use 21 Translate (the "Service").
1. Information we collect
- Account data — your email address, and authentication records (sign-in codes, sessions). We do not store passwords.
- Documents you upload — the InDesign IDML or PDF files you submit, and the text and layout extracted from them for translation.
- Translations & edits — machine translations, your edits, review status, and related metadata.
- Workspace & team data — workspace names, members, roles, and project assignments.
- Billing data — payment records and status. Card details are handled by our payment processor, not stored by us.
- Usage & technical data — IP address, timestamps, and basic logs used to operate and secure the Service.
2. How we use your information
- To provide the Service — extract, translate, render, and let you review documents.
- To authenticate you, manage workspaces and team access, and process payments.
- To secure the Service (rate limiting, abuse prevention) and to provide support.
- To comply with legal obligations.
3. Third-party AI providers and sub-processors
To translate your documents, the text you upload is sent to the AI translation provider you select for each language — Anthropic (Claude), OpenAI, Google (Gemini), or DeepL. Those providers process the text under their own terms and privacy policies. Choose a provider accordingly, and avoid uploading content you are not permitted to share with them.
We also rely on these sub-processors:
- Payments — [Stripe] processes payments and card data.
- Email — [MailerSend] sends sign-in codes and notifications.
- Hosting & database — [HOSTING PROVIDER] hosts the application and stores your data.
4. Data retention and deletion
We retain your documents, translations, and account data for as long as your account is active. Uploaded and rendered files are stored under your account. You can delete a document at any time, which removes its files and rows. Deleting your account removes your account data and the files stored under it. Backups and provider-side data are subject to the retention periods of the respective sub-processors.
5. Your rights
Depending on your location (e.g. EEA/UK under GDPR, California under CCPA), you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. To exercise these rights, contact us at the address below.
6. Security
We use industry-standard measures — encrypted transport, scoped per-tenant access, and session-based authentication — to protect your data. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
7. International transfers
Your data and the documents you submit may be processed in countries other than your own, including by the AI providers and sub-processors listed above.
8. Changes to this policy
We may update this policy from time to time. Material changes will be reflected by the "Last updated" date above.
9. Contact
Questions about this policy or your data: [PRIVACY EMAIL].