Privacy Policy
This Privacy Policy outlines Parlai's ("we," "us," or "our") commitment to protecting your personal information when you use our language learning product, which incorporates technologies like ChatGPT and Whisper from OpenAI, Xata, Google Cloud APIs, and analytical tools like Mixpanel.
1. Data Controller Information
Parlai is the Data Controller of your personal data. If you have any inquiries or concerns about how we process your personal data, please reach out to us at: hi@parlai.app
2. Information Collection
We collect personal information, including your messages and interaction data, to enhance your experience with our language learning product. This data is securely stored in Xata, our chosen database solution. When you chat with Parlai, we gain access to your phone number and WhatsApp name to provide the service.
3. Data Security
WhatsApp already offers a secure environment based on end-to-end encryption (E2E). To further enhance data protection, we will also encrypt our messages asymmetrically in the future. Our database (Xata) is based on a SOC 2 Type II-certified provider that fulfills industry standards for security and compliance.
4. Basis for Processing
Your personal data is processed based on your consent and our legitimate interest in providing and improving language learning services.
5. Purpose of Data Use
We use your personal information to offer language learning services and to communicate service improvements and updates. Additionally, we utilize Google Cloud APIs for service enhancement and send usage analytics to Mixpanel to further refine our product.
6. Disclosure Practices
Your personal information is not shared with third parties, except as required by law, necessary for service provision, or for the secure operation of our services through OpenAI, Google Cloud APIs, and Mixpanel analytics. Your information might be accessed by authorized personnel for the purpose of debugging errors in the application.
7. Data Retention and Storage
We retain your personal information in Xata for as long as necessary to deliver our services, comply with legal requirements, and uphold your rights to data deletion. Upon a deletion request, we retain data in our database for 14 days unless you decide to roll back the scheduled deletion. After 14 days, the data is completely deleted from our database. From that point on, Mixpanel deletions will be initiated and may take a few days according to their policies.
8. International Data Transfers
Our use of US-based APIs involves data storage in non-EU data centers. These transfers comply with standard contractual clauses to ensure your data's protection.
9. User Rights
You have the right to access, amend, delete, or limit the processing of your personal data, object to its processing, and withdraw your consent at any time. For data portability requests or to exercise other rights, please contact us.
10. Data Breach Response
We are committed to notifying the relevant supervisory authority and you within 72 hours of discovering a data breach, adhering to GDPR guidelines.
11. Regulatory Authority
If you have concerns about our data processing practices, you may lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde).
12. Privacy Policy Amendments
We reserve the right to modify this policy. Updates will be posted on our website, and continued use of the product after such updates constitutes acceptance of the changes.
Additional Provisions
- Deletion Logs: Deletion logs are kept for 2 months for compliance reasons.
- Data Retention by Mixpanel: Mixpanel may retain its data longer for legal compliance reasons.
For any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us at: hi@parlai.app