Privacy Policy

Effective: May 9, 2026 | Last updated: May 9, 2026

1. Data Controller

[COMPANY NAME]
Registered office: [ADDRESS]
Tax number: [TAX NUMBER]
Email: [EMAIL]
Representative: [NAME]

2. Purpose and Legal Basis of Data Processing

Data	Purpose	Legal Basis	Retention
IP address	Free trial limitation	Legitimate interest (GDPR Art. 6(1)(f))	30 days
Payment data	Transaction processing	Performance of contract (GDPR Art. 6(1)(b))	Managed by Stripe, 7-year accounting retention
YouTube video URL	Subtitle extraction and translation	Performance of contract (GDPR Art. 6(1)(b))	Not stored
Cookies	Session management, payments	Consent (GDPR Art. 6(1)(a))	Session duration

3. Data Processors

• Stripe, Inc. (USA) — payment processing. Stripe Privacy Policy. Data transfer is based on the EU-US Data Privacy Framework.
• Google LLC (USA) — AI translation (Gemini API). Submitted text is processed during translation and is not stored.
• Anthropic, PBC (USA) — AI translation (Claude API), if active as a provider.
• OpenAI, Inc. (USA) — AI translation (GPT API), if active as a provider.

4. Your Rights

Under the EU General Data Protection Regulation (GDPR), you have the right to:

• Access — request information about the data we hold about you
• Rectification — request correction of inaccurate data
• Erasure — request deletion of your data ("right to be forgotten")
• Data portability — request your data in a machine-readable format
• Object — object to processing based on legitimate interest
• Withdraw consent — withdraw your consent at any time

To exercise your rights, write to [EMAIL]. We will respond within 30 days.

5. Data Security

Data is transmitted over encrypted connections (HTTPS/TLS). API keys are stored encrypted on the server. We do not store payment data — it is handled directly by Stripe in accordance with PCI DSS standards.

6. International Data Transfers

Our AI providers (Google, Anthropic, OpenAI) operate in the United States. Data transfers are conducted under the EU-US Data Privacy Framework and/or Standard Contractual Clauses (SCCs) approved by the European Commission.

7. Complaints

If you believe your data protection rights have been violated, you may file a complaint with the National Authority for Data Protection and Freedom of Information (NAIH):

National Authority for Data Protection and Freedom of Information
1055 Budapest, Falk Miksa utca 9-11., Hungary
Phone: +36 1 391 1400
Email: [email protected]
Web: naih.hu

8. Changes to This Policy

We reserve the right to modify this privacy policy. Users will be notified of changes on the website. Continued use of the service constitutes acceptance of the updated terms.