Privacy Policy

Effective Date: January 19, 2026
Last Updated: January 19, 2026

In plain English

We don't sell your data. Your information is used only to provide and improve Parleva.
Your conversations power your learning. We send your messages to OpenAI to generate responses and feedback.
Voice data is handled narrowly. Speech-to-text uses your browser (which may use Google). Text-to-speech uses OpenAI. We only receive text, not audio.
You're in control. You can access, correct, or delete your data at any time.
Payments are secure. Stripe handles all payment processing—we never see your full card number.

Parleva ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our language learning application and website (collectively, the "Service").

Please read this Privacy Policy carefully. By using the Service, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

We collect only what's needed to provide and improve your language learning experience.

1.1 Information You Provide Directly

Account Information: When you create an account, we collect your email address, password (encrypted), and display name.
Profile Information: Your language preferences, learning goals, and proficiency levels.
Conversation Content: The messages you send during language practice sessions, including text input and transcribed speech.
Payment Information: If you subscribe to our premium service, payment details are collected and processed by our payment processor, Stripe. We do not store your full credit card number.

1.2 Information Collected Automatically

Usage Data: How you interact with the Service, including features used, session duration, and learning progress.
Device Information: Browser type, operating system, device type, and screen resolution.
Log Data: IP address, access times, and pages viewed.
Local Storage Data: We use browser local storage to save your preferences and session state.

1.3 Voice and Speech Data

When you use voice input features:

Speech Recognition (voice input): Your speech is processed using your browser's Web Speech API, which may send audio data to third-party speech recognition services (such as Google's speech services, depending on your browser). We receive only the transcribed text, not the audio recordings.
Text-to-Speech (voice output): AI responses are converted to audio using OpenAI's text-to-speech API. The text of AI responses is sent to OpenAI for audio generation. If this fails, your browser's built-in speech synthesis is used as a fallback.
Transcribed text is treated as conversation content (see above).

2. How We Use Your Information

Your data helps us deliver personalized learning—not build advertising profiles.

We use the information we collect to:

Provide the Service: Deliver personalized language learning experiences, generate AI responses, and track your progress.
Process AI Conversations: Your messages are sent to our AI provider (OpenAI) to generate contextually appropriate responses and feedback.
Improve the Service: Analyze usage patterns to enhance features and user experience.
Process Payments: Manage subscriptions and billing through Stripe.
Communicate with You: Send service-related announcements, respond to inquiries, and provide customer support.
Ensure Security: Detect and prevent fraud, abuse, and security incidents.

We share data only with the services needed to make Parleva work.

We share your information with the following categories of third parties:

Third Party	Purpose	Data Shared
OpenAI	AI conversation processing, text-to-speech	Message content, language settings, proficiency level, AI response text (for audio generation)
Firebase (Google)	Authentication, database, hosting	Account info, usage data, conversation history
Stripe	Payment processing	Email, payment details, subscription status
Browser Speech Services	Voice recognition	Audio data (processed by your browser)

We may also share information:

To comply with legal obligations or respond to lawful requests
To protect our rights, privacy, safety, or property
In connection with a merger, acquisition, or sale of assets (with notice to you)

We do not sell your personal information to third parties.

4. Data Retention

We keep your data only as long as needed.

Account Data: Retained while your account is active and for up to 30 days after deletion request.
Conversation History: Retained while your account is active. You may delete individual sessions from your dashboard.
Payment Records: Retained as required by law (typically 7 years for tax purposes).
Anonymous/Guest Data: Stored locally on your device only; cleared when you clear browser data.

5. Your Rights and Choices

You can access, correct, or delete your data at any time.

5.1 All Users

Access: Request a copy of your personal data.
Correction: Update inaccurate information via your account settings.
Deletion: Request deletion of your account and associated data.
Opt-out: Disable voice features or use text-only mode.

5.2 European Users (GDPR)

If you are in the European Economic Area, you have additional rights:

Data Portability: Receive your data in a structured, machine-readable format.
Restriction: Request we limit processing of your data.
Objection: Object to processing based on legitimate interests.
Withdraw Consent: Withdraw consent at any time where processing is based on consent.
Lodge Complaint: File a complaint with your local data protection authority.

Legal basis for processing: Contract performance, legitimate interests, and consent.

5.3 California Users (CCPA)

California residents have the right to:

Know what personal information is collected and how it's used
Request deletion of personal information
Opt-out of the sale of personal information (we do not sell your data)
Non-discrimination for exercising privacy rights

6. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

Encryption of data in transit (HTTPS/TLS)
Secure password hashing
Access controls and authentication
Regular security assessments

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

7. Children's Privacy

The Service is not intended for children under 13 years of age (or 16 in the EEA). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will delete it.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States, where our service providers operate. These countries may have different data protection laws. We ensure appropriate safeguards are in place for such transfers.

9. Third-Party Links

The Service may contain links to third-party websites. We are not responsible for the privacy practices of these sites. We encourage you to review their privacy policies.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

Posting the new policy on this page with an updated "Last Updated" date
Sending you an email notification (for material changes)

Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, contact us at:

Parleva
Email: parlance.ai@gmail.com