1) Overview & Scope
This Privacy Policy applies to all SellVanto web apps, endpoints, and related services that reference or link to this notice. It covers how we handle personal data when you translate text/documents, generate AI voices, transcribe audio, or use currency/crypto utilities.
2) Data Controller & Data Protection Officer (DPO)
Controller: SellVanto Technologies (Istanbul, Türkiye)
DPO Contact: [email protected]
We may act as a processor when handling content you submit for translation or speech—operating strictly on your instructions.
3) Information We Collect
We collect only what is necessary to deliver and improve our services:
Content You Provide
- Text entered for translation
- Uploaded documents (PDF, DOC/DOCX, TXT, RTF)
- Audio provided for transcription/translation
Technical & Analytics
- IP address, device, browser metadata
- Diagnostic logs, performance metrics
- Aggregate usage analytics (non-identifiable)
We do not knowingly collect sensitive data (e.g., health, religious, biometric) unless you voluntarily include such content in what you upload.
4) Legal Bases (GDPR Article 6)
- Contract (Art. 6(1)(b)): To provide requested translations, voice generation, and related features.
- Legitimate Interests (Art. 6(1)(f)): Preventing abuse, improving reliability, and securing the platform.
- Consent (Art. 6(1)(a)): When explicitly requested (e.g., optional cookies, marketing).
- Legal Obligation (Art. 6(1)(c)): To comply with applicable laws, court orders, or regulatory requests.
5) How We Use Data
- Process text, documents, or audio to deliver translations, transcriptions, or AI voice output
- Maintain and improve service performance, accuracy, and UX
- Detect/prevent fraud, abuse, and system misuse
- Provide customer support and resolve issues
Model Training: Unless explicitly stated and consented by you, we do not use your submitted content to train foundation models.
6) Data Retention
We keep data only as long as needed for the stated purposes or to meet legal requirements.
| Data Category | Typical Retention | Notes |
|---|---|---|
| Uploaded text/documents/audio | Up to 24 hours | Temporary caching for processing; then deletion |
| Operational logs | 30–90 days | Security & reliability, minimal personal data |
| Support communications | 12–24 months | To resolve issues and maintain auditability |
You can request deletion at any time (see Your Rights).
7) Security Measures
- Transport encryption (TLS/SSL) for data in transit
- Encryption at rest for stored assets, where applicable
- Access controls, least privilege, and MFA for staff
- Network firewalls, monitoring, and intrusion detection
- Vendor security review for third-party integrations
No system can be 100% secure; however, we continuously improve our safeguards and incident response.
9) Third-Party Processors
To deliver features reliably and at scale, we may engage vetted subprocessors. Typical categories include:
| Provider (Category) | Purpose | Data Types |
|---|---|---|
| Cloud Hosting (e.g., reputable IaaS) | Secure infrastructure & storage | Encrypted stored files/logs |
| Language/AI APIs (e.g., translation/ASR/TTS) | Processing text, audio, and output delivery | Content you submit; transient metadata |
| Analytics (consent-based) | Product usage insights | Anonymized/aggregated metrics |
We require contractual safeguards and confidentiality commitments from all subprocessors.
10) International Data Transfers
Data may be processed in data centers outside your country to ensure resilience and performance. Where required, we implement appropriate safeguards (e.g., Standard Contractual Clauses) to protect your data under GDPR and similar frameworks.
11) Children’s Privacy
Our services are intended for users aged 13+ (or higher in certain jurisdictions). We do not knowingly collect personal data from children. If you believe a child has shared data with us, contact our DPO for prompt removal.
12) Your Privacy Rights (GDPR / CCPA / CPRA)
GDPR (EEA/UK)
- Access, rectify, erase (right to be forgotten)
- Portability & restriction of processing
- Object to processing (where applicable)
- Withdraw consent at any time
CCPA/CPRA (California)
- Know/access the personal information collected
- Request deletion & correction
- Limit use of sensitive personal information
- Opt-out of “sale” or “sharing” (we do not sell data)
To exercise your rights, email [email protected]. We may verify your identity before fulfilling requests.
13) Automated Decision-Making & Profiling
We do not use automated decision-making that produces legal or similarly significant effects about you. AI outputs are generated solely to fulfill your requests (e.g., translation or voice generation).
14) Do Not Track / Opt-Out
Browser “Do Not Track” is not consistently recognized across the industry. You can control optional analytics via cookie settings in our Cookies Policy. We do not sell personal data.
15) Changes to This Policy
We may update this Privacy Policy as technologies, regulations, or our services evolve. Updates will be posted here with a revised “Last Updated” date. Material changes may be additionally communicated.
16) Contact Us
- Email (DPO): [email protected]
- Website: www.sellvanto.com
- Address: SellVanto Technologies, Istanbul, Türkiye
17) Glossary
- Personal Data: Any information relating to an identified or identifiable person.
- Processor: Entity processing personal data on behalf of a controller.
- Subprocessor: Third party engaged by the processor to assist processing.
- Standard Contractual Clauses (SCCs): EU-approved terms for international transfers.