This Privacy Policy explains how MixTranslate ("MixTranslate", "we", "us", or "our") collects, uses, discloses, and protects personal information when you use our AI-powered translation website, applications, APIs, and related services (collectively, the "Services").
By using the Services, you acknowledge the practices described in this Privacy Policy. If you do not agree, please do not use the Services. This Privacy Policy should be read together with our Terms of Service.
MixTranslate is the data controller responsible for personal information collected through the Services, unless otherwise stated (for example, where we process information on behalf of a business customer as a processor).
We collect the following categories of information:
- Account information: name, email address, password (hashed), profile image, preferred language, and any other details you add to your profile.
- Billing information: payment method details, billing address, and transaction history. Full card numbers are processed and stored by our payment processor (Stripe) and are not stored on our servers.
- Support and communications: messages, feedback, bug reports, and any attachments you send to us.
- User content: text and other content you submit to the Services for translation or related AI features ("User Content").
- Usage data: features used, pages viewed, buttons clicked, language pairs selected, credits/quota consumption, timestamps, and referring URLs.
- Device and log data: IP address, browser type and version, operating system, device identifiers, crash logs, and diagnostic data.
- Cookies and similar technologies: cookies, local storage, and similar technologies used for authentication, preferences, security, and analytics. For details, see our Cookie Policy.
- Authentication providers: if you sign in using a third-party identity provider (e.g., Google, GitHub), we receive basic profile information (such as name, email, and avatar) as permitted by that provider and your consent settings.
- Payment processors: transaction status, subscription status, and limited card metadata (such as brand and last four digits) from Stripe.
- Analytics and error monitoring providers: aggregated or pseudonymous information about how users interact with the Services.
We do not intentionally collect sensitive personal information (such as government IDs, health data, biometric data, or political views). Please do not submit such information through the Services unless strictly necessary.
We use personal information for the following purposes:
- Provide the Services: authenticate accounts, process your translation requests, route content to the appropriate AI Models, and deliver results to you.
- Billing and subscription management: process payments, manage subscriptions, issue invoices, and handle refunds.
- Customer support: respond to your inquiries, troubleshoot issues, and communicate about your account.
- Product improvement: analyze usage to understand how the Services are used and to improve features, reliability, and user experience.
- Safety, security, and abuse prevention: detect, investigate, and prevent fraud, abuse, security incidents, and violations of our Terms of Service or applicable law. This may involve automated and/or human review of content.
- Legal compliance: comply with legal obligations, enforce our agreements, and protect the rights, property, and safety of MixTranslate, our users, and others.
- Communications: send transactional emails (e.g., receipts, security alerts, service changes) and, where permitted, marketing or product updates. You may opt out of marketing emails at any time.
If you are located in the European Economic Area, United Kingdom, or a jurisdiction with similar laws, our legal bases for processing your personal information include:
- Performance of a contract: to provide the Services you request.
- Legitimate interests: to operate, secure, and improve the Services, and to prevent fraud and abuse (balanced against your rights).
- Consent: where required, for example for certain cookies, marketing communications, or optional features. You may withdraw consent at any time.
- Legal obligation: to comply with applicable laws and regulations.
When you submit User Content to the Services, we process it to deliver translation and related AI features. Specifically:
- Routing to AI Models: your User Content is transmitted to one or more AI Model providers (including our own systems and third-party providers such as OpenAI and OpenRouter-hosted models) in order to generate an output.
- Third-party Model processing: third-party Model providers may process your content on their infrastructure to generate outputs. Leading providers we work with contractually represent that they do not use API inputs or outputs to train their models by default. Please review the relevant provider's policies for details.
- Retention of User Content: we may retain your User Content and generated outputs for a limited period to operate features such as history, versioning, abuse prevention, and debugging. Retention periods are described in Section 10.
- Training: we do not use your personal User Content to train foundation models by default. Where we use any content to improve our own Services (for example, to improve classifiers, prompts, or product quality), we will apply de-identification or aggregation, or obtain your consent where required by law.
- Abuse and safety review: we may use automated systems and, where necessary, limited human review to detect and prevent abuse, illegal content, or safety violations.
You are responsible for the content you submit. Do not submit personal information of others, confidential information, or regulated data (such as health or financial records) unless you are permitted to do so and understand the risks of processing by third-party AI providers.
We and our service providers use cookies and similar technologies for authentication, preference storage, security, and analytics. You can manage your preferences through your browser settings and, where applicable, our in-product cookie controls. For details, see our Cookie Policy.
We do not sell your personal information. We share information only as described below:
- Service providers and sub-processors: we share information with vendors who help us operate the Services under appropriate confidentiality and data protection terms. Categories include:
- AI Model providers (e.g., OpenAI, OpenRouter-routed providers)
- Cloud hosting and infrastructure providers
- Payment processors (e.g., Stripe)
- Authentication providers (e.g., Google, GitHub, OAuth identity providers you choose)
- Email delivery providers (e.g., Resend)
- Analytics and product telemetry providers (e.g., Google Analytics, Microsoft Clarity)
- Error monitoring and customer support tools
- Business transfers: in connection with a merger, acquisition, financing, reorganization, or sale of assets, subject to customary confidentiality protections.
- Legal and safety: to comply with applicable law, legal process, or enforceable governmental requests; to enforce our Terms of Service; to protect the rights, property, or safety of MixTranslate, our users, or the public; or to detect or prevent fraud or security issues.
- With your consent or at your direction: for any other disclosure with your explicit consent.
MixTranslate operates globally, and your information may be transferred to, stored, and processed in countries other than your own, including jurisdictions that may have different data protection laws. Where required by law, we implement appropriate safeguards for cross-border transfers, such as standard contractual clauses or equivalent mechanisms.
We retain personal information for as long as necessary to provide the Services and for the purposes described in this Privacy Policy, including to comply with legal obligations, resolve disputes, and enforce our agreements. Typical retention periods:
- Account information: retained while your account is active and for a limited period after deletion (for backups and legal compliance).
- User Content and outputs: retained to power features such as history, versioning, and abuse prevention. You may delete specific items from your history at any time, subject to short backup and audit retention windows.
- Billing and transaction records: retained for the period required by tax, accounting, and regulatory laws (typically several years).
- Logs and telemetry: retained for a limited period for security, debugging, and analytics.
When we no longer need your information, we will delete, anonymize, or aggregate it.
We implement appropriate technical and organizational measures designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These measures include encryption in transit (TLS), access controls, least-privilege principles, and secure payment processing through PCI-compliant providers.
No security measure is perfect. We cannot guarantee absolute security, and you are responsible for keeping your credentials, API keys, and devices secure.
Depending on your location, you may have the following rights regarding your personal information:
- Access: request a copy of the personal information we hold about you.
- Rectification: request correction of inaccurate or incomplete information.
- Deletion: request deletion of your personal information, subject to legal exceptions.
- Restriction / Objection: request that we restrict or object to certain processing.
- Portability: request a copy of your information in a portable format.
- Withdraw consent: withdraw consent where processing is based on consent.
- Lodge a complaint: complain to your local data protection authority.
For California residents, additional rights may apply under the CCPA/CPRA (including the right to know, delete, correct, and opt out of "sale" or "sharing" of personal information). We do not sell personal information.
To exercise your rights, please contact us. We may need to verify your identity before responding.
The Services are not directed to children under 13 (or the minimum age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us, and we will take appropriate action.
The Services may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies.
We do not use your personal information for automated decision-making that produces legal or similarly significant effects about you, except where necessary to detect and prevent fraud, abuse, or security incidents, or where you have explicitly consented.
We may update this Privacy Policy from time to time to reflect changes in our Services, applicable law, or business practices. When we make material changes, we will update the "date" at the top of this page and, where appropriate, provide additional notice (for example by email or in-product notification). Your continued use of the Services after the effective date constitutes acceptance of the updated Privacy Policy.
If you have any questions, requests, or concerns about this Privacy Policy or our data practices, please contact us.