Privacy Policy

Effective date: July 3, 2025

This Privacy Policy explains how Convo collects, uses, and protects your data when using our site.

1. Data Controller

The data controller is the individual operating Convo: convo.252499@gmail.com

2. What We Collect

• Email address and login data
• Usage data (pages visited, session length, actions)
• Device info (IP address, browser type, OS)
• Payment data (processed by Paddle)

3. How We Use Your Data

• To provide and improve our service
• To process payments and subscriptions
• To communicate and offer support
• To meet legal obligations

4. Legal Basis for Processing

• Consent
• Contractual necessity
• Legal obligations
• Legitimate interest

5. Subprocessors and Data Sharing

We work with trusted subprocessors who may process your data:

• OpenAI – for AI-generated responses, speech-to-text
• Google Cloud – for text-to-speech
• Vercel – for frontend hosting
• Paddle – for payment processing

These providers are GDPR-compliant and only process data as needed to support the service.

6. Cookies and Tracking

We use cookies to maintain sessions, analyze usage, and improve performance. You can manage cookie settings in your browser.

7. Data Retention

We retain data only as long as needed for the purposes described and legal requirements. You can request deletion at any time.

8. Your Rights

• Access your data
• Correct inaccurate data
• Request deletion
• Object to or restrict processing
• Request a copy (data portability)

9. Data Security

We use encryption, secure servers, and access controls to protect your data. No system is 100% secure.

10. International Transfers

By using the service, you consent to your data being transferred to jurisdictions (e.g., the USA) where our subprocessors operate.

11. Changes to This Policy

We may update this policy from time to time. Any changes will appear on this page with a new effective date.

12. Contact

If you have questions or requests, contact convo.252499@gmail.com