Privacy Policy
Last updated: December 23, 2025
📋 The Short Version
- ✓ Your data is stored in the EU (France)
- ✓ We don't use tracking cookies
- ✓ We don't sell your personal information
- ✓ We don't train AI models on your translations
- ✓ You can export or delete your data anytime
1. Who We Are
Tolkie is a translation management platform operated by Yevhen Balabai, a sole proprietor registered in Ukraine. While our legal entity is based in Ukraine, all user data is stored and processed within the European Union.
Registered address: Yarosha Otakara St. 12, Kharkiv, 61045, Ukraine
Tax ID: 3468502093
Email: hello@tolkie.io
2. What We Collect
Account Information
When you create an account, we collect your name, email address, and password (stored securely using industry-standard hashing). If you sign in with Google, we receive your name, email, and profile picture from Google — we don't get access to your Google password.
Your Content
We store the translations, projects, and other content you create while using Tolkie. You own this content — we just store it for you.
Usage Analytics
We use privacy-friendly analytics tools that do not track you across websites:
- • Plausible — Cookieless traffic analytics (EU-hosted)
- • PostHog — Product analytics for feature usage (EU-hosted)
We collect aggregated data to understand how people use Tolkie and improve the product.
Error Tracking
We use Sentry to automatically detect and diagnose errors in our application. When an error occurs, Sentry may collect technical information like browser type, operating system, and the sequence of actions that led to the error — but not your translation content.
Security Logs
For security purposes, we log IP addresses and browser information when permission-related actions occur (like inviting team members or changing access levels). This helps us detect and prevent unauthorized access.
3. How We Use Your Data
- • Provide the service: Store and deliver your translations
- • Communicate with you: Send transactional emails (password resets, team invites)
- • Improve Tolkie: Analyze usage patterns to make the product better
- • Keep things secure: Detect and prevent fraud or abuse
4. Legal Basis for Processing
Under GDPR, we process your data based on the following legal grounds:
- 1. Contract
To provide you with the service you signed up for — storing your translations, managing your projects, and delivering features.
- 2. Legitimate Interests
For security monitoring, fraud prevention, and product improvement — where our interests don't override your rights.
- 3. Consent
For marketing emails. You can withdraw consent anytime by unsubscribing.
5. Who We Share Data With
We use trusted third-party services to operate Tolkie. Here's who has access to what:
| Service | Purpose | Location |
|---|---|---|
| OVHcloud | Infrastructure & Database | 🇫🇷 France (EU) |
| Cloudflare | CDN & Security | 🌍 Global |
| OAuth Authentication | 🇺🇸 US | |
| Paddle | Payment Processing | 🇬🇧 UK |
| Plausible | Traffic Analytics (cookieless) | 🇪🇺 EU |
| PostHog | Product Analytics (cookieless) | 🇪🇺 EU |
| Sentry | Error Tracking | 🇺🇸 US |
| Loops | Email Marketing | 🇺🇸 US |
| Postmark | Transactional Email | 🇺🇸 US |
Machine Translation Services
When you use machine translation features, your content is sent to the translation provider you select:
- • Google Translate — Traditional neural machine translation
- • DeepL — Traditional neural machine translation
- • Azure Translator — Traditional neural machine translation
AI-Assisted Translation
When you choose AI-powered translation, your content is processed by large language models:
- • OpenAI (GPT) — AI language model (US-based)
- • Anthropic (Claude) — AI language model (US-based)
These providers have their own data handling policies. Please review their privacy policies for details.
6. Where Your Data Lives
Your primary data (account info, translations, projects) is stored on servers located in Gravelines, France — within the European Union.
Some of our service providers are based in the US. For these transfers, we rely on:
- • Standard Contractual Clauses (SCCs) approved by the European Commission
- • The providers' commitments to data protection
7. Your Rights
You have the right to:
- → Access — See what data we have about you
- → Export — Download all your data in a portable format
- → Correct — Fix any inaccurate information
- → Delete — Request deletion of your account and data
- → Object — Opt out of certain data processing
To exercise any of these rights, email us at hello@tolkie.io. We'll respond within 30 days.
California residents: Under CCPA, you also have the right to know what personal information we collect and to request its deletion. We do not sell personal information.
8. Data Retention
| Data Type | Retention Period |
|---|---|
| Account information | Until you delete your account |
| Translations & projects | Until you delete them or your account |
| Security logs (IP, browser) | Account lifetime + 1 year |
| Marketing emails | Until you unsubscribe |
| Analytics data | Aggregated & anonymized |
| Error tracking data | 90 days |
Soft Deletion
When you delete content or your account, we use "soft deletion" — your data is marked as deleted but retained in our systems for 90 days. This allows us to restore your data if you accidentally delete something or change your mind. After 90 days, soft-deleted data is permanently erased.
Want permanent deletion? Just ask. Contact us at hello@tolkie.io and we'll permanently erase all your data from our systems.
9. Children's Privacy
Tolkie is not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe a child under 16 has provided us with personal information, please contact us and we will delete it.
10. Changes to This Policy
We may update this privacy policy from time to time. We'll notify you of significant changes by email or by posting a notice on our website. Your continued use of Tolkie after changes means you accept the updated policy.
11. Contact Us
Questions about this privacy policy? We're here to help.
Email: hello@tolkie.io