Skip to content
Parlecto

Privacy Policy

Last updated: April 2026

1. Who We Are

Parlecto (“we”, “us”) operates parlecto.com. Contact: hello@parlecto.com.

2. What Data We Collect

  • Account data: email address, display name, profile type (provided at signup)
  • Subscription data: Stripe customer ID, subscription tier (processed by Stripe; we do not store payment card details)
  • Usage data: narration minutes used, Q&A count, feature usage (for service operation and billing)
  • Book-derived data: vector embeddings generated from uploaded books (mathematical representations, not readable text), detected character names, chapter metadata
  • Copyright confirmation: timestamp and user ID recorded when a book is uploaded
  • Technical data: IP address (for rate limiting and security only; not stored long-term), browser type, pages visited

3. What We Do NOT Collect or Store

  • Source files: your uploaded PDF / EPUB / DOCX / TXT is parsed server-side and deleted after processing. Derived text chunks and embeddings are retained, scoped to your account with row-level security (see §4).
  • Payment card details: handled entirely by Stripe. We only store Stripe customer and subscription IDs.
  • Tracking cookies: we do not use advertising cookies or third-party trackers.

4. How We Use Your Data

  • To provide the service: Q&A, narration, book processing
  • To enforce tier limits and billing
  • To improve service reliability (aggregate, anonymized usage metrics only)
  • We do NOT use your data to train AI models
  • We do NOT sell your data to third parties

5. Third-Party Services

  • Supabase (database, authentication) — EU data processing available
  • OpenAI (text embeddings, TTS narration, Q&A via Claude/GPT) — data sent to OpenAI API for processing; subject to OpenAI's data usage policy (API data is not used for training)
  • Anthropic (Q&A engine via Claude API) — subject to Anthropic's API data policy
  • Stripe (payment processing) — PCI DSS compliant
  • Cloudflare (audio caching via R2) — data encrypted at rest

6. Data Retention

  • Account data: retained until account deletion
  • Book embeddings: retained until the book is deleted by the user or the account is deleted
  • Audio cache: 7-day server-side TTL; permanent if downloaded locally
  • Usage events: 30-day rolling retention
  • Copyright logs: retained for the legal retention period required by applicable law

7. Your Rights (GDPR)

  • Right to access: request a copy of your data via hello@parlecto.com
  • Right to rectification: update your profile data in the app
  • Right to erasure: delete individual books from your library, or request full account deletion via hello@parlecto.com (completed within 30 days)
  • Right to portability: export your Q&A history as markdown (Pro/Premium)
  • Right to object: contact hello@parlecto.com
  • Right to withdraw consent: delete your account at any time

8. Cookies

We use essential cookies only: authentication session cookies (Supabase Auth). No advertising, analytics, or tracking cookies.

9. Children

Parlecto is not intended for children under 16. We do not knowingly collect data from children under 16.

10. Changes to This Policy

We will update this page and note the date of the last revision. Material changes will be communicated via email to registered users.

11. Contact

For privacy inquiries: hello@parlecto.com