Privacy Policy

Automagical Translate (the "Add-on") is designed to process your documents efficiently and securely within the Google Workspace™ environment. This Privacy Policy details our "Privacy-First" architecture for protecting your files, whether you are a school, a business, or an individual.

1. Information We Collect (and Don't Collect)

We adhere to a strict principle of data minimization. We do not store the content of the files you translate.

A. Ephemeral Document Processing

When you use Automagical Translate to translate PDFs, Google Docs™, Sheets™, Slides™, or Microsoft Office files:

• Your file content is read securely from your Google Drive™ and transmitted to our translation engines.
• This processing is stateless and ephemeral. The file content exists in our system's memory only for the seconds required to perform the translation.
• No Storage: We do not save, store, or archive your original or translated files on our servers. The translated file is created directly back into your Google Drive™ folder.

B. Account Information (Hashed & Salted)

To manage translation quotas (e.g., page limits per month), we must identify unique users. We do this without storing your raw email address.

• Cryptographic Hashing: We hash and salt your email address before storing it. This results in a unique string (e.g., x7b2...) that allows us to track usage without holding PII.
• Zero PII Retention: If our usage database were accessed, it would contain no readable email addresses or personal information.

2. Student Safety & Education Compliance

• No Student Profiles: We do not create profiles of students or track their reading habits.
• No Advertising: There are no advertisements in the application, and we do not use data for marketing.
• No Data Sale: We strictly prohibit the sale of any user data.

3. GDPR & International Rights

For users in the EEA, UK, and Switzerland, we process data in compliance with the General Data Protection Regulation (GDPR).

A. Legal Basis

Contractual Necessity: We process your file inputs solely to provide the translation service you have initiated.

B. Your Rights

You maintain the right to access, correct, or delete your data. Since we only store hashed identifiers, "deletion" involves removing these usage records. Please contact our DPO (Section 8) to exercise these rights.

4. California Privacy Rights (CCPA/CPRA)

Residents of California are protected under the CCPA/CPRA.

• No Sale: We do not sell personal information.
• Right to Know: You may request a report of the categories of data we collect (strictly usage metadata).
• Non-Discrimination: We do not discriminate against users who exercise their privacy rights.

5. Data Storage and Security

Our infrastructure runs on the Google Cloud Platform (GCP) and Firebase.

• Encryption: Data is encrypted in transit via SSL/HTTPS (TLS 1.2+) and at rest using AES-256 standards.
• Google Drive Integration: Our app interacts with your Drive files via the Google Drive API. We request only the permissions necessary to read the file you select and write the translated copy.

6. Subprocessors

We leverage industry-leading cloud and AI partners to provide secure and accurate document translation. To protect our proprietary technology stack, we categorize our trusted subprocessors below.

A specific list of vendor names is available to educational institutions and enterprise customers in our Data Processing Agreement (DPA) upon request.

7. Contact Us & DPO

If you have questions about this policy, or if you are a school administrator requiring a signed Data Processing Agreement (DPA) containing our full vendor list, please contact us.