Effective date: April 17, 2026
This Privacy Policy describes how ezlate ("we", "us", or "our") collects, uses, and protects your information when you use our voice translation service at ezlate.com and via the ezlate mobile application (together, the "Service"). By using the Service, you agree to the practices described in this policy.
ezlate is an independent voice translation service operated by a single developer (the "operator"). For the purposes of the EU/UK General Data Protection Regulation (GDPR), the operator is the data controller for personal data processed through the Service. You can reach us at anilyuc@gmail.com. If you require a postal contact address for the exercise of your legal rights, please email us and we will provide one.
Account information. When you sign in with Google, we receive your name, email address, and profile photo from Google via Firebase Authentication. This information is used to identify you within translation rooms.
Voice recordings. When you record a voice message, the audio is sent to our server for processing. The audio is transcribed using OpenAI Whisper, translated using GPT-4o-mini, and converted to speech using Microsoft Edge TTS. Temporary audio files created during processing are deleted immediately after the response is returned, in a finally block that executes regardless of success or failure. Our server does not log or store any voice data, transcripts, or translations.
Conversation data. Translated audio and conversation history are stored in Firebase Realtime Database. However, all conversation data is encrypted end-to-end with AES-256-GCM before it leaves your device. See the "End-to-End Encryption" section below for details.
Analytics data. We use Microsoft Clarity for analytics, which may collect session recordings, heatmaps, and usage data. Clarity may set its own cookies to provide this functionality. We do not set any cookies ourselves beyond what Firebase and Clarity require.
We use the information we collect for the following purposes:
We do not sell, rent, or share your personal information with third parties for their marketing purposes.
All conversation data (translated audio and message history) is encrypted on your device using AES-256-GCM before being transmitted or stored. The encryption key is generated when a room is created and is embedded solely in the URL fragment of the invite link (the portion after the # symbol). Because URL fragments are never sent to servers by browsers, the encryption key exists only on the devices of the room participants. Neither ezlate nor any third party can decrypt your conversation data.
Voice data. Temporary audio files on our server are deleted immediately after processing. No voice recordings, transcripts, or translations are retained on our servers.
Room data. Encrypted conversation data stored in Firebase Realtime Database is purged automatically when both participants leave the room. No conversation history persists after a room is closed.
Account data. Your Google account information (name, email, profile photo) is retained by Firebase Authentication for as long as you use the Service. You can delete your account yourself at any time from the account deletion page, or email us at anilyuc@gmail.com and we will do it for you.
We rely on the following third-party services to operate ezlate. Each service has its own privacy policy governing how it handles data:
ezlate is available globally. The third-party services we rely on (Google/Firebase, OpenAI, Microsoft) operate data centers in multiple countries, including the United States. When you use the Service, your data may be transferred to and processed in countries outside your country of residence, including countries whose data protection laws differ from those in your country. Where required by applicable law (for example, for personal data transferred out of the European Economic Area, the United Kingdom, or Switzerland), these providers rely on safeguards such as the EU-US Data Privacy Framework and the European Commission's Standard Contractual Clauses to protect your information. By using the Service, you acknowledge these transfers.
Depending on where you live, you may have rights under laws such as the EU/UK General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA/CPRA), Brazil's LGPD, or similar regulations in other jurisdictions. Subject to applicable law, these rights can include:
To exercise any of these rights, click here to contact us. We will respond within the timeframe required by your applicable law (for example, within one month under GDPR). We will not discriminate against you for exercising your rights.
Where GDPR applies, our legal bases for processing are: (a) performance of a contract with you (to operate the Service you have asked to use), (b) your consent (for example, for analytics), and (c) our legitimate interests in maintaining and securing the Service. You can withdraw consent at any time by contacting us.
The Service is not directed to children. We do not knowingly collect personal information from anyone under the age of 13, or under the minimum age required in your country (for example, 16 in parts of the European Economic Area, or as otherwise set by local law). If you believe we have inadvertently collected information from a child under the applicable minimum age, please click here to contact us and we will promptly delete it.
We may update this Privacy Policy from time to time. If we make material changes, we will notify users by updating the effective date at the top of this page. Your continued use of the Service after any changes constitutes acceptance of the updated policy.
If you have any questions about this Privacy Policy or our data practices, please click here to contact us.