Privacy Policy
This Privacy Policy describes how Vocabo ("Vocabo", "we", "us", or "our") collects, uses, and shares information when you use our website, web app, and related services (collectively, the "Services").
If you do not agree with this policy, please do not use the Services.
1. Who we are
Vocabo is an educational web application that helps learners build vocabulary with simple, real-life example sentences. For questions about this policy or your data, contact us at contact.vocabo@gmail.com.
2. Information we collect
2.1 Information you provide
- Account data: name, email, username, password (hashed), profile settings.
- Content: words saved, lists, notes, preferences, feedback, support messages.
- Billing (if applicable): plan, payment method tokens, and transaction metadata processed by our payment provider; we do not store full card numbers.
2.2 Information collected automatically
- Usage data: app interactions, features used, time spent, pages visited, referring URLs.
- Device & log data: IP address, browser type, device identifiers, language, approximate location (city/country), timestamps, error logs.
- Cookies & similar: cookies, localStorage, and similar technologies for authentication, preferences, analytics, and fraud prevention.
AI features. If you use AI-powered features, your prompts and generated outputs may be processed to provide the feature, improve quality, and ensure safety. We contractually require our AI providers to protect this data and prohibit its use to train models without our instruction.
3. How we use your information
- Provide, maintain, and improve the Services.
- Personalize your learning experience and remember preferences.
- Authenticate users, prevent fraud/abuse, and ensure security.
- Process payments and manage subscriptions.
- Analyze aggregated usage to guide product decisions.
- Send service-related communications (e.g., account, security, billing, feature updates).
- With your consent, send optional tips, promotions, or surveys (you can opt out anytime).
- Comply with legal obligations and enforce our terms.
4. Legal bases for processing (GDPR)
If you are in the EEA, UK, or Switzerland, we process personal data under these legal bases:
- Contract: to deliver the Services you requested.
- Legitimate interests: to secure, improve, and analyze our Services.
- Consent: for optional cookies, marketing, and certain AI features.
- Legal obligation: to meet compliance and regulatory requirements.
5. Sharing of information
We do not sell personal information. We share information only as described below:
- Service providers: cloud hosting, analytics, payment processing, customer support, error monitoring, AI processing. These partners access data only to perform services for us and are bound by confidentiality and data protection terms.
- Business transfers: in a merger, acquisition, or asset sale, your data may be transferred with appropriate safeguards.
- Legal & safety: to comply with law, respond to lawful requests, or protect rights, safety, and property of users and the public.
- With your consent: when you explicitly authorize sharing.
6. Cookies and similar technologies
We use strictly necessary cookies (for login and security), functional cookies (to remember settings), and analytics cookies (to understand how the Services are used). You can control cookies through your browser settings; disabling some cookies may impact functionality.
Example cookies we use
vocabo_session– required for authentication, expires on logout/expiry.vocabo_prefs– stores theme and language, expires in 12 months._analytics_id– anonymized usage analytics, expiry varies.
7. Data retention
We keep personal data only as long as necessary to provide the Services, comply with our legal obligations, resolve disputes, and enforce agreements. When data is no longer needed, we delete or anonymize it.
8. International data transfers
Your information may be processed in countries other than your own. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) to protect cross-border transfers.
9. Your rights
EEA/UK/Swiss users
You may have the right to access, correct, delete, restrict, or object to processing, and the right to data portability. You may also withdraw consent at any time without affecting prior processing.
California (CCPA/CPRA)
You may have the right to know, delete, correct, and limit use of sensitive information. We do not sell or share personal information for cross‑context behavioral advertising. You may designate an authorized agent to make requests on your behalf.
To exercise rights, contact contact.vocabo@gmail.com. We may verify your request before acting on it.
10. Security
We implement technical and organizational measures designed to protect your information, including encryption in transit (HTTPS), access controls, and regular monitoring. No method of transmission or storage is completely secure; we cannot guarantee absolute security.
11. Children’s privacy
The Services are not directed to children under 13 (or the age required by your country). We do not knowingly collect personal information from children. If you believe a child has provided us data, contact us so we can delete it.
12. Third‑party links & integrations
The Services may link to third‑party websites or include integrations (e.g., single sign‑on, analytics). Their privacy practices are governed by their own policies. We encourage you to review them.
13. Changes to this policy
We may update this Privacy Policy from time to time. The updated version will be indicated by a new "Last updated" date and will be effective when posted. Material changes will be communicated through the Services or by email.
14. Contact us
Questions or concerns about this policy? Email us at contact.vocabo@gmail.com or contact.vocabo@gmail.com.