GlotCast

Privacy Policy

Effective date: May 7, 2026

This Privacy Policy explains what data Glot Cast collects, why we collect it, and the choices you have. We collect as little as possible, and we never sell your personal data.

1. Who we are

Glot Cast("we", "us") is the controller of the personal data described in this policy. You can contact us any time at [email protected].

2. What we collect

Account data

When you sign in with Google or Apple, we receive a basic identity token containing your email address and a unique account identifier. We use this to create and authenticate your Glot Cast account.

Learning data

We store the data you generate by using the app: the episodes you play, the words you save to your vocabulary, your Leitner box state, and progress markers. This data is what powers your personalized review schedule.

Device & technical data

Like most apps, we receive basic technical information automatically: device type, operating system, app version, language, and crash logs. We use this to keep the app stable and improve performance.

Communications

If you email us, we keep your message and contact details so we can reply and follow up. We do not use your email for marketing without your explicit consent.

3. What we do not collect

  • We do not collect your contacts, photos or location.
  • We do not run third-party advertising networks inside the app.
  • We do not sell your personal data to anyone, ever.

4. Why we use your data

  • To provide the Service — playback, transcripts, vocabulary review;
  • To remember your progress across devices;
  • To diagnose crashes and improve the app;
  • To respond to support requests;
  • To comply with legal obligations.

5. Legal bases (EEA / UK)

If you are in the European Economic Area or the United Kingdom, we rely on the following legal bases under the GDPR / UK GDPR:

  • Contract — to provide the Service you signed up for;
  • Legitimate interests — to keep the app secure and improve it;
  • Consent — for anything optional, where we ask you first;
  • Legal obligation — when the law requires us to retain or disclose data.

6. Service providers we work with

We use a small number of trusted vendors to run the Service — for example, cloud hosting, authentication providers (Google, Apple), and crash reporting. These vendors process data only on our behalf, under contracts that require them to protect your data.

7. How long we keep your data

We keep account and learning data for as long as your account is active. If you delete your account, we permanently remove your personal data within 30 days, except where we are legally required to retain it (for example, tax or fraud-prevention records).

8. Your rights

You can, at any time:

  • Request a copy of the personal data we hold about you;
  • Ask us to correct inaccurate data;
  • Ask us to delete your account and personal data;
  • Object to or restrict certain processing;
  • Withdraw any consent you previously gave.

To exercise any of these rights, email [email protected] or visit our account deletion page. We respond within 30 days.

9. Children

The Service is not directed to children under 13, and we do not knowingly collect personal data from them. If you believe a child has provided us with personal data, contact us and we will delete it.

10. International transfers

Your data may be processed in countries other than your own. When we transfer data internationally, we use safeguards required by applicable law — for example, the European Commission's Standard Contractual Clauses.

11. Security

We use industry-standard technical and organizational measures to protect your data — encryption in transit, access controls, and least-privilege principles. No system is perfect, but we work hard to keep yours safe.

12. Changes to this policy

If we make material changes, we will notify you in-app or by email before the changes take effect. The latest version will always be available on this page with its effective date.

13. Contact

For any privacy question, write to [email protected].