Privacy Policy
Your documents are yours. Here is exactly what we collect, why we collect it, and how it is protected under Indian law.
1. What Data We Collect
We collect only what is needed to run the service:
- Account data — name, email address, and password (or a verified Google account identifier if you sign in with Google)
- Uploaded documents — the files you submit and the HTML/PDF/DOCX outputs generated from them
- Billing records — credit balance, transaction history, and payment confirmations (card details are handled entirely by Razorpay — we never see or store them)
- Technical data — IP address, browser type, and basic request logs, used only for security and debugging
2. Signing In With Google
If you choose "Sign in with Google," we use Google's OAuth 2.0 service to verify your identity. We only request your name, email address, and profile picture — the minimum scope needed to create and secure your account. We never request access to your Gmail, Drive, Contacts, or any other Google data, and we never post to your Google account on your behalf. You can review or revoke LingVert's access at any time from your Google Account permissions page.
3. How We Use Your Data
We use your data exclusively to provide the LingVert service:
- Process your uploaded documents using OCR and AI formatting
- Deliver converted output files (PDF, DOCX) to you
- Track your credit balance and usage history
- Send essential service communications — account verification, security alerts, receipts, and password resets — via Amazon SES with a Hostinger fallback
4. We Do Not Use Your Data for AI Training
Your documents are never used to train AI models.
We route your content to third-party AI providers (Google Gemini, OpenAI) solely to perform the conversion you requested. These providers' own data policies apply to the API calls we make on your behalf. We do not retain prompts or responses beyond what is needed to complete your request. See our accuracy disclaimer for what this means for output quality.
5. Data Retention & Deletion
Uploaded files and processed outputs are stored for 6 months after creation, then automatically deleted. You can delete individual documents from your History page at any time, or request immediate deletion of your account and all associated data by contacting us. Billing records are retained for 7 years to meet Indian tax and audit requirements, as permitted under the DPDP Act. Deletion requests are processed within 30 days.
6. Third-Party Services
To operate the service we rely on:
- Google Cloud Vision — OCR text extraction
- Google Gemini — AI-based document formatting
- Google Sign-In — optional OAuth 2.0 authentication (name, email, profile picture only)
- OpenAI — alternative AI formatting (when selected)
- Amazon Web Services — file storage, hosting, and Amazon SES for transactional email (Mumbai region)
- Razorpay — payment processing (we never see or store your card details)
These services are governed by their own privacy policies. We do not share your email or account data with the AI providers beyond what is required to process the specific document you submitted.
8. Security
We use industry-standard security practices: HTTPS/TLS encryption in transit, hashed password storage, CSRF protection on all forms, session-based authentication, and rate limiting. Enterprise accounts can additionally opt in to field-level encryption of document content at rest. We never store passwords, API keys, or card details in plain text, and card data never touches our servers — Razorpay handles it directly.
9. Your Rights Under the DPDP Act, 2023
As a Data Principal under India's Digital Personal Data Protection Act, 2023, you have the right to:
- Access a summary of the personal data we hold about you and how it has been processed
- Correction & erasure of inaccurate, incomplete, or no-longer-needed personal data
- Grievance redressal — a documented process to raise and resolve complaints
- Nominate another individual to exercise these rights on your behalf in the event of death or incapacity
- Withdraw consent at any time — as easily as you gave it — for any processing based on consent
To exercise any of these rights, email privacy@lingvert.com. We respond within 30 days as required by law.
10. Grievance Officer / Data Protection Contact
In accordance with the DPDP Act, 2023 and the Information Technology Act, 2000, we have designated a point of contact for privacy grievances:
Grievance Officer — DTP Labs
Email: dpo@lingvert.com
General contact: info@lingvert.com
Postal address: Basant Lok Market, Vasant Vihar, New Delhi, Delhi 110057, India
11. Children's Privacy
LingVert is intended for users aged 18 and above and is not directed at children. We do not knowingly collect personal data from anyone under 18 without verifiable parental consent, as required under the DPDP Act. If we learn that we have collected such data without proper consent, we will delete it promptly.
12. Contact
For privacy-related queries or deletion requests, email us at info@lingvert.com or info@lingvert.com. We may update this policy from time to time; material changes will be notified to registered users by email.