Privacy Policy

Introduction

MilleMots is operated by giscard.consulting, Luxembourg ("we", "our", or "us"). We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services.

By using MilleMots, you agree to the collection and use of information in accordance with this policy.

Information We Collect

We collect information that you provide directly and information generated through your use of the app:

• Unique device identifier: We generate and store a unique device identifier on your device, which is used as your primary means of authentication and to associate your data with your account.
• Voice recordings: When you use voice input, your audio is temporarily processed to generate a text transcription. Audio files are deleted immediately after transcription is complete and are never stored on our servers.
• Text input: Content you type or paste into the app is processed to generate infographics. Text content is sent to AI services for processing but is not permanently stored beyond your session.
• Uploaded documents: PDF, Word, and text files you upload are processed solely to extract text content. The original files are deleted immediately after extraction is complete and are never stored on our servers. Only the extracted text is used to generate your infographic.
• Generated visuals: Infographics created through the app are stored so you can access your history.
• Subscription and purchase data: Payment information is handled by Apple (App Store), Google (Play Store) and RevenueCat (see Third-Party Services below). We store your subscription tier and usage counts.
• Language preferences: Your selected language preference is stored locally on your device.

Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data on the following legal bases:

• Contract performance: Processing your input content to generate infographics, managing your subscription, and providing the core functionality of the App (Article 6(1)(b) GDPR).
• Legitimate interest: Improving the quality of our AI generation and app experience, troubleshooting, and ensuring the security of our services (Article 6(1)(f) GDPR).
• Legal obligation: Retaining transaction records as required by applicable tax and commercial law (Article 6(1)(c) GDPR).

How We Use Your Information

We use the information we collect to:

• Generate infographics and visual content from your input
• Provide AI-powered content synthesis and structuring
• Authenticate you via your unique device identifier
• Manage your subscription and track usage
• Improve the quality of our AI generation and app experience
• Provide customer support and respond to inquiries

Third-Party Services

MilleMots uses the following third-party services that may process your data:

• OpenAI / Google Gemini: Your text content is sent to AI services to generate structured summaries and visual layouts. These services process your content according to their own privacy policies.
• RevenueCat: Manages in-app subscriptions and purchases. RevenueCat processes transaction data according to their privacy policy.
• Expo: Our app framework may collect anonymous crash reports and usage analytics. See Expo's privacy policy.

International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA), including the United States. Specifically:

• AI processing: Text content is sent to OpenAI and Google Gemini, which are US-based services. These transfers are necessary to provide the core functionality of the App (generating infographics from your input).
• Subscription management: RevenueCat, a US-based service, processes subscription and purchase data.
• Cloud infrastructure: Generated infographics and account data may be stored on US-based cloud infrastructure.

These transfers are safeguarded by the service providers' compliance with applicable data protection frameworks, including Standard Contractual Clauses (SCCs) where required.

Data Storage and Security

We take reasonable measures to protect your information:

• Generated content is stored securely on cloud infrastructure
• Voice recordings are processed in real-time and deleted immediately after transcription
• Uploaded documents are processed and deleted immediately after content extraction
• We use encrypted connections (HTTPS/TLS) for all data transfers

While we strive to protect your personal information, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

Data Retention

We retain your data for the following periods:

• Generated infographics and usage history: Retained for as long as your account is active. After 12 months of inactivity (no app usage), your data may be deleted.
• Voice recordings: Deleted immediately after transcription is complete (not stored).
• Uploaded documents: Deleted immediately after content extraction is complete (not stored).
• Subscription and transaction records: Retained for 7 years after the transaction date, as required by Luxembourg commercial law.
• Device identifier: Retained for as long as your account is active. Deleted upon account deletion request.

Your Rights (GDPR)

Under the GDPR, you have the following rights regarding your personal data:

• Access: You can request a copy of the data we hold about you.
• Deletion: You can request that we delete your personal data.
• Correction: You can request corrections to inaccurate data.
• Portability: You can request your data in a structured, commonly used, machine-readable format.
• Restriction: You can request that we restrict the processing of your data.
• Objection: You can object to processing based on legitimate interest.
• Withdraw consent: Where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, please contact us using the information below. We will respond to your request within 30 days.

If you believe that your data protection rights have been violated, you have the right to lodge a complaint with the Commission Nationale pour la Protection des Données (CNPD), the Luxembourg supervisory authority:

CNPD
15, Boulevard du Jazz, L-4370 Belvaux, Luxembourg
Website: cnpd.public.lu

Children's Privacy

MilleMots is not intended for use by children under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us so we can take appropriate action.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the app after changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@millemots.app

Company: giscard.consulting

Address: Luxembourg

Website: www.giscard.consulting