Privacy Policy
Last updated: 30 May 2026
This Privacy Policy explains how Relativity GmbH, Breite Straße 25, 13597 Berlin, Germany ("we", "us") processes personal data when you use Livetongue. We process personal data in accordance with the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and the German Telecommunications-Telemedia Data Protection Act (TTDSG).
1. Controller and Data Protection Officer
Controller: Relativity GmbH, Breite Straße 25, 13597 Berlin, Germany. Email: info@relativitygmbh.de.
Data Protection Officer: esquilin GmbH. You can reach our DPO at the address above, marked "DPO".
2. What We Process
We process the following categories of personal data:
- Account data: name, email address, hashed password, organisation, role, language preferences.
- Billing data: plan, payment-provider tokens (we do not store card numbers), invoice metadata.
- Session content: audio captured during meetings, lectures, or Listen Mode sessions you initiate, plus the resulting transcripts, translations, and AI-generated summaries.
- Usage data: log files, IP address, user-agent, device type, and feature interactions, used to operate and secure the service.
- Support data: messages you send to us via email or in-product chat.
3. Purposes and Legal Bases
| Purpose | Legal basis |
|---|---|
| Providing the Livetongue service (transcription, translation, summaries, Library search) | Art. 6 (1) (b) GDPR — performance of contract |
| Processing payments and invoicing | Art. 6 (1) (b) and (c) GDPR — contract / legal obligation |
| Security, abuse prevention, fraud detection | Art. 6 (1) (f) GDPR — legitimate interests |
| Service improvement (aggregated analytics, no shared model training on your content) | Art. 6 (1) (f) GDPR — legitimate interests |
| Optional features (e.g. marketing emails, beta features) | Art. 6 (1) (a) GDPR — consent |
4. Audio, Transcripts, and AI Processing
Audio is captured only while a session is active and you have initiated it. By default, audio is processed in real time and discarded after the resulting transcript and summary are saved to your Library. If you disable session saving, no transcript is retained beyond the session.
We do not use your session content to train shared AI models. Speech-to-text, translation, and summarisation are performed by us or by EU-based processors under our instructions, with content-isolation and short-retention contractual commitments. A current list of subprocessors is available on request.
You are responsible for ensuring that all participants in a recorded session are informed and have given any consent required by applicable law.
5. Recipients and Subprocessors
We share personal data only with carefully selected processors who act on our instructions, including:
- EU-based cloud-hosting providers for application and database hosting;
- EU-based speech-recognition and machine-translation services;
- A payment service provider for subscription handling;
- Email delivery and customer-support tools.
We have Data Processing Agreements (Art. 28 GDPR) in place with each processor. Where any processor sits outside the EU/EEA, we rely on Standard Contractual Clauses and apply supplementary measures as required by the EDPB.
6. Storage Locations and International Transfers
Primary storage is in the European Union (Germany). We do not transfer your session content (audio, transcripts, summaries) outside the EU/EEA. Limited operational data may be processed by EU-based subprocessors with non-EU sub-suppliers under SCCs; in those cases, only metadata — never session content — is transferred.
7. Retention
- Account data: retained while your account is active and for up to 30 days after deletion, then erased except where retention is required by law.
- Session content (audio, transcripts, summaries): retained as long as the session is in your Library; deleted within 30 days of you removing the session or closing the account.
- Billing records: retained for 10 years (§ 257 HGB, § 147 AO).
- Log data: retained for up to 90 days for security purposes.
8. Your Rights
Under the GDPR you have the right to:
- access your personal data (Art. 15);
- have inaccurate data corrected (Art. 16);
- have your data erased (Art. 17);
- restrict processing (Art. 18);
- data portability (Art. 20);
- object to processing based on legitimate interests (Art. 21);
- withdraw consent at any time, without affecting the lawfulness of processing carried out before the withdrawal.
Exercise your rights by emailing info@relativitygmbh.de. You also have the right to lodge a complaint with a supervisory authority — for example, the Berlin Commissioner for Data Protection and Freedom of Information.
9. Cookies and Similar Technologies
We use strictly necessary cookies to keep you signed in and to remember your language preference. Optional analytics cookies are set only with your consent via our cookie banner. You can withdraw consent at any time from the cookie settings in the footer.
10. Security
We protect personal data with industry-standard measures including TLS in transit, encryption at rest, role-based access controls, audit logging, and regular security reviews. No system is perfectly secure; if we detect a breach affecting your data, we will notify you and the competent supervisory authority as required by Art. 33 and 34 GDPR.
11. Children
Livetongue is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can erase it.
12. Changes to This Policy
We may update this Policy when our practices change or when required by law. We will notify you of material changes by email or in-product. The "Last updated" date at the top reflects the latest revision.
13. Contact
Relativity GmbH
Breite Straße 25
13597 Berlin
Germany
Email: info@relativitygmbh.de