Features Pricing API Reference

Privacy Policy

v1.0 -- Effective March 2026

Morlivo ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our translation and transcription platform ("Service").

Important

Customer data is NOT used to train AI models. Your content is processed solely to deliver the requested translation or transcription service.

1. Data We Collect

1.1 Account Information

When you create an account, we collect your name, email address, and password. If you sign up via a third-party provider (e.g., Google), we receive your name and email from that provider.

1.2 Customer Content

This includes text, documents, and audio files you submit for translation or transcription. Customer Content is processed solely to provide the Service and is not used for any other purpose.

1.3 Usage Data

We automatically collect information about how you interact with the Service, including IP address, browser type, pages visited, features used, timestamps, and API request metadata.

1.4 Payment Information

Payment processing is handled by our third-party payment processor. We do not store your full credit card number. We receive and store a truncated card number, expiration date, and billing address for record-keeping.

2. How We Use Your Data

We use the data we collect to:

  • Provide, operate, and maintain the Service
  • Process translations and transcriptions
  • Manage your account and billing
  • Send transactional emails (receipts, alerts, notifications)
  • Improve the Service through aggregated, anonymized analytics
  • Respond to support requests
  • Enforce our Terms of Service and prevent abuse
  • Comply with legal obligations

3. Data Storage and Security

All data is stored on Google Cloud Platform infrastructure. We implement the following security measures to protect your data:

  • Encryption at rest using Google Cloud KMS. Customer-managed encryption keys (CMEK) are available for enterprise deployments.
  • Encryption in transit using TLS 1.2+
  • Tenant isolation enforced across all multi-tenant deployments
  • Rate limiting applied on all API endpoints to prevent abuse
  • Automatic PII redaction in system logs to minimize exposure of personal data
  • Access controls, audit logging, and regular security assessments

Enterprise customers may configure data residency to restrict processing and storage to specific geographic regions (EU, US, or APAC).

Morlivo supports HIPAA, GDPR, and FedRAMP requirements across all deployment models — cloud, hybrid, and on-premises.

4. Sub-processors

We use the following sub-processors to deliver the Service. Customer Content may be transmitted to these providers solely for processing:

Sub-processor Purpose Location
Google Cloud (Vertex AI) AI model inference, translation, transcription Configurable (US/EU)
Google Cloud Platform Infrastructure, storage, databases Configurable (US/EU)
Microsoft Azure (Cognitive Services) Fallback translation engine US/EU
[Payment Processor] Payment processing US
[Email Provider] Transactional email delivery US

We will notify you of material changes to our sub-processor list via email or through the Service. For details on data processing obligations, refer to our Data Processing Agreement (DPA).

5. Data Retention

Account information is retained for the duration of your account and for a reasonable period afterward for legal and business purposes. Customer Content and other data are retained according to the following schedule:

  • Customer content (translations, transcriptions, uploaded files): retained for up to 30 days, then automatically deleted
  • System logs: retained for 30 days
  • Audit logs and login events: retained for 90 days
  • Cloud Storage objects: 30 days for uploads, 90 days for exports
  • Translation memory entries: retained until you delete them

After the applicable retention period, data is permanently deleted and cannot be recovered.

6. PII Redaction Add-on

Morlivo offers an optional PII (Personally Identifiable Information) redaction service that can be enabled on a per-project basis. When activated, the service automatically detects and redacts sensitive entities before content is sent for processing.

The PII redaction service supports multilingual detection of the following entity types:

  • Names and addresses
  • Phone numbers and email addresses
  • Credit card numbers
  • Medical information

PII redaction can be enabled via project settings in the application or by passing the appropriate parameter in API requests.

7. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access -- You can view the personal data we hold about you directly within the application.
  • Rectification -- Request correction of inaccurate data
  • Erasure -- You can permanently delete your account and all associated data from Settings. This action is irreversible.
  • Portability -- You can export all your data as a downloadable ZIP file from Settings.
  • Restriction -- You can control processing preferences on a per-project basis through project settings.
  • Objection -- Object to processing based on legitimate interests
  • Withdrawal of consent -- Withdraw consent at any time where processing is based on consent

To exercise any of these rights, you can use the self-service options available in Settings or contact us at privacy@morlivo.com. We will respond within 30 days (or sooner if required by applicable law).

8. GDPR

For users in the European Economic Area (EEA), United Kingdom, and Switzerland: Morlivo acts as a data processor when processing Customer Content on your behalf. We process personal data based on the contractual necessity of providing the Service, our legitimate interests in operating and improving the Service, and your consent where applicable.

Where data is transferred outside the EEA, we rely on Standard Contractual Clauses approved by the European Commission or other appropriate safeguards.

You have the right to lodge a complaint with your local supervisory authority if you believe your data protection rights have been violated.

9. Legal Agreements and Compliance

The following legal agreements are available to support your compliance requirements:

  • Business Associate Agreement (BAA) -- Available for customers subject to HIPAA. Covers the handling of protected health information (PHI) within the Service.
  • Data Processing Agreement (DPA) -- Available for customers subject to GDPR. Defines data processing obligations, sub-processor disclosures, and cross-border transfer mechanisms.

Morlivo is designed to support HIPAA, GDPR, and FedRAMP requirements across all deployment models. Contact us at privacy@morlivo.com to request the applicable agreement for your organization.

10. Children's Privacy

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated policy.

12. Contact

If you have questions or concerns about this Privacy Policy or our data practices, contact us at:

  • Email: privacy@morlivo.com
  • Subject: Privacy Inquiry