01 Data Controller
Meetlingua, Inc. is the data controller. We are registered in Delaware, USA.
EU Representative
For GDPR and ePrivacy Directive enquiries, our designated EU representative is: Meetlingua EU Representative, c/o [EU Address], [EU City], [EU Country].
Data Protection Officer
We have appointed a Data Protection Officer. Contact: dpo@meetlingua.com
02 Legal Bases
We process personal data under the following legal bases (Article 6, GDPR):
| Processing Activity | Legal Basis | Article |
|---|---|---|
| Real-time transcription & translation | Contract performance | 6(1)(b) |
| Post-call summaries & AI assistant | Contract performance | 6(1)(b) |
| Voice cloning (optional, with consent) | Explicit consent | 6(1)(a) |
| Meeting recording | Contract performance | 6(1)(b) |
| Analytics & usage metrics | Legitimate interests | 6(1)(f) |
| Marketing emails | Consent (opt-in) | 6(1)(a) |
| Billing & financial records | Not collected while payments are disabled | N/A |
| Security & fraud prevention | Legitimate interests | 6(1)(f) |
03 International Transfers
Our primary processing runs on AWS EU (Frankfurt). However, some sub-processors are located in the United States:
All transfers are protected by Standard Contractual Clauses and, where applicable, the EU-US Data Privacy Framework (DPF). Copies of our SCCs are available on request.
04 Your Rights
You have the following rights under GDPR:
Right of Access (Article 15)
You may request a copy of your personal data. We'll provide it in a clear, structured format within 30 days.
Right to Rectification (Article 16)
You can correct inaccurate data. Simply update your account or contact our DPO.
Right to Erasure (Article 17)
You have the "right to be forgotten". We'll delete your personal data within 30 days, except where retention is legally required.
Right to Data Portability (Article 20)
You can request your data in a machine-readable format (JSON, CSV) to transfer to another service.
Right to Restrict Processing (Article 18)
You can request that we pause processing while a dispute is resolved.
Right to Object (Article 21)
You can object to processing based on legitimate interests (e.g., analytics) at any time. We'll stop processing unless we have a compelling reason.
Withdraw Consent (Article 7)
If we're relying on consent (e.g., for marketing emails), you can withdraw it anytime. Withdrawal does not affect prior processing.
How to Exercise Rights
Submit requests via dpo@meetlingua.com or the Privacy section in your account settings. Include your full name and email. We respond within 30 days (extendable by 60 days for complex requests).
05 Data Processing Agreement
Enterprise customers who process personal data through Meetlingua on behalf of their own users may be data controllers themselves. In such cases, we act as a data processor.
We provide a standard Data Processing Agreement (DPA) that complies with GDPR Article 28. This includes:
To request a DPA, contact legal@meetlingua.com.
06 Standard Contractual Clauses
All international data transfers to the US are protected by EU Commission-approved Standard Contractual Clauses (SCCs). These clauses ensure adequate safeguards for your data.
We also comply with the EU-US Data Privacy Framework (DPF) for transfers to the United States where applicable. Our DPF certification is available at dataprivacyframework.gov.
Copies of our SCCs are available on request to dpo@meetlingua.com.
07 Data Protection Impact Assessment
We've conducted a Data Protection Impact Assessment (DPIA) for our real-time audio transcription and translation pipeline, as it processes sensitive biometric and language data.
Our DPIA identified and mitigated risks including:
Our DPIA is available to supervisory authorities and data subjects on request.
08 Supervisory Authority
If you believe we've violated your GDPR rights, you have the right to lodge a complaint with your local data protection authority:
However, we encourage you to contact us first at dpo@meetlingua.com so we can resolve the issue.