Privacy Policy

    LINA AI Translation Platform

    Effective date: January 1, 2026 · Last updated: January 1, 2026

    1. Introduction

    SkyLitt Agentsy s.r.o. ("SkyLitt", "we", "us", or "our") operates the LINA AI Translation Platform ("LINA", "Platform", or "Service"). This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our Platform, visit our website at UseLina.co, or interact with us in any other way.

    We are committed to protecting your privacy and handling your data responsibly. As a company registered in the Czech Republic and operating within the European Union, we comply with the General Data Protection Regulation (GDPR) and other applicable data protection legislation.

    Please read this Privacy Policy carefully. By accessing or using our Platform, you acknowledge that you have read and understood this policy. If you do not agree with our data practices, please do not use our Service.

    2. Data Controller

    The data controller responsible for your personal data is:

    SkyLitt Agentsy s.r.o.

    Registered address: Velvarská 1699/29, Prague 6, 160 00, Czech Republic

    Company registration ID (IČO): 23067675

    Tax ID (DIČ): CZ23067675

    Email: privacy@skylitt.co

    Managing Director: Miroslav Krivanek

    Data Protection Officer: Tomas Lojka — reachable at privacy@skylitt.co

    3. What Personal Data We Collect

    We collect and process the following categories of personal data depending on how you interact with us:

    3.1 Account and Registration Data

    When you create an account or request a demo, we collect:

    • Full name
    • Business email address
    • Company name and role/job title
    • Password (stored in hashed form only)

    3.2 Content Data

    When you use LINA to translate, localize, or transcreate content, we process:

    • Source content you upload or paste into the Platform (text, documents)
    • Translated and adapted output generated by the Platform
    • Brand DNA entries (glossaries, style rules, brand voice preferences, terminology)
    • Translation memory and adaptive memory data
    • Review feedback and editorial corrections you provide

    Important: Content Data may contain personal data if you submit materials that include personal information. You are responsible for ensuring you have the right to submit such content and that doing so complies with applicable data protection laws.

    3.3 Billing and Payment Data

    When you subscribe to a paid plan, we collect:

    • Billing contact name and address
    • Company billing entity and VAT information
    • Payment method details (processed securely by Stripe; we do not store full card numbers)

    3.4 Usage and Technical Data

    We automatically collect certain technical data when you use the Platform:

    • Feature usage patterns, session duration, and actions taken within the Platform (collected via Firebase Analytics)
    • Browser type, operating system, device information
    • IP address (anonymized where possible)
    • Error logs and performance data
    • Segment consumption and capacity usage metrics

    3.5 Website Analytics Data

    Our website uses Plausible Analytics, a privacy-focused, cookieless analytics tool. Plausible does not use cookies, does not collect personal data, and does not track individual visitors across sessions or websites. All website analytics data is aggregated and anonymous.

    3.6 Communication Data

    When you contact us via email, a demo request form, or through support channels, we collect:

    • Your name and contact details
    • The content of your message or inquiry
    • Any attachments you provide

    4. How and Why We Use Your Data

    We process your personal data only when we have a valid legal basis under the GDPR. The table below summarizes our processing activities:

    PurposeData UsedLegal Basis
    Providing and operating the PlatformAccount Data, Content Data, Usage DataPerformance of contract (Art. 6(1)(b))
    Maintaining Brand DNA and adaptive memoryContent Data, Brand DNA entries, review feedbackPerformance of contract (Art. 6(1)(b))
    Processing payments and subscriptionsBilling Data, Account DataPerformance of contract (Art. 6(1)(b))
    Improving and developing the PlatformUsage Data, Technical Data (aggregated)Legitimate interest (Art. 6(1)(f))
    Providing customer supportAccount Data, Communication DataPerformance of contract (Art. 6(1)(b))
    Ensuring security and preventing fraudTechnical Data, Usage DataLegitimate interest (Art. 6(1)(f))
    Website analytics (aggregated, anonymous)Aggregated website visit data (Plausible)Legitimate interest (Art. 6(1)(f))
    Product analytics within the PlatformUsage Data (Firebase Analytics)Legitimate interest (Art. 6(1)(f))
    Service-related communicationsAccount DataPerformance of contract (Art. 6(1)(b))
    Marketing communications (if opted in)Account DataConsent (Art. 6(1)(a))
    Compliance with legal obligationsAs required by lawLegal obligation (Art. 6(1)(c))

    Where we rely on legitimate interest, we have conducted a balancing test to ensure our interests do not override your fundamental rights and freedoms. You may contact us at privacy@skylitt.co to learn more about any specific balancing assessment.

    5. AI and Automated Processing

    LINA uses artificial intelligence through third-party AI service providers to deliver its translation, localization, and transcreation services. This means:

    • Content you submit is processed by AI models to generate translations and adaptations.
    • Your content is sent to third-party AI service providers solely for the purpose of generating output. We use multiple providers and select them based on language, quality, and cost factors.
    • We do not permit our AI service providers to use your content for training their models. Our agreements with these providers include contractual restrictions on data use.
    • AI-generated outputs are not used to make automated decisions that produce legal or similarly significant effects on individuals.
    • Brand DNA entries and translation memory are used to enhance AI output quality for your organization. This data remains scoped to your account.

    We do not use your Content Data to train general-purpose AI models. Your content is processed only to deliver the service you requested, and to improve the quality of outputs within your specific organizational context (Brand DNA, translation memories).

    6. Who We Share Your Data With

    We do not sell your personal data. We share your data only with the following categories of recipients, and only to the extent necessary:

    6.1 Sub-processors

    ProviderPurposeData SharedLocation
    Google Cloud Platform (GCP)Infrastructure hosting, data storage, computeAll Platform dataEU (primary)
    Firebase (Google)Product analytics and app performance monitoringUsage Data (pseudonymized)EU/US
    StripePayment processingBilling and payment dataEU/US
    Third-party AI providersAI-powered translation and content adaptationContent Data (for processing only)EU/US
    Plausible AnalyticsWebsite analyticsNone (cookieless, no personal data)EU

    All sub-processors are bound by Data Processing Agreements (DPAs) that require them to process data only on our instructions and to implement appropriate security measures.

    6.2 Other Disclosures

    We may also disclose your data:

    • To comply with applicable laws, regulations, or legal processes
    • To enforce our Terms of Service or protect our rights, property, or safety
    • In connection with a merger, acquisition, or sale of assets (you will be notified in advance)
    • With your explicit consent

    7. International Data Transfers

    Your data is primarily stored and processed within the European Economic Area (EEA) on Google Cloud Platform infrastructure. However, certain sub-processors (including AI service providers, Firebase, and Stripe) may process data in the United States or other countries outside the EEA.

    When transferring data outside the EEA, we ensure adequate protection through:

    • European Commission adequacy decisions (where applicable)
    • Standard Contractual Clauses (SCCs) approved by the European Commission
    • Additional supplementary measures where necessary

    You may request a copy of the relevant transfer safeguards by contacting privacy@skylitt.co.

    8. Data Retention

    We retain your personal data only for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required by law.

    Data CategoryRetention Period
    Account DataDuration of your account plus 30 days after account deletion
    Content Data (translations, source files)Duration of your account; deleted within 90 days of account termination
    Brand DNA and translation memoriesDuration of your account; deleted within 90 days of account termination
    Billing and payment records7 years from the date of transaction (Czech tax law requirement)
    Usage and technical data24 months from date of collection, then aggregated or deleted
    Communication data (support inquiries)24 months from last interaction, unless ongoing dispute
    Website analytics (Plausible)No personal data collected; aggregate statistics retained indefinitely

    When data is no longer needed, we securely delete or anonymize it so it can no longer be associated with you.

    9. Your Rights Under the GDPR

    As a data subject, you have the following rights:

    • Right of access — You can request a copy of the personal data we hold about you.
    • Right to rectification — You can ask us to correct inaccurate or incomplete data.
    • Right to erasure — You can request deletion of your data ("right to be forgotten"), subject to legal retention obligations.
    • Right to restriction — You can ask us to restrict processing in certain circumstances.
    • Right to data portability — You can receive your data in a structured, machine-readable format.
    • Right to object — You can object to processing based on legitimate interest. We will cease processing unless we have compelling legitimate grounds.
    • Right to withdraw consent — Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
    • Right to lodge a complaint — You may file a complaint with a supervisory authority. The competent authority for SkyLitt is the Office for Personal Data Protection of the Czech Republic (UOOU, www.uoou.cz).

    To exercise any of these rights, please contact us at privacy@skylitt.co. We will respond within 30 days. We may ask you to verify your identity before processing your request.

    10. Data Security

    We implement appropriate technical and organizational measures to protect your personal data, including:

    • Encryption of data in transit (TLS) and at rest
    • Access controls and role-based permissions within the Platform
    • Regular security assessments and monitoring
    • Employee access limited to those who need it for their role
    • Secure infrastructure hosted on Google Cloud Platform with EU data residency
    • Daily automated backups with 30-day retention

    While we take all reasonable precautions, no method of electronic transmission or storage is 100% secure. If you become aware of any security incident, please notify us immediately at privacy@skylitt.co.

    11. Cookies and Tracking Technologies

    Our website (UseLina.co) uses Plausible Analytics, which is a cookieless analytics solution. Our website does not set any tracking cookies or use third-party advertising trackers.

    Our Platform application uses Firebase Analytics (a Google service) for product analytics and performance monitoring. Firebase may use cookies or similar technologies to maintain your session and track feature usage within the application.

    For detailed information about our cookie practices, please refer to our Cookie Policy, available on our website.

    12. Children's Privacy

    LINA is a business-to-business service and is not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us at privacy@skylitt.co, and we will promptly delete it.

    13. Changes to This Policy

    We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

    • Post the updated policy on our website with a revised effective date
    • Notify you via email or through the Platform if the changes materially affect how we process your data
    • Obtain your consent where required by law

    We encourage you to review this policy periodically.

    14. Contact Us

    If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

    SkyLitt Agentsy s.r.o.

    Velvarská 1699/29, Prague 6, 160 00, Czech Republic

    Email: privacy@skylitt.co

    Data Protection Officer: Tomas Lojka

    Supervisory Authority:

    Office for Personal Data Protection (UOOU)

    Pplk. Sochora 27, 170 00 Prague 7, Czech Republic — www.uoou.cz