Privacy Policy

Last updated: 2026-02-14

1. Introduction

At Hend, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our language learning application and website (collectively, the “Service”).

We prioritize data minimization, local-first technology, and end-to-end encryption to protect your privacy. Please read this Privacy Policy carefully. By using Hend, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Learning Data

Hend uses a local-first architecture, which means your learning data is always stored on your device first. This data includes:

When you create an account, this data is continuously synchronized with our cloud infrastructure using end-to-end encryption (see Section 4.3) to enable cross-device access.

2.2 Account Information

If you register for an account, we process the following through our authentication provider, Clerk:

We do not collect your name, phone number, or other personal identifiers unless you provide them voluntarily.

2.3 Payment and Subscription Information

For subscribers, payment information is processed by Polar, our Merchant of Record. We do not store your credit card details. We may have access to:

2.4 Usage Metering Data

To manage usage-based features (such as AI generation credits), we record usage events to our payment provider, Polar. These events include:

This data is associated with your customer ID for billing purposes. It does not include the content of your texts, translations, or other learning materials.

2.5 Analytics Data

With your consent, we collect analytics data to improve the Service. Analytics is opt-in - we only collect this data if you accept cookies via our consent banner. Analytics data may include:

When analytics is enabled, your Clerk user ID and email address are used as identifiers in our analytics platform (PostHog) to associate sessions with your account.

2.6 Server Logs and Infrastructure Data

As the Service is hosted on Cloudflare Workers, standard request metadata is collected automatically:

3. How We Use Your Information

We use information to:

4. Data Storage and Security

4.1 Local-First Data Storage

Hend is built on a local-first architecture using Jazz (by Garden Computing, Inc.). Your learning data is stored on your device using browser storage (IndexedDB/LocalStorage). This means your data persists locally even without an internet connection, though the application itself requires an internet connection for the initial page load.

4.2 Cloud Data Storage

When you create an account, your data is also stored on Jazz’s cloud synchronization servers (cloud.jazz.tools) in an end-to-end encrypted format (see Section 4.3).

4.3 End-to-End Encryption

Data synchronization for registered users is protected by end-to-end encryption (E2EE) provided by the Jazz framework. This encryption works as follows:

We rely on Jazz’s cryptographic framework for E2EE. We have not implemented additional application-level encryption beyond what Jazz provides.

4.4 Data Retention

After account deletion, we instruct our service providers to delete your data. Certain information may be retained as required by law (e.g., financial transaction records).

5. Third-Party Services

We do not sell your personal information. We rely on the following categories of third-party services to operate Hend. Each receives only the data necessary for its function.

5.1 Authentication - Clerk

5.2 Payments - Polar

5.3 Data Synchronization - Jazz (Garden Computing, Inc.)

5.4 Hosting - Cloudflare

5.5 Analytics - PostHog

5.6 AI Providers

When you use AI-powered features (text generation, translation, word explanations, etc.), your requests are processed by third-party AI providers. Here is how this works:

OpenRouter (routing layer)

When using your own API key: If you provide your own OpenRouter API key, AI requests are sent directly from your browser to OpenRouter. Your relationship with OpenRouter and its downstream providers is governed by their respective terms. Your API key is stored in your preferences, which are synced via Jazz’s encrypted sync.

5.7 Text-to-Speech - fal.ai and ElevenLabs

5.8 Web Content Fetching - Jina AI

5.9 YouTube Data - RapidAPI

We may disclose information if required to do so by law or in response to valid requests by public authorities (e.g., a court order or government agency).

6. Cookies and Tracking

Hend uses the following storage mechanisms:

We do not use third-party advertising cookies or tracking pixels.

7. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

7.1 Data Control

Because Hend uses a local-first architecture:

8. Children’s Privacy

Hend is not intended for children under 16 (or under 13 in jurisdictions where that is the applicable age). We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence, including the United States. We use the following safeguards:

10. California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

To exercise these rights, contact us at the address in Section 13.

11. GDPR Compliance

For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR). Our legal bases for processing are:

You may exercise your GDPR rights (access, rectification, erasure, portability, restriction, objection) by contacting us at the address in Section 13.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of changes by:

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at:

Email: [email protected]

This privacy policy aims to accurately reflect Hend’s current data practices as of the date above. We are committed to updating it as our product and third-party provider landscape evolve.