Privacy Policy

Last updated: 2025-12-27

1. Introduction

At Hend, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our language learning application and website (collectively, the “Service”).

We prioritize data minimization, local-first technology, and end-to-end encryption to protect your privacy. Please read this Privacy Policy carefully. By using Hend, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Learning Data

Hend uses a local-first approach, which means your learning data is always stored in your browser and the app works fully offline. This data includes:

• Language learning progress
• Word and phrase lists
• Personal content you’ve imported
• Application settings and preferences
• Generated or downloaded learning materials

When you create an account, this data is also continuously synchronized with our cloud infrastructure in an end-to-end encrypted format to provide a seamless experience across your devices.

2.2 Account and Payment Information

We only collect information necessary to create your account and manage your subscription.

If you register for an account or subscribe to premium features, we process the following:

• Account Information: Your email address, which is managed through our third-party authentication provider, Clerk.
• Payment Information: For subscribers, payment information is processed by Polar, our Merchant of Record. We do not store your credit card details but may have access to subscription-related information, such as your subscription status and billing history.

3. How We Use Your Information

We use information to:

• Provide, maintain, and improve Hend
• Process transactions and manage your subscription
• Continuously synchronize your end-to-end encrypted data to our servers
• Enable cross-device access to your encrypted data for registered users
• Analyze usage patterns to enhance user experience
• Communicate with you about your account or subscription
• Provide customer support
• Detect and prevent fraudulent or unauthorized activity

4. Data Storage and Security

4.1 Local Data Storage

Hend uses a local-first architecture. Your learning data is always stored in your browser, ensuring the app works fully offline and in spotty network conditions. We do not have direct access to this local data.

4.2 Cloud Data Storage

When you create an account, your data is also stored securely in our cloud infrastructure with end-to-end encryption to protect your privacy.

4.3 Continuous End-to-End Encrypted Synchronization

For registered users, Hend continuously synchronizes your data. This process is protected with mandatory end-to-end encryption (E2EE).

• Synchronization is always active: Your data is automatically synchronized with our servers.
• Encryption happens in your browser: All data is encrypted in your browser before it is sent.
• Access Control: To enable cross-device access, your encryption keys are securely managed through our authentication provider. We implement strict policies and procedures to not access your content without your explicit consent or legal requirement.
• Cross-Device Synchronization: When you register an account, you gain the ability to link multiple devices. This allows you to securely access the same set of encrypted data across all your authorized devices.

4.4 Data Retention

• Local data remains in your browser until you clear it or delete your account.
• Account information is retained as long as you maintain an active account.
• After account deletion, we retain certain information as required by law or for legitimate business purposes, such as financial records of transactions.

5. Sharing Your Information

We do not sell your personal information. We may share the limited information we have access to in the following circumstances:

5.1 Service Providers

We rely on third-party vendors who provide services on our behalf, such as:

• Payment processors (such as Polar)
• Authentication providers (such as Clerk)
• Synchronization technology providers
• Analytics services
• Customer support tools

These providers are contractually obligated to use your information solely for providing services to us. Due to end-to-end encryption, our synchronization provider cannot access your content data in plaintext.

5.2 AI Service Providers

When you use AI generation features:

• Your generation requests may be processed by third-party AI providers
• These providers may retain data according to their own privacy policies
• When you use your own API keys, your relationship with that provider is governed by their terms

5.3 Legal Requirements

We may disclose information if required to do so by law or in response to valid requests by public authorities.

6. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

• Access: You can request access to the personal information we hold about you (e.g., your email and subscription status).
• Correction: You can request correction of inaccurate information.
• Deletion: You can request deletion of your account and personal information.
• Opt-out: You can opt out of marketing communications.
• Data portability: You can request a copy of your data in a structured format.

6.1 Data Control

Because Hend uses a local-first approach:

• You maintain direct control over the data stored in your browser.
• Clearing your browser data will remove this local data.
• You can delete your account and all associated cloud data at any time.
• Your synced data is protected with end-to-end encryption, ensuring only you can access its contents.

7. Children’s Privacy

Hend is not intended for children under 13. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

8. Third-Party Links and Services

Hend may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing any information.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date. For significant changes, we will provide additional notice through the application or via email.

10. International Data Transfers

Your end-to-end encrypted data is stored on servers that may be located around the world. Therefore:

• Your encrypted information may be transferred to and processed in countries other than your residence.
• Because all data is end-to-end encrypted, your privacy is protected regardless of server location.
• We ensure appropriate safeguards are in place for international transfers.

11. California Privacy Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA). Please contact us to exercise these rights.

12. GDPR Compliance

For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR). The legal bases for processing your information include:

• Performance of the contract we have with you
• Your consent
• Legitimate interests
• Compliance with legal obligations

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: [email protected]

Thank you for trusting Hend with your language learning journey!