Datenschutz
Privacy
Last updated: 2026-04
WortWelle complies with the Swiss Data Protection Act (revDSG) and the EU GDPR.
What data
We only collect what is necessary to operate the service.
- Account: email address, interface language, learning goal
- Progress: completed lessons, exercise answers, flashcards
- Speaking recordings: deleted immediately after scoring (not stored)
- Technical: IP address (anonymized), browser, bug reports
Purpose
To provide the service, personalize your learning plan, and improve the platform. No advertising, no data sales.
Cookies
We only use technically necessary cookies. No tracking or advertising cookies.
- Session cookie — for authentication (30 days)
- NEXT_LOCALE — UI language (1 year)
Third parties
We use the following sub-processors with signed DPAs:
- Resend (USA, DPF) — email delivery for sign-in links
- Piper TTS — self-hosted on our server, no data shared externally
- Whisper STT — self-hosted, audio processed locally
- Google Gemini API (optional) — only with your consent, sentence text only, no PII
Retention
Your account remains as long as you use it. After deletion: 30-day soft-delete grace period (reversible), then complete removal of all personal data.
Your Rights
Under GDPR Art. 15–22 and revDSG Art. 25 you have the following rights:
- Access your data (Art. 15)
- Delete your account (Art. 17)
- Data portability — JSON export (Art. 20)
Exercise these rights directly in your privacy settings.
Contact
Privacy questions: tarasov.oleg.h@gmail.com