Tome el control de sus datos ahora: revise y refuerce la configuración de privacidad en DeepL para minimizar la recopilación y la exposición. La Política de Privacidad de DeepL describe claramente los principios de protección de datos personales, incluyendo cómo los gestionamos e-mailová direcciones y otros identificadores, cómo její derechos operan, y como vyskakovacího los avisos parecen ayudarle a mantenerse informado, especialmente cuando se encuentra neznámé sources.
analizamos datos para mejorar las traducciones y los servicios, al tiempo que aplicamos salvaguardias contractuales. Datos de de clientes es procesado dentro německo y otras regiones conformes, con acceso limitado a oprávněným personal. Todas las acciones se registran para garantizar la responsabilidad. No compartimos datos con dragonara ni con otros terceros sin consentimiento, a menos que sea requerido por la ley o con la aprobación explícita del usuario.
Pasos prácticos que puede dar hoy incluyen revisar žádosti and nových solicitudes de eliminación o modificación de datos, permitiendo el intercambio mínimo de datos y activando la autenticación de dos factores. Asegúrese de que cada operación sea realizada por oprávněným staff, y use el zoom función para controlar la visibilidad de los datos en traducciones en tiempo real. Este enfoque admite spokojenosti clientes y le brinda opciones claras para administrar vašeho data.
Identificar los datos personales que DeepL recopila y las fuentes de dichos datos
Desactiva los datos utilizados para mejorar las traducciones en la configuración de privacidad y elimina los datos de la sesión después de su uso para mantener el control sobre tu contenido y privacidad.
DeepL recopila datos personales de varias fuentes para operar, asegurar y mejorar los servicios. Las fuentes principales son:
- Datos proporcionados por el usuariotexto que ingresas para traducción, documentos que subes al usar funciones de pago, información del perfil y preferencias de privacidad que estableces en tu cuenta.
- Uso y datos del dispositivo: marcas de tiempo, pares de idiomas, uso de funciones, mensajes de error, tipo de dispositivo, navegador, sistema operativo, dirección IP, zona horaria y ubicación aproximada derivada de la IP.
- Datos de contenido e interaccióncontenido de conversaciones con chatbots, comentarios que usted envía y solicitudes de soporte; metadatos sobre esas interacciones, incluyendo contexto y propósito.
- Datos de cuenta y seguridad: dirección de correo electrónico, nombre y configuración de seguridad al crear o actualizar una cuenta, así como actividad de autenticación e intentos de acceso.
- Datos derivados y analíticosanálisis agregados o anonimizados que ayudan a mejorar la precisión, la fiabilidad y la seguridad, al tiempo que se aplican controles de privacidad y requisitos legales.
En la práctica, el uso del chatbot y las funciones de traducción puede implicar el almacenamiento de entradas, salidas y metadatos de interacción para mantener la calidad del servicio, detectar anomalías y admitir funciones como la detección de idioma y la personalización. Puede ajustar las preferencias de retención y solicitar la eliminación o la exportación de sus datos cuando lo permita su plan.
Para administrar datos, vaya a la configuración de privacidad, revise las categorías de datos que se muestran arriba y elimine elementos específicos o exclúyase donde esté disponible. Si interactúa con un chatbot, tenga en cuenta que el contenido y los metadatos de la conversación pueden procesarse para generar respuestas y mejorar los servicios. DeepL aplica controles de acceso y principios de minimización de datos, garantizando que solo el personal autorizado pueda ver sus datos y que el manejo de datos se alinee con los fines declarados y las opciones del usuario.
Términos especiales utilizados en notas y referencias de políticas:
- kontextidpopistechnologievypršenímajitelka
- webinarios
- odhlásí
- důvodů
- uživaté
- identificadas
- correspondiente
- našimi
- dojít
- chatbota
- používány
- využívá
- odstraní
- vaší
- autorizovanému
- rozhraní
- detekce
- tímto
- plán
- účel
- zásady
- mimo
- napiťte
Clarify the purposes and legal bases for processing personal data
We clearly define the purposes and legal bases used by our gmbh to process personal data across services. The primary purposes are providing the service, enabling translations (překladu), and running analytics (analýze) to improve accuracy and reliability. We process data you provide (poskytované) and data generated by usage (používání). Each purpose ties to a defined data set (soubory) and a retention window (platnost) aligned with těchto důvodů. The oddíl explains which data elements are involved, how long they are kept, and when they are deleted or anonymized; probíhá under strict controls. We avoid závistlosti on unnecessary third parties and limit processing to the minimum necessary. Tomuto framework ensures that every processing activity has a clear justification and a planned end.
Legal bases in practice
We rely on consent for data processing where you have given explicit permission; on contract performance when you request a service; on compliance with legal obligations; and on legitimate interests in improving the product and maintaining security. You may odvolat consent at any time via nastavení in your account; turning off consent stops future processing based on that basis. We retain data only as long as needed for the purposes and as permitted by law; when the basis ends, we delete or anonymize the data. For operations based on legitimate interests, we conduct balance testing and implement safeguards to protect your rights. The minimal data required for each purpose is described in the data categories (soubory) and the retention policy.
We předáme data only to trusted sub-processors under uzavřené agreements. This includes providers of services for překladu and analytics; all transfers are subject to Data Processing Agreements and dozorového oversight. When possible, we apply data minimization and pseudonymization. In napíklad cases, we may use tools like Clarendon and xing to enrich language features; handling of such data occurs under strict controls and with revocation options. If you request access or deletion, we respond within 30 days and prepare a data export in a portable format.
Explain user rights and practical steps to exercise them
Submit a data access request today to review what we store about you and how we use it. We confirm your jazyka preference and respond within 30 days with a concise summary describing the data categories such as překladatelských records, chatbota logs, and koncovým uživatelům interactions, the purposes of jednání, and the retention terms (uchovávání) described in the system. If you communicate in a language other than English, we provide essential information in that jazyka and, where appropriate, a translation of key sections (překladatelských notes) to help you understand your rights. We also outline steps to protect soukromí and prevent zneužitím of data.
Your rights at a glance
You may exercise rights to access, rectify, delete, restrict processing, object to processing, and data portability where permitted (platí). You can ask to stop processing for a given purpose, or to have data erased, especially if the data is no longer needed for the plan (plán) or if it was collected without proper consent. These rights cover klientská data and data shared with customers (zákazníkům) when you interact with our services, including chatbota interactions.
How to exercise these rights
To begin, reach us via emailovou adresu listed in our policy or submit a request from your account. In your message, specify the right you are exercising and the data categories involved, such as jazyka preferences, komunikujete with us or with zákazníkům, and records tied to koncovým uživatelům or chatbota. Include your identity verification details to prevent zneužitím, and a preferred směrování textu for the response. We will acknowledge the request, verify your identity, and respond within the system’s stated timeframe, typically 30 days. You will receive clear information about what data we hold, where it is stored (ukládat), how it is used (jednání), and the exact steps to take for access, correction, deletion, or data portability. If you need a longer-retention plan or future changes (budoucna), we will popsáno explain how it affects uchovávání and processing.
Define data retention, deletion procedures, and how to request data removal
Store data only as long as needed for the stated purpose and delete when that purpose ends. Data from průzkumech, sociálních interactions, and navštěvujete stránku activity is kept according to a clear schedule and is subject to regular review. We use diagnostické data collected through používané technologie to monitor performance and security, recording datum and dotazů to trace incidents. Access to personal data is restricted to zaměstnanci with přihlášení and the minimum necessary přístupů. Identifikované data stay linked to your account for legitimate operations, while záznamy support troubleshooting, product improvements, and compliance. We store verzi of the software you used and důvodů for data collection in our records and audit trail, and we remove data that is no longer needed. Our approach emphasizes data minimization and transparent handling to protect your privacy across prázdnin and day-to-day use of the service.
Retention timelines and deletion rules
Data categories have defined timeframes: account data and preferences are retained for 24 months after last navštěvujete stránku activity; usage data including pages visited, dotazů, and přístupy is kept for 12 months; diagnostické data from používané technologie stay for 18 months; logs and security events remain for 6 months, with backups pruned on a rotating schedule. After the period ends, we either delete the data or render it anonymous so it cannot be tied back to you. If legal obligations require longer storage, we suspend processing or extend retention only for the minimum necessary duration. We zaznamenáváme deletion events in the audit trail and update the status visible to you in your preferences, ensuring any změny to your formulář settings are reflected across související systems.
How to request data removal
To request removal, open the formulář on the Data Rights page and specify the data categories you want deleted (for example account data, usage data, preferences). Provide a concise důvodů and indicate whether you want partial deletion or complete removal. We verify your identity through the standard přihlášení flow and may require additional verification if needed. Once verified, we process deletion or anonymization within 30 days and confirm the outcome by email. If you request data export, we provide a copy before deletion where feasible. We remove stored data from all související systems and prune datum from logs while preserving non-identifiable aggregates for operational integrity. You can review the current state of the request in your account, and we record the action as zaznamenáváme for accountability and compliance with your preferences. If some data must be retained for legal reasons, we clearly specify the reason and scope in the response.
Describe security controls, third-party sharing, international transfers, and breach response
Enable encryption in transit and at rest by default, and enforce MFA for all access to deeplcom systems. Apply least-privilege access and automatic revocation on role changes to minimize risk.
Security controls include robust identity management, network segmentation, and data protections. Data at rest uses AES-256; data in transit uses TLS 1.2+; keys are managed by a centralized KMS with automatic rotation. We maintain immutable audit logs, monitor for anomalies around the clock, and run quarterly vulnerability assessments and annual penetration tests. Documentation, including a glosáře, clarifies terms and controls, and popsáno procedures explain how we protect data; usnadňují compliance for administrators and customers. Before processing (před) and during integration with aplikací, we ensure controls are aligned and tested.
Third-party sharing follows data-minimization principles and formal agreements. We share only with subprocessors under DPAs and Standard Contractual Clauses, restrict access to necessary data, and require incident reporting and data deletion or return on termination. We conduct vendor risk assessments prior to onboarding, monitor ongoing security posture, and restrict cross-border sharing to approved destinations. Any data transfers to external services, including google, are governed by contractual protections and DPIA requirements. We document purposes and limit data access to trusted processors. This includes ensuring platbách data and customer jméno stay in minimized, controlled contexts, and that námitky are addressed promptly.
International transfers rely on SCCs or adequacy decisions and are limited to essential purposes. We map data categories, perform DPIA, and implement data-localization options when clients request it. Transfers outside the EU are monitored and recorded in a transfer ledger with data type, destination, purpose, and retention. We also maintain localization for regions such as německo to meet local requirements, and Unie data-protection standards are followed where applicable.
Breach response includes a prepared incident response plan with defined roles, runbooks, and escalation paths. We detect breaches quickly, contain impact, preserve evidence, and begin root-cause analysis. Customers receive timely notifications detailing data types involved and remediation steps, typically within 72 hours where required by law. We provide ongoing updates and implement technická preventivní opatření to reduce recurrence. Our team sami reviews the response, and we provide support for námitky related to breach handling.
| Topic | Controls | Data scope | Transfers | Breach actions |
|---|---|---|---|---|
| Security controls | RBAC, MFA, AES-256, TLS 1.2+, immutable logs | PII, credentials, content | Intra-EEA; cross-border with SCCs | Containment, forensics, remediation |
| Third-party sharing | DPAs, SCCs, data minimization | Minimum necessary | Controlled, documented | Post-termination data handling |
| International transfers | SCCs, DPIA, localización | Datos personales | Destinos aprobados únicamente | Regulatory reporting |
| Respuesta ante brechas | IR plan, runbooks, escalación | Impacto del alcance | Cooperación legítima | estándar de notificación de 72 horas |
