Last updated: June 19, 2026
This Privacy Policy explains how Proxylang, operated by TITUS TIMOTHY DAVID ("Company," "we," "us," or "our"), collects, uses, and protects information when you use our website translation proxy service ("Service").
By using our Service, you agree to the collection and use of information as described in this policy. We are committed to protecting your privacy and being transparent about our data practices.
When you create an account, we collect:
When you configure the Service, we store:
When translating your website, we process:
Note: We do not permanently store your original website content. Content is processed in real-time and only cached translations are retained.
For Full Proxy mode customers, we additionally store a pseudonymous visitor identifier (derived from a salted hash of IP and User-Agent — the raw IP is never retained), session identifier, browser, operating system, and device type, on the customer's behalf as a data processor. WordPress plugin Hybrid mode does not collect visitor analytics.
Payment processing is handled by different providers depending on the payment method: international card payments by Polar (via Stripe), and domestic Korean (KRW) card payments by PortOne (Korea PortOne Inc.) together with the payment gateway KG Inicis. We do not store credit card numbers or full payment details. We only store:
We use collected information to:
Important: Your content is processed by third-party AI services for translation. Please review this section carefully.
Text content from your website is sent to third-party translation providers for processing. Depending on the target language or use case, translation providers may include DeepL, Google, Anthropic, OpenAI, or other AI providers operated by Proxylang.
All personally identifiable information is automatically redacted prior to transmission to any translation provider. No submitted text is used to train AI models.
Before sending content to translation providers, we automatically detect and redact personal information, including:
Redacted content is replaced with placeholder tokens during translation and restored in the final output.
We use API-only access to translation providers:
| Service | Purpose | Data Shared |
|---|---|---|
| Cloudflare | Edge proxy, CDN, DDoS protection, KV cache | Request metadata, translated HTML, geo headers |
| Supabase | Authentication and database hosting | Account data, domain config, hashed identifiers |
| Google, Anthropic, OpenAI, DeepL | AI translation providers (PII-redacted) | Source text with PII redacted, language codes |
| Polar | Payment Processing (International) | Billing information, subscription status |
| PortOne (Korea PortOne Inc.) | Domestic payment gateway integration (KRW card payments) | Payment info, buyer name/phone, subscription & billing status |
| KG Inicis | Domestic credit card processing (PG) | Card payment data, approval/cancellation records |
| Resend | Email Delivery | Email addresses, notification content |
| Umami | Privacy-focused product analytics (proxylang.dev only, consent-gated) | Page views, referrers (no cross-site tracking) |
For the complete subprocessor list with regions, DPA links, and change-notification commitments, see our subprocessors page .
To provide domestic (KRW) payment services, we entrust the processing of certain personal data to the parties below. Each entrustment contract requires the processor to safeguard personal data in accordance with Korea's Personal Information Protection Act (PIPA).
| Entrustee (수탁업체) | Scope of entrusted work |
|---|---|
| Korea PortOne Inc. (PortOne / 코리아포트원) | Payment integration service (결제 연동 서비스 제공) |
| KG Inicis Co., Ltd. (KG이니시스) | Credit card payment processing and approval/cancellation |
| Data Type | Retention Period | Purpose |
|---|---|---|
| Edge Cache | Up to 24 hours | Fast page delivery |
| Translation Cache | Indefinite (until cleared) | Avoid re-translation, consistency |
| Request Logs | 90 days | Analytics, debugging |
| Account Data | Until account deletion | Service provision |
| Billing Records | 7 years | Legal/tax compliance |
You can clear cached translations for your domain at any time through the dashboard. This will remove all translated content from our caches.
Visitor tracking depends on the integration mode:
Your data may be processed in multiple jurisdictions:
For international data transfers, we rely on:
For GDPR purposes, we act as a "data processor" when translating your website content. You (the website owner) remain the "data controller" and are responsible for:
You have the right to:
How to exercise these rights: email hello@proxylang.dev with the subject line Privacy Request — [your account email]. We respond within 30 days, in line with GDPR Article 12(3).
If you are a visitor to a website using Proxylang for translation:
California residents have additional rights under the CCPA:
To exercise CCPA rights, email hello@proxylang.dev with the subject line CCPA Request — [your account email]. We respond within 45 days, as required by CCPA.
We implement appropriate technical and organizational measures to protect your data:
While we take security seriously, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.
Our Service is not directed to children under 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.
We may update this Privacy Policy from time to time. We will notify you of material changes by:
For privacy-related questions or to exercise your rights, contact us:
Email: hello@proxylang.dev
General Inquiries: hello@proxylang.dev
Business Registration: 797-28-01733
Location: Seoul, South Korea
We will respond to privacy requests within 30 days.