We follow the principle of data minimization and sparse use of personal data. We avoid collecting personal data whenever possible. Personal data (such as IP address) will only be collected if it is necessary for providing the service.
Summary
What is collected
During your visit to speech-to-text.cloud, we collect IP address in a truncated form, User-Agent, Referrer URL, Hostname and timestamp for protection against misuse and visitor statistics purposes. We also store uploaded audio files at our hosting provider netcup.
How long is it stored
Uploaded audio files are retained for 1 day. The IP address will be stored for as long as it is necessary for protection against misuse, but not longer than 2 years.
When does a transfer occur
We do not transfer data to third parties unless it is necessary for legal prosecution or providing the offer.
Responsible party
The responsible party under the General Data Protection Regulation (GDPR) is:
Visually impaired users can follow this link
Your rights
Under the given contact information of our data protection officer, you can exercise the following rights at any time:
- The right to obtain information about the personal data stored by us and how it is processed (Art. 15 GDPR),
- The right to correct inaccurate personal data (Art. 16 GDPR),
- The right to erasure of your personal data (Art. 17 GDPR),
- The right to restrict processing of your personal data if we are unable to delete it due to legal obligations (Art. 18 GDPR),
- The right to object to the processing of your personal data by us (Art. 21 GDPR) and
- The right to data portability, so long as you have consented to the processing or have entered into a contract with us (Art. 20 GDPR).
If you have provided us with consent, you can withdraw it at any time.
You may file a complaint with a supervisory authority, such as the data protection officer of your state or the competent authority for us, at any time.
A list of supervisory authorities (for non-public areas) with contact information can be found at https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html.
Collection of General Information on Our Website
Purpose and Legal Basis
When you access our website, i.e., without registering or transmitting any other information, general information will be automatically collected. This information (server logs) includes, for example, the type of web browser, operating system used, domain name of your internet service provider, and IP address.
- Ensuring a seamless connection to our website.
- Ensuring smooth use of our website.
- Evaluating the security and stability of our systems.
- Optimizing our website.
We do not use your data to draw conclusions about your person. Information of this kind may be anonymously statistically evaluated to optimize our online presence and the underlying technology.
Legal Basis and Legitimate Interest
The processing is based on Article 6 Abs. 1 lit. f GDPR on the grounds of our legitimate interest in improving the stability and functionality of our website.
Recipients
Recipients of the data may be technical service providers who process the data as part of their work to maintain and operate our website.
Data Retention
We will delete your data as soon as it is no longer required for the purpose of collecting it. This is generally the case when the session has ended. In the case of storing data in log files, this is after 6 months. Further storage is possible. In this case, the IP addresses of users will be anonymized so that an assignment to the client is no longer possible.
Collection of Personal Data
The collection of the aforementioned personal data is neither legally nor contractually required. However, without the IP address, our service and the functionality of our website cannot be guaranteed. Additionally, some services may not be available or limited. Therefore, a complaint is excluded.
Security Measures
We take appropriate technical and organizational measures to ensure that the protection level required by law is maintained, taking into account the state of the art, implementation costs, the purpose, scope, context and risks associated with the processing of personal data, as well as the different levels of probability and severity of the risk for the rights and freedoms of natural persons.
These measures include, among others, ensuring the confidentiality, integrity and availability of data through access controls, monitoring and logging of physical and digital access to data, as well as implementing procedures to enable the exercise of individuals’ rights, such as the right to deletion, and to react in case of a data breach. We also take into account the protection of personal data already at the development and selection of hardware, software and processes in accordance with the principle “Data protection by technical design” and by implementing data protection friendly settings.
Usage of Matomo
This website uses Matomo, an open-source software for statistical analysis of visitor access. The provider of the Matomo software is InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand.
Matomo is used without cookies. The last two octets of the IP address are set to null in order to anonymize it.
The use of Matomo serves the purpose of improving the quality of our website and its content. By doing so, we learn how our website is used and can optimize our offer accordingly.
SSL Encryption
To protect the security of your data during transfer, we use state-of-the-art encryption methods (such as SSL) over HTTPS.
Information for Payment Processing
We may collect the necessary details to facilitate any payments you make, including your payment instrument’s number and the associated security code. This payment information is stored by Stripe, Inc., and you can find their privacy policy here.
Right to Object by Art. 21 DSGVO
Specific Objection
You have the right to object at any time to the processing of personal data relating to you that is based on your special situation under Article 6(1)(f) DSGVO (processing of personal data based on a balancing of interests). This also applies to profiling in accordance with Article 4(4) DSGVO.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate reasons for doing so that override your interests, rights and freedoms, or the processing is necessary to establish, exercise or defend legal rights.
Recipient of an Objection
The recipient is the responsible party in accordance with data protection laws.
Modification of Our Privacy Policy
We reserve the right to update this privacy policy at any time to ensure that it complies with current legal requirements or reflects changes in our services, such as the introduction of new services. In that case, the updated privacy policy will apply from your next visit.
Questions on Data Protection
If you have any questions about data protection, please send us an email or contact the responsible party within the meaning of the data protection laws (see above).