Legal

Privacy Policy

Last updated: July 8, 2026  ·  Effective date: July 8, 2026

The full text below is in English, the legally authoritative version.

KAERIS i18n (kaeris.dev) is operated by Vyacheslav Kojima, an individual entrepreneur based in Ukraine. This policy explains what data we collect, why, and your rights over it. We keep things simple because we collect very little.

1. What data we collect and why

DataWhyStored whereRetention
IP address Rate limiting (abuse prevention) In-memory only, not written to disk Until server restart
Uploaded file content AI translation (sent to OpenRouter) Temp files on server, deleted within 2 hours Max 2 hours
Email address Sending your API key after purchase orders.json on server Until deletion request
API key Authentication api_keys.txt / premium_keys.txt on server Until you request removal
Chat messages AI support responses (sent to OpenRouter) Not stored — processed in real time Not retained
Language preference UI language memory Your browser's localStorage only Until you clear browser data
Payment data Processing purchases Handled by Creem — we never see card details Creem's policy applies

We use no cookies. We use browser localStorage only for your language preference — no tracking, no analytics, no advertising.

2. Third-party sub-processors

To deliver the service we share data with these providers:

ProviderPurposeData sharedPrivacy policy
OpenRouter AI translation & chat (routes to DeepSeek / OpenAI) File content, chat messages openrouter.ai/privacy
DeepSeek AI model (free tier) File content (via OpenRouter) deepseek.com/privacy
OpenAI AI model (Pro/Lifetime — GPT-4o-mini) File content (via OpenRouter) openai.com/policies
Creem Payment processing Email, order metadata creem.io/privacy
Cloudflare CDN, DDoS protection, DNS IP address, HTTP headers cloudflare.com/privacypolicy
Google Fonts Onest, Unbounded & JetBrains Mono typefaces IP address (CSS request) policies.google.com/privacy

Important: When you upload a file, its content is sent to OpenRouter for AI translation. Do not upload files containing personal data, passwords, or confidential information not related to UI strings.

3. Legal basis for processing (GDPR)

For users in the European Economic Area, our legal basis is:

  • Contract performance — processing your translation request, delivering your API key after purchase
  • Legitimate interest — IP-based rate limiting to prevent abuse
  • Legal obligation — retaining order records as required by applicable law

4. Your rights

You have the right to:

  • Access — request a copy of data we hold about you
  • Erasure — request deletion of your email and API key from our records
  • Rectification — correct inaccurate data
  • Portability — receive your data in a structured format
  • Object — object to processing based on legitimate interest
  • Withdraw consent — where processing is based on consent

To exercise any right, email [email protected]. We respond within 30 days. Deletion requests are honored within 7 days for email and API keys.

5. Data retention

  • Uploaded files — deleted from our server within 2 hours of the translation job completing
  • Email & order record — retained until you request deletion, or 3 years from last purchase (whichever is sooner), for accounting purposes
  • API keys — retained until you request removal; your key stops working immediately upon deletion
  • IP addresses — never written to disk; lost on server restart

6. Security

We use HTTPS everywhere (TLS 1.2+, enforced by Cloudflare). Data files on our server are permission-restricted. We do not store payment card data — Creem handles all payment processing under PCI-DSS compliance.

7. Children

KAERIS i18n is not directed at children under 13 (under 16 in the EU). We do not knowingly collect personal data from children. If you believe a child has submitted data, contact us and we will delete it promptly.

8. International transfers

Your file content may be processed by OpenRouter/DeepSeek/OpenAI servers located in the United States. These transfers are covered by standard contractual clauses or the providers' own adequacy frameworks. By using the service you acknowledge this transfer.

9. California (CCPA)

We do not sell personal information. We do not share personal information for cross-context behavioral advertising. California residents have the right to know, delete, and opt out of sale — contact us at [email protected].

10. Changes to this policy

We may update this policy. When we do, we update the "Last updated" date at the top. Continued use after changes constitutes acceptance. Material changes will be announced on kaeris.dev.

11. Contact

Email: [email protected]
Website: kaeris.dev
Country: Ukraine