Privacy Policy

01 Who We Are

LiveHi ("we," "us," or "our") develops and operates a real-time AI-powered voice translation application available as an iOS app on the Apple App Store and as a web application at livehi.net/app.

For all privacy-related inquiries, please contact us at: support@livehi.net

02 Information We Collect

2.1 Information You Provide Directly

• Apple Sign-In (iOS & Web): A stable Apple User Identifier, and optionally your name and/or email address (which may be Apple's anonymous relay address). We never receive your Apple ID password.
• Google Sign-In (Web only): Your Google account's unique identifier, display name, email address, and profile picture URL, obtained via Google OAuth 2.0. Google Sign-In is not presented to users accessing from mainland China IP addresses.
• Email Registration (Web only): Your chosen nickname, email address, and a password you create. Your password is immediately hashed using bcrypt before storage — it is never stored in readable form and cannot be retrieved by LiveHi staff.
• Support Communications: Any information you voluntarily provide when contacting us for support (e.g., email content, described issues).

2.2 Information Collected Automatically

• Voice Audio (Real-Time Streaming Only): When translation is active, microphone audio is captured and streamed in real-time to our AI speech recognition service solely to produce text transcriptions. Audio is never recorded, stored, or retained by LiveHi after processing. Audio is discarded the moment the session ends.
• Text Transcripts (Web users only, when saved): For web platform users who save a translation session, the resulting text transcript (not audio) may be stored on our servers to enable session history review and text download. Users can delete saved sessions at any time.
• Usage Data: The duration (in seconds) of active translation sessions, used to calculate credit consumption and enforce billing. Stored as numeric data, not as any audio or content.
• IP Address: Used at the time of login and session start to detect mainland China users (to disable Google services that may be unavailable in China). IP addresses are not stored long-term for tracking purposes.
• Device & Technical Information: App platform (iOS/Web), browser/OS version (web), app version, and anonymous crash reports. This data is collected to diagnose technical issues and is not linked to your personal identity.
• Session Tokens: Short-lived JWT access tokens and cryptographically hashed refresh tokens used for authentication. Access tokens expire after 1 hour. Refresh tokens are stored server-side in hashed form and expire after 30 days of inactivity.

2.3 Information We Do NOT Collect

• Precise GPS or location data
• Contacts, photos, or camera access
• Audio recordings or content after session end
• Browsing history or cross-app/cross-site tracking
• Biometric data of any kind
• Social media activity
• Advertising identifiers (IDFA, GAID)

03 How We Use Your Information

We use the information we collect only for legitimate business purposes necessary to provide and improve the Service:

• Providing translation: Streaming your audio to our AI speech service to generate real-time translations and transcriptions.
• Account management: Creating and maintaining your account, authenticating your identity, and managing your session tokens.
• Session history (web): Storing text transcripts (not audio) of sessions you choose to save, and enabling you to review, download, or delete them.
• Billing & credits: Tracking credit balances, processing subscriptions and purchases, verifying payment receipts, and enforcing plan limits.
• Geographic service adaptation: Detecting mainland China IP addresses to disable unavailable third-party services (Google Sign-In, Google Fonts) and serve alternative loading text.
• Security & fraud prevention: Detecting and preventing unauthorized access, abuse, fraud, and violations of our Acceptable Use Policy.
• Service improvement: Analyzing aggregate, anonymized usage patterns to improve reliability, performance, and features. We do not use your individual session content for this.
• Legal compliance: Responding to lawful government requests, court orders, and complying with applicable regulations.
• Support communications: Responding to your support requests and sending essential transactional notifications.

We do not use your data to serve advertisements, build behavioral or psychographic profiles, train AI or machine learning models on your voice content or transcripts, or share your data with third parties for their own marketing purposes.

04 Third-Party Service Providers

We share minimal data with the following trusted third-party providers solely to operate and deliver the Service. Each provider is contractually required to protect your data and to use it only as directed:

We do not sell, rent, or share your personal information with any third party for advertising, marketing, data brokering, or any purpose other than operating and improving the Service.

05 Data Retention

• Voice Audio: Never retained. Discarded immediately after real-time processing.
• Text Transcripts (web): Retained until you delete the session or your account. You can delete individual sessions from session history.
• Account Data (User IDs, email, nickname): Retained for the lifetime of your account. Deleted within 30 days of a verified account deletion request.
• Password Hash: Retained for the lifetime of the account. Deleted upon account deletion. The original password cannot be recovered from the stored hash.
• Usage Data (credit consumption logs): Retained for 12 months for billing purposes, then aggregated and anonymized.
• Payment Records (receipt tokens, Stripe subscription IDs): Retained for 7 years as required by applicable tax and financial regulations, then securely deleted.
• Refresh Tokens: Expire after 30 days of inactivity and are stored only in cryptographically hashed form.
• IP Address Logs: Not retained beyond the immediate request for China detection purposes. Standard server access logs (if any) are retained for up to 30 days.
• Crash Logs: Retained for 30 days, then automatically deleted.
• Backup Copies: Database backups are retained for 14 days, then automatically purged as part of our automated backup rotation policy.

You may request deletion of your account and all associated personal data at any time by using the in-app "Delete Account" feature or by contacting support@livehi.net. Transaction records required for legal or regulatory compliance may be retained in anonymized or pseudonymized form as required.

06 Data Security

We implement industry-standard technical and organizational measures to protect your information against unauthorized access, loss, alteration, or disclosure:

• Encryption in Transit: All data between your device and our servers uses TLS 1.2+ (enforced by Caddy). All API endpoints are HTTPS-only.
• Encryption at Rest: Database contents are encrypted at rest. AWS SSM Parameter Store is used for secrets management with restricted IAM access.
• Password Security: Passwords are hashed using bcrypt with a per-user salt. Plaintext passwords are never logged, stored, or transmitted after initial receipt.
• Authentication Tokens: JWT access tokens are short-lived (1 hour). Refresh tokens are stored server-side in hashed form only. iOS tokens are stored in the iOS Keychain (Secure Enclave).
• Infrastructure Security: Servers run in AWS Tokyo (ap-northeast-1) with restrictive security groups permitting only necessary inbound traffic. SSH access is restricted to key-authenticated sessions.
• API Key Management: Service credentials are managed in server-side configuration, never exposed to clients. Short-lived session tokens are issued per translation session.
• Database Access: The production database is accessible only from within our private network. No public-facing database ports are exposed.

Despite our efforts, no security system is impenetrable. In the event of a data breach affecting your rights, we will notify affected users and relevant authorities as required by applicable law. If you discover a security vulnerability, please report it responsibly to support@livehi.net with "Security Disclosure" in the subject line before public disclosure.

07 Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal data. To exercise any right, contact us at support@livehi.net. We will respond within 30 days (extendable to 90 days for complex requests).

7.1 Access

You may request a copy of the personal data we hold about you. We will provide it in a readable format within 30 days.

7.2 Correction

For Apple-authenticated accounts, your name and email are managed by Apple. For email-registered accounts, contact us to update your nickname or email address. Password changes require verification of your current credentials.

7.3 Deletion (Right to Be Forgotten)

You may delete your account and all associated personal data through:

• The "Delete Account" feature in the app under My Account settings; or
• Emailing support@livehi.net with "Account Deletion Request" in the subject line.

Deletion is permanent and irreversible. We process deletion within 30 days. Payment transaction records required for tax compliance may be retained in anonymized form for up to 7 years.

7.4 Data Portability

You may request an export of your personal data (account information, credit history, saved transcripts) in JSON format by contacting support@livehi.net.

7.5 Opt-Out of Communications

We send only essential transactional communications (e.g., account security alerts, subscription receipts). We do not send marketing emails. You cannot opt out of essential transactional messages while your account is active.

7.6 Session Transcript Deletion

Web users can delete individual saved session transcripts from within the Session History screen at any time, without deleting the entire account.

7.7 Microphone Permission

The app requires microphone access only during active translation. You can revoke microphone permission at any time (iOS: Settings → Privacy → Microphone; Web: browser site permissions). Revoking microphone access disables the core translation feature but does not affect your account or other features.

7.8 Google Sign-In Revocation

To revoke LiveHi's access to your Google account, visit your Google Account permissions page and remove LiveHi. Note that revoking Google access does not delete your LiveHi account; it only removes the ability to sign in via Google.

7.9 Apple Sign-In Revocation

To revoke LiveHi's access to your Apple ID: Settings → [Your Name] → Sign-in & Security → Apps & Websites using Apple ID → LiveHi → Stop Using Apple ID.

08 Children's Privacy (COPPA)

If you are under 13 years of age, please do not use LiveHi or provide any personal information. If we discover that we have inadvertently collected personal information from a child under 13, we will delete such information promptly.

Users between 13 and 17 must have parental or guardian consent. If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact support@livehi.net and we will remove that information.

This policy applies in compliance with the Children's Online Privacy Protection Act (COPPA, USA), GDPR-K (EU), and other applicable children's privacy legislation.

09 International Data Transfers

LiveHi operates its primary infrastructure in the AWS Tokyo region (ap-northeast-1), Japan. If you access the Service from outside Japan, your data will be transferred to and processed in Japan.

Data is also transmitted to our third-party processors (Google, Stripe, Apple, and our AI speech provider) who may process it in the United States or other countries. We rely on appropriate safeguards for such transfers, including Standard Contractual Clauses (SCCs) for EU/EEA data subjects and the processors' own compliance frameworks.

For EU/EEA/UK/Swiss users: transfers to the United States are conducted under appropriate legal safeguards as required by GDPR Chapter V. You may request details of such safeguards by contacting us.

10 California Privacy Rights (CCPA / CPRA)

California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

• Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected in the past 12 months.
• Right to Delete: Request deletion of your personal information, subject to certain legal exceptions.
• Right to Correct: Request correction of inaccurate personal information we hold about you.
• Right to Opt-Out of Sale / Sharing: We do not sell or share personal information for cross-context behavioral advertising. No opt-out action is required.
• Right to Limit Use of Sensitive Personal Information: We do not use sensitive personal information for purposes beyond providing the Service.
• Right to Non-Discrimination: We will not discriminate against you for exercising any CCPA/CPRA rights.

To exercise these rights, contact support@livehi.net with "California Privacy Request" in the subject line. We will respond within 45 days as required by law, with a possible 45-day extension where permitted.

Categories of Personal Information Collected (CCPA)

11 European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, GDPR and equivalent laws give you additional rights and require us to be transparent about our legal basis for processing:

Legal Basis for Processing

Your GDPR Rights

• Right of Access (Art. 15): Request a copy of your personal data we hold.
• Right to Rectification (Art. 16): Request correction of inaccurate data.
• Right to Erasure (Art. 17): Request deletion ("right to be forgotten"), subject to legal retention requirements.
• Right to Restrict Processing (Art. 18): Request we limit processing in certain circumstances.
• Right to Data Portability (Art. 20): Request your data in a structured, machine-readable format (JSON).
• Right to Object (Art. 21): Object to processing based on legitimate interests.
• Right to Withdraw Consent: Where processing is based on consent (e.g., saving session transcripts), you can withdraw consent at any time by deleting those sessions.
• Right to Lodge a Complaint: You have the right to lodge a complaint with your national data protection supervisory authority.

Contact us at support@livehi.net to exercise your rights. We respond within 30 days (extendable to 3 months for complex requests).

12 Authentication Methods and Identity

12.1 Sign in with Apple

Apple generates a unique, stable user identifier specific to your Apple ID and our app. We do not receive your Apple ID password. You may choose to share or hide your real email address; if hidden, Apple provides a private relay address. Revoking Apple access via your Apple ID settings does not automatically delete your LiveHi account — please separately request account deletion if desired.

12.2 Sign in with Google

Google OAuth provides us with your Google account's unique identifier, display name, email address, and profile picture URL. This information is used only for account creation and identification. We do not receive your Google password. We use the Google Identity Services (GIS) JavaScript library, which is loaded conditionally and not presented to mainland China users. You can manage LiveHi's Google permissions at myaccount.google.com/permissions.

12.3 Email and Password

For direct email registration, we store your email address, display nickname, and a bcrypt hash of your password. We do not store your password in any retrievable form. If you forget your password, you must contact us at support@livehi.net to initiate a password reset. We will never ask for your password via email.

12.4 Cross-Provider Identity

Each authentication method creates a separate account. We do not automatically link accounts registered under different providers even if the email address matches. If you wish to merge accounts or transfer credits between accounts, please contact support.

13 Payments & Billing Data

13.1 iOS (Apple In-App Purchase)

iOS purchases are processed entirely by Apple through StoreKit. LiveHi receives only a non-sensitive receipt token to verify your purchase on our servers. We never receive or store your credit card number, Apple Pay credentials, or any financial payment instrument details. Subscription management and refunds are handled through your Apple ID settings.

13.2 Web (Stripe)

Web purchases are processed by Stripe, Inc. LiveHi receives and stores only:

• The Stripe Customer ID associated with your account;
• The Stripe Subscription ID (for subscriptions);
• The Stripe Payment Intent ID (for one-time purchases);
• The plan type, amount, currency, and timestamp of each transaction.

LiveHi never receives, processes, or stores your full credit/debit card number, CVV/CVC, expiry date, or bank account details. Stripe handles all payment card data as a PCI DSS Level 1 certified service provider. Your Stripe billing management is accessible through the LiveHi web app's Plan & Payment section.

13.3 Credit Ledger

We maintain a transaction ledger of all credit additions and deductions for your account (e.g., plan activation, credit consumption, Hour Pack purchase). This ledger is used for billing integrity, dispute resolution, and your own reference.

14 Changes to This Policy

We may update this Privacy Policy from time to time as our services evolve or as required by law. When we make material changes, we will:

• Update the "Last Updated" date at the top of this page;
• Post an in-app notice for significant changes affecting your rights or data practices;
• Send email notification if you have a registered email address, for changes that materially affect how we use your personal data.

Your continued use of LiveHi after changes are posted constitutes your acceptance of the updated Privacy Policy. If you do not accept the changes, you should stop using the Service and delete your account. The most current version of this policy is always available at https://livehi.net/privacy.

15 Contact Us

For questions, concerns, data requests, or privacy-related complaints, please contact us:

We are committed to working with you to resolve any privacy concerns. If you are an EU/EEA resident and are not satisfied with our response, you have the right to lodge a complaint with your national data protection supervisory authority.