NetoHebrew™
Back

Privacy Policy

NetoHebrew™ · Last updated: July 5, 2026

1. Who We Are

NetoHebrew™ is a personal, non-commercial translation tool developed by Igor F. as an independent project. It is not a registered business or commercial service. It is provided free of charge for personal and professional use. This Privacy Policy explains what data is collected when you use this service and how it is handled.

2. What Data We Collect

When you use this service, the following technical data is collected automatically:

  • IP address (used for abuse prevention and rate limiting)
  • Country (derived from IP via hosting infrastructure)
  • Browser type / User Agent
  • Translation metadata: language pair, domain, character count, token count, response time, AI provider, translation engine (AI or Machine translate)
  • Event timestamps
  • Shared Translation Links — When you generate a shareable link for a translation, the encrypted translation text is temporarily stored on our servers. This data is strictly retained for 24 hours only, after which it is permanently and automatically deleted.

Regarding your translation text:

  • Guest users — your translation text is not stored by NetoHebrew™. It is sent directly to your chosen AI provider (Anthropic, OpenAI, or Google) and not retained on our servers.
  • Signed-in users using AI Translation — translation history is not saved by default. You can enable it by checking the "Save to history" checkbox before translating. Saved history is encrypted at rest using AES-256. You can delete individual entries or clear your entire history at any time.
  • Machine translate (Google Translate) — when using this free engine, including instant translation while typing, your text is sent to Google's public translation service through NetoHebrew™. NetoHebrew™ does not store or log the text content of Machine translate requests. Basic usage metadata is logged for analytics and abuse prevention.

Regarding file uploads and OCR:

  • When you upload an image or scanned PDF for text recognition (OCR), the file content is converted locally in your browser and sent directly to your chosen AI provider for processing.
  • NetoHebrew™ does not store, retain, or log the contents of uploaded files on its servers.
  • Only signed-in users with a valid API key can use the OCR feature.

3. Why We Collect This Data

The collected technical data is used exclusively for:

  • Abuse prevention, rate limiting, and security monitoring
  • Verifying that users have accepted the Terms of Use
  • Internal analytics to improve the service

The legal basis for this processing is Legitimate Interest — specifically, protecting the service from misuse and maintaining a record of user consent. Under GDPR this corresponds to Art. 6(1)(f). Under Israeli law this is governed by the Privacy Protection Law (חוק הגנת הפרטיות, 1981).

4. Your API Keys

The free Machine translate engine (Google Translate) requires no API key — no key is stored or transmitted in that mode.

For AI Translation, your API keys (Anthropic, OpenAI, Google Gemini) are never transmitted to or stored on NetoHebrew™ servers. They are sent directly to the official endpoints of the respective AI provider when a translation or OCR request is made.

  • Signed-in users — saving the key is optional (via the "Save" button). If saved, it's stored in localStorage and persists across browser sessions.
  • Guest users — the key is not saved anywhere. It exists only in the page's memory for as long as the tab stays open, and is gone on refresh, tab close, or navigation.

You can remove a saved API key at any time from the interface. Browser-based storage of any kind can potentially be read by malicious browser extensions, malware, or anyone with access to a shared/unlocked device. Do not use this tool on a device you don't trust, and remove your key when finished on a shared computer.

5. Encryption and Data Security

NetoHebrew™ takes the security of your data seriously. The following measures are in place:

  • Translation history — encrypted using AES-256 before being written to the database. Decrypted only upon an authenticated request from the account owner.
  • API keys — stored only in your browser, never on our servers.
  • All connections — the service operates exclusively over HTTPS.
  • Session timeout — signed-in users are automatically signed out after 25 minutes of inactivity.
  • Content Security Policy — the site restricts which domains scripts can load from, reducing the risk of a browser-based attack exfiltrating locally stored data.

6. Data Retention

Technical logs (IP, country, user agent, timestamps) are retained for up to 6 months, after which they are deleted. Translation history saved by signed-in users is retained until the user deletes it. Data associated with Shared Translation Links is retained for exactly 24 hours before automatic deletion. All data is stored in a secure database managed by Supabase (supabase.com), hosted on infrastructure compliant with EU data protection standards.

7. Third-Party Services

  • Vercel — hosting and CDN. May process request metadata. See Vercel Privacy Policy.
  • Supabase — database and authentication infrastructure. See Supabase Privacy Policy.
  • Google Sign-In — used for account authentication via Supabase OAuth. When you sign in with Google, your name and email address are received and associated with your NetoHebrew™ account. See Google Privacy Policy.
  • Anthropic / OpenAI / Google Gemini — AI providers for translation and OCR. Your text and uploaded files are sent to them per your choice. Their respective privacy policies apply.
  • Google Translate — used by the free Machine translate engine. When active, your text is sent to Google's public translation service and may be sent as you type. Google's own terms apply. See Google Privacy Policy.

8. Browser Storage

NetoHebrew™ does not use tracking cookies. The following browser storage mechanisms are used solely for functionality:

  • localStorage — stores your language preference, domain preference, disclaimer acceptance, save-to-history preference, onboarding banner state, and (only for signed-in users) your API key. Persists until you clear it manually.
  • sessionStorage — stores the current translation text temporarily within your browser session. Cleared automatically when you close the tab. Guest users' API keys are never written to any browser storage — they exist only in memory.

9. Your Rights (GDPR & Israeli Privacy Law)

This service complies with the Israeli Privacy Protection Law (חוק הגנת הפרטיות, 1981) and, where applicable, the EU General Data Protection Regulation (GDPR). You have the following rights regarding your personal data:

  • Right to access — request a copy of data we hold about you
  • Right to erasure — request deletion of your data
  • Right to correction — request correction of inaccurate data
  • Right to object — object to processing based on legitimate interest

To exercise any of these rights, contact us via our contact form.

10. Limitation of Liability

NetoHebrew™ is provided "as is" without warranties of any kind. Igor F. shall not be liable for any damages arising from the use or inability to use this service, including but not limited to translation errors, data loss, service interruptions, or the unauthorized use or exposure of your API key resulting from browser-based storage. The accuracy of AI-generated and Machine translations is not guaranteed and should be verified by a qualified professional for critical use cases. Igor F. is not responsible for Google Translate, Google's data handling, or any other third-party provider's service, output, availability, or privacy practices. NetoHebrew™ does not review, moderate, or take responsibility for the content of any text, files, or scanned images uploaded or entered by users. Users are solely responsible for ensuring that all submitted content is lawful, properly authorized, and does not infringe any third-party rights. The user is the sole and exclusive party responsible for holding all rights, licenses, and permissions to any content they submit. Igor F. and NetoHebrew™ bear no responsibility or liability whatsoever for the ownership, copyright, or licensing of user-submitted content.

11. Chrome Browser Extension

NetoHebrew™ offers a free Chrome browser extension that enables instant translation of selected text on any webpage.

  • Selected text — the text you select is sent directly to Google Translate for translation. NetoHebrew™ does not store the text content.
  • Target language preference — your preferred translation language is stored in chrome.storage.sync and synced across your devices via your Google account.
  • Anonymous usage ping — after each translation, the extension sends an anonymous ping to NetoHebrew™ servers containing only: target language code and country (derived from IP). No identifying data, text content, or personal information is included.
  • Page access — the extension operates on all pages but does not read, collect, or store the content of pages you visit. It only acts in response to explicit text selection by the user.

12. Changes to This Policy

This Privacy Policy may be updated from time to time. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of the service after changes constitutes acceptance of the updated policy.

© 2026 NetoHebrew™ by Igor F. · Back to Translator