Privacy Policy

Last updated: July 7, 2026

PLTK ("we," "our," or "us") operates the PLTK - Uzbek Dictionary mobile application (the "App"), available on iOS and Android under the bundle identifier com.pltk.uzbekdictionary. This Privacy Policy describes how we collect, use, and protect your information when you use the App.

By using the App, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the App.


1. Information We Collect

PLTK works anonymously. You do not need to create an account or sign in to use the App's dictionary and translation features.

1.1 Anonymous Identifiers

When you first open the App, we create an anonymous user account using Supabase anonymous authentication. This generates a random UUID (universally unique identifier) that, on its own, is not linked to your real identity. Unless you choose to sign in (see 1.2), we do not collect your name, email address, phone number, or physical address.

1.2 Account Sign-In (Optional)

Signing in is optional and only needed if you want to link your purchases and token balance across devices. If you choose to sign in with Apple or Google, we collect your name and email address solely to link your data to that identity and to keep your purchases and token balance attached to your account. We do not use your name or email for advertising, profiling, or marketing, and we never sell it.

1.3 Diagnostic and Usage Data

We collect anonymous diagnostic and usage data to keep the App fast and reliable, including:

  • Translation mode used (text, voice, or camera)
  • Input and output unit counts (e.g., number of words or characters translated)
  • Token balance (the number of translation tokens remaining in your account)
  • Device ID(a per-device identifier used to prevent abuse. On iOS it is a random UUID stored on your device; on Android it is derived on your device from your Android ID using a one-way hash. We store this identifier on our servers to enforce one-time offers — for example, to prevent the same device from repeatedly claiming a new-user welcome bonus. The Android ID itself is never transmitted.)
  • Device and app details (device model, operating system version, app version, and your language and timezone settings)
  • Crash reports (diagnostic information when the App crashes or encounters an error)
  • Feature usage (which features are used, to help us prioritize improvements)

This data is used solely to operate the service (e.g., tracking token usage), diagnose problems, and improve the App experience. We do not use it for advertising or profiling, and we do not track you across other apps or websites.

1.4 Purchase Information

When you purchase a subscription (Yearly Dictionary or a monthly Translator plan) through in-app purchases, the transaction is processed by Apple (App Store) or Google (Play Store) via our payment partner RevenueCat. We receive a transaction identifier, the product purchased, and renewal status in order to credit tokens and entitle features on your account. We do not receive or store your payment card details.


2. Information We Do Not Collect or Do

We want to be explicit about our limits:

  • No selling of data: We never sell your data to anyone
  • No advertising: We do not show ads, and we do not track you across other apps or websites
  • Personal identity: Unless you choose to sign in with Apple or Google (which provides your name and email for account linking only), we do not collect your name, email, phone number, or physical address. We never collect your phone number or physical address in any case
  • Location data: We do not access GPS, IP-based geolocation, or any location services
  • Contacts: We do not access your contact list
  • Translation text: The text you translate is sent to our translation service for processing and is not stored on our servers
  • Photos or media: The camera is used only for real-time OCR (optical character recognition) text extraction. Images are processed in memory and sent to our translation service for text extraction only. We do not store, save, or retain any photographs or camera images on our servers
  • Microphone recordings: Audio captured for voice translation is streamed in real time and is not stored on our servers
  • Hardware identifiers: We do not collect your IMEI, MAC address, advertising ID, or similar hardware identifiers. On Android we derive a one-way hash from the Android ID solely to prevent abuse (see Section 1.3); we do not store or transmit the Android ID itself.

3. How We Use Your Information

The limited data we collect is used to:

  • Provide and operate translation services
  • Track and manage your token balance
  • Process and validate in-app purchases
  • Improve the quality and reliability of the App
  • Prevent abuse and enforce usage limits

4. Third-Party Services

The App uses the following third-party services. Each has its own privacy policy governing data handling:

4.1 Supabase

We use Supabase for anonymous authentication, token balance management, and usage analytics. Data is stored in Supabase's cloud-hosted PostgreSQL database with row-level security.

4.2 OpenAI

We use OpenAI's API for text translation, voice translation, and OCR processing. Text and audio data is sent to OpenAI for processing and is subject to OpenAI's data usage policies. We use ephemeral session tokens and do not expose API keys to the client.

4.3 RevenueCat

We use RevenueCat for in-app purchase processing and receipt validation. RevenueCat may collect device-level identifiers for purchase verification.


5. Data Storage and Security

Your data is stored securely in Supabase's cloud-hosted PostgreSQL database. We implement the following security measures:

  • Row-level security (RLS) to isolate user data
  • Encrypted local database (SQLCipher) for offline dictionary data
  • Certificate pinning for API connections
  • Ephemeral session tokens for third-party API access
  • CORS origin whitelisting on backend services

6. Data Retention

Anonymous usage data and token balance information are retained as long as your anonymous account exists. Because accounts are anonymous, we cannot associate stored data with any individual. If you uninstall the App, the locally stored device identifier is removed. On Android, because it is derived from your device, reinstalling may produce the same identifier — this is what lets us keep preventing repeated claims of one-time offers. Server-side anonymous records may be periodically purged.


7. Children's Privacy

The App is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us at support@pltk.app and we will take steps to delete such information.


8. Your Rights

Because we use anonymous authentication and do not collect personally identifiable information, traditional data subject rights (access, correction, deletion) are limited. However:

  • You can delete the App at any time to remove all local data from your device
  • You can contact us to request deletion of server-side data associated with your anonymous ID

9. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically for any changes. Continued use of the App after changes constitutes acceptance of the updated policy.


10. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us: