Politique de confidentialité

We collect the minimum we need to run a French-learning app for you. We don't sell your data. Some text is processed through OpenAI to power the tutor and translations. You can export everything or delete it all from Settings.

Gazou is a personal project run by Simon Giles. Contact:hello@gazou.app. If you need a postal address for GDPR purposes, email and we'll send one.

• Account. Name, email, password hash (managed by Better Auth on Neon Postgres). If you sign in with Google we receive your name, email, and profile picture from Google.
• Profile.What you tell us during onboarding — your role (parent, grandparent, etc.), what you'd like to be called, the French speaker(s) in your life, your French level, your daily goal, your voice preference, and the children you've added (name + date).
• Learning data. Module progress, saved phrases, spaced-repetition review history, grammar topic progress, game scores, your activity timer, your streak, and anything you type into the tutor.
• Audio.We cache generated TTS files so you don't pay for the same generation twice. Mic input during pronunciation practice and tutor voice mode is processed in your browser only — we don't send the raw audio to our servers.
• Cost ledger. One row per AI call we make on your behalf, with token counts and estimated cost. Used for capacity management, not profiling.
• Diagnostic data. If you opt in via the cookie banner, we collect anonymous analytics (page views, feature usage). Error reports go to Sentry without user identifiers attached.

• Payment information (no paid tier yet).
• Microphone recordings (browser-only processing).
• Your contacts, calendar, or anything off-app.
• Data about your children beyond what you explicitly enter.

We use the following third parties to run the service. Each is bound by their own privacy policy.

• Vercel — application hosting.
• Neon — Postgres database for auth.
• Convex — real-time database + file storage for everything else (content, your progress, audio cache).
• OpenAI— text generation (tutor, translations, grammar explanations) and text-to-speech. We send the specific snippet of text needed for the call; OpenAI's API policy does not train on API requests.
• Google — optional sign-in only.
• PostHog — analytics, only if you opted in.
• Sentry — error reporting (no user identifiers attached).
• Resend — transactional email (verification, password reset, partner invites).

We process your data on these grounds: contract (to deliver the service you signed up for), legitimate interest (security, fraud prevention, cost control), and consent (analytics + marketing emails, if you opt in).

Convex regions follow Vercel; for most users this is the EU. Neon is provisioned in the EU. OpenAI processes requests in the US. If you're in the EEA or UK, transfers to the US rely on Standard Contractual Clauses.

• Account data: for as long as your account is active.
• Audio cache + cost ledger: indefinitely (operational metadata).
• Tutor conversations: until you delete them or your account.
• Analytics: rolling 12 months in PostHog (never tied to your account once you log out).
• Email logs: 30 days at the email provider.

You can see, correct, export, or delete your data — all from Settings → Account. Specifically:

• Export downloads a JSON file with every row we hold about you.
• Delete permanently removes your account and all linked rows.
• Object to specific processing (e.g. analytics) — toggle via the cookie banner or email us.
• If you're in the EEA/UK and unhappy, you can complain to your local data protection authority.

Gazou is designed for adults teaching French to children in their lives — not for children to use directly. We don't knowingly collect data from anyone under 16. If you're a parent and your child has somehow registered, email hello@gazou.app and we'll delete the account immediately.

Information you enter about children (their name, due date) is part of your own profile — never shared with third parties for targeting and never used to address anyone under 16 directly.

All connections use TLS. Passwords are hashed with bcrypt by Better Auth. We apply Content-Security-Policy + HSTS + frame denial across the app. We don't store payment data. Confirmed incidents will be reported to affected users within 72 hours.

We'll bump the "last updated" date and post a note in the app if anything changes materially. Material history lives in the public GitHub repo for this page.