Privacy Policy

1. Who we are

meslzy.com and its tool subdomains (the "Platform") are operated by Mohammed Albalawi, an independent developer based in Saudi Arabia. For anything privacy-related, write to [email protected].

2. What we collect

Account data: your email, username, and password (stored as a secure hash — never in plain text).

Tool data: the content you submit to a tool (text, audio, files), the jobs you run, and the outputs generated for you — kept with your account so you can revisit them.

Billing data: payments are processed by Paddle.com as merchant of record. We receive transaction and credit-balance information, never your card details.

3. What we don't collect

No third-party analytics, no advertising trackers, no cross-site tracking, no precise location, no contact lists — and your data is never sold.

4. How we use your data

To run the tools you ask for, manage your account and credits, keep the Platform secure, and meet legal obligations. Nothing else.

5. AI processing

Content you submit to a tool is sent to third-party AI providers (large language model and speech-to-text APIs) solely to process your request and return the result.

We never use your content to train AI models.

6. Cookies

The Platform uses essential cookies only: a session cookie to keep you signed in, a color-scheme preference, and a language preference. No advertising or analytics cookies.

7. Third-party processors

Paddle.com handles checkout, taxes, and payment processing. Third-party AI providers process tool requests (generation and transcription). Hosting infrastructure runs the Platform's servers.

8. Data retention

Account data is kept until you delete your account. Tool jobs and outputs are kept until you delete them or your account. Server logs are kept for a short period (around 30 days) for security and debugging.

9. Your rights

You can ask to access, correct, export, or delete your data at any time by emailing [email protected] — we respond within 30 days.

If you're in the EEA or UK, you have the GDPR rights of access, rectification, erasure, restriction, portability, and objection, plus the right to complain to your supervisory authority. California residents: we do not sell personal information.

10. Security

All traffic is encrypted in transit (HTTPS), passwords are hashed, and access to infrastructure is limited to the operator. If a breach affects your data, you'll be notified.

11. Children

The Platform isn't directed at children under 13 (under 16 in the EEA), and we don't knowingly collect their data. If a child has used the Platform, contact [email protected] and the data will be deleted.

12. International transfers

The Platform's servers and providers may be located outside your country. Where the law requires it, appropriate safeguards apply to those transfers.

13. Changes and contact

Updates to this policy are posted here with a new "Last updated" date. Questions or requests: [email protected].