Privacy Policy

1. Introduction

PDFCreate.pro ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

2.1 Information You Provide

• Account information (name, email address, password)
• Profile information (phone number, company name)
• Payment information (processed securely through Stripe)
• Content you create (documents, PDF files, conversations)
• Support communications

2.2 Information from Third-Party Authentication

When you sign in using Google OAuth, we collect:

• Your name
• Your email address
• Your profile picture URL (optional)
• A unique identifier from Google

We do NOT access, request, or store:

• Any data from your Google Drive
• Your Gmail messages or contacts
• Your Google Calendar or other Google services
• Any other Google account data beyond basic profile information

PDFCreate.pro's use and transfer of information received from Google APIs adheres to Google API Services User Data Policy, including the Limited Use requirements.

2.3 Automatically Collected Information

• Usage data (features used, time spent, actions taken)
• Device information (browser type, operating system)
• Log data (IP address, access times)
• Cookies and similar technologies

3. How We Use Your Information

We use your information to:

• Provide and maintain our service
• Create and manage your account
• Authenticate your identity when you sign in
• Process your transactions and manage your subscription
• Send you technical notices and support messages
• Respond to your comments and questions
• Analyze usage patterns to improve our service
• Detect and prevent fraud or abuse
• Comply with legal obligations

3.1 Limited Use of Google User Data

Information received from Google APIs is used solely for:

• Authenticating your identity
• Creating and maintaining your PDFCreate.pro account
• Displaying your name and profile picture in the application

We do NOT use Google user data for:

• Advertising or marketing purposes
• Building user profiles for any purpose other than authentication
• Transferring to third parties (except as necessary for authentication)
• Creditworthiness or lending purposes

4. Data Sharing and Disclosure

We may share your information with:

• Service Providers: Payment processors (Stripe), hosting providers, analytics services, AI providers (Anthropic)
• Authentication Providers: Google (only for OAuth authentication)
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

Information received from Google APIs is never shared with third parties except:

• As necessary to provide authentication services
• When required by law
• With your explicit consent

5. Your Rights and Choices

5.1 Managing Google OAuth Access

You can revoke PDFCreate.pro's access to your Google account at any time by:

• Visiting your Google Account Permissions page
• Selecting PDFCreate.pro from the list of connected apps
• Clicking "Remove Access"

Note: Revoking access will not delete your PDFCreate.pro account or data. To delete your account, use the account deletion feature in your profile settings.

5.2 GDPR Rights (European Users)

If you are in the European Economic Area, you have the following rights:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data
• Right to Restriction: Request limitation of processing
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing of your data
• Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, visit your account settings or contact us at [email protected]

6. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this privacy policy. When you delete your account, we will permanently delete your data within 30 days, except where we are required to retain it for legal obligations.

7. Security

We implement appropriate technical and organizational measures to protect your personal data, including encryption, access controls, and regular security assessments. However, no method of transmission over the internet is 100% secure.

8. Cookies

We use cookies and similar technologies to provide and improve our service. You can control cookies through your browser settings and our cookie consent banner.

9. Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect personal information from children under 13.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers.

11. Third-Party Services and APIs

11.1 Google OAuth

When you use Google Sign-In, your authentication is handled by Google's secure OAuth 2.0 service. We only receive the minimal information necessary for authentication (name, email, profile picture). Our use of Google APIs complies with Google's API Services User Data Policy.

11.2 Other Third-Party Services

• Stripe: Payment processing (PCI-DSS compliant)
• Anthropic Claude API: AI-powered content generation
• Hosting Services: Secure cloud infrastructure

These services have their own privacy policies and we encourage you to review them.

12. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by email or through our service. Continued use of the service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this privacy policy or our data practices, please contact us:

• Email: [email protected]
• Data Protection Officer: [email protected]
• Address: [Your Company Address]