Privacy Policy

Introduction

At PDF Toolkit Online ("we," "our," or "us"), accessible at pdftoolkitonline.com, we take your privacy extremely seriously. This Privacy Policy explains how we collect, use, and protect information when you use our website and tools.

We have designed our entire platform around the principle of minimal data collection. Unlike most online PDF tools that require you to upload files to their servers, our tools process everything locally in your browser. This architectural decision reflects our core belief: your documents are your business, not ours.

1. Client-Side Processing: How It Works

When you use our PDF tools (merge, split, compress, convert, etc.), the following happens:

1. You select files from your device using your browser's file picker
2. The files are loaded into your browser's memory (RAM)
3. Our JavaScript code processes the files entirely within your browser
4. The output file is generated and downloaded directly to your device
5. When you close the tab or refresh the page, all data is cleared from memory

At no point in this process do your files travel over the internet or reach our servers. We use technologies like PDF-lib, Canvas API, and other browser-native capabilities to perform all operations locally.

This means we physically cannot:

• See the contents of your documents
• Store copies of your files
• Share your documents with third parties
• Use your documents for training AI or any other purpose

2. Information We Do Collect

While we do not collect your files, we do collect limited information to operate and improve our website:

2.1 Analytics Data

We use Google Analytics and Firebase Analytics to understand how visitors use our website. This includes:

• Pages visited and time spent on pages
• General geographic location (country/city level, not precise location)
• Device type, browser, and operating system
• Referral sources (how you found our website)
• Which tools are used most frequently

This data is aggregated and anonymized. We use it to understand which tools are popular, identify technical issues, and improve user experience.

2.2 Server Logs

Like most websites, our hosting provider (Firebase/Google Cloud) automatically logs certain information:

• IP addresses
• Browser type and version
• Pages requested
• Date and time of visits

These logs are used for security, debugging, and performance monitoring. They are not used to personally identify you.

2.3 Contact Information

If you contact us via email or our contact form, we collect:

• Your email address
• Your name (if provided)
• The content of your message

This information is used solely to respond to your inquiry and is not shared with third parties.

3. Cookies and Tracking Technologies

We use cookies and similar technologies for the following purposes:

3.1 Essential Cookies

These cookies are necessary for the website to function properly. They do not collect personal information.

3.2 Analytics Cookies

We use Google Analytics cookies to understand website usage. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

3.3 Advertising Cookies

We display advertisements through Google AdSense. Google uses cookies to serve ads based on your prior visits to our website and other websites. You can opt out of personalized advertising by visiting Google Ads Settings.

4. Third-Party Services

We use the following third-party services:

• Google AdSense: For displaying advertisements. Google Privacy Policy
• Google Analytics / Firebase Analytics: For website analytics. Firebase Privacy Policy
• Firebase Hosting: For hosting our website.

These services have their own privacy policies governing their use of data. We encourage you to review them.

5. Data Security

We implement appropriate security measures to protect the limited data we do collect:

• All connections to our website use HTTPS encryption (TLS 1.3)
• We use Firebase/Google Cloud infrastructure with enterprise-grade security
• We regularly update our dependencies to patch security vulnerabilities
• We follow secure coding practices to prevent common vulnerabilities

However, the best security feature is that we do not collect sensitive data in the first place. Your documents are processed locally, so there is no risk of a data breach exposing them.

6. Your Rights

6.1 GDPR Rights (European Users)

If you are in the European Economic Area (EEA), you have the following rights:

• Right to Access: Request information about what data we hold about you
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data
• Right to Portability: Request a copy of your data in a portable format
• Right to Object: Object to processing of your data

Note: Since we do not store your documents, there is generally no document-related data to access, correct, or delete.

6.2 CCPA Rights (California Users)

California residents have the right to:

• Know what personal information is collected
• Know whether personal information is sold or disclosed and to whom
• Say no to the sale of personal information
• Access their personal information
• Request deletion of their personal information

We do not sell personal information.

7. Children's Privacy

Our website is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us immediately.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes.