Privacy Policy

1. Information We Collect

We collect the following types of information:

Account Information

When you create an account, we collect your email address, name, and a securely hashed version of your password. If you sign in with Google or Facebook, we receive your name and email address from those services.

Usage Data

We automatically collect certain information when you use the Service, including your IP address, browser type and version, pages visited, time spent on pages, and the tools you use. This data is collected through privacy-respecting analytics (see Section 5).

Payment Data

Payments are processed by Stripe. We never receive or store your full credit card number. Stripe provides us with limited information such as the last four digits of your card, card type, and billing address to help prevent fraud.

2. File Handling & Retention

Files uploaded for server-side processing are automatically deleted within 1 hour of processing completion. We do not retain copies of your files beyond this period.

Where possible, file processing occurs entirely within your browser — your files never leave your device.

We never use your files to train AI models, for advertising, or for any purpose other than providing the requested PDF processing service.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service
• Process your transactions and manage your subscription
• Send you transactional communications (account confirmation, billing receipts, security alerts)
• Monitor and analyze usage trends to improve user experience
• Detect, prevent, and address security issues and abuse
• Comply with legal obligations

We do not sell your personal information. We do not use your data for targeted advertising.

4. Third-Party Services

We use the following third-party services to operate NeatPDF:

• Stripe — Payment processing. Stripe's privacy policy applies to payment data they collect.
• Amazon Web Services (AWS) — Cloud hosting and infrastructure. Files processed server-side are handled within AWS infrastructure.
• Plausible Analytics — Privacy-friendly website analytics for landing pages. No cookies, no personal data collection. Fully GDPR compliant.
• PostHog — Product analytics for the application, running in cookieless mode. Used to understand feature usage and improve the product.

We do not share your personal information with third parties for their marketing purposes.

5. Cookies

NeatPDF uses minimal cookies:

• Essential cookies: Session management and user preferences (e.g., theme, locale). These are necessary for the Service to function.
• Plausible Analytics: Does not use cookies. No cookie banner is needed for Plausible.
• PostHog: Runs in cookieless mode — no tracking cookies are set.

Because we only use essential cookies and our analytics tools are cookieless, we do not display a cookie consent banner.

6. Data Security

We take reasonable measures to protect your information, including:

• All data transmitted between your browser and our servers is encrypted using TLS (HTTPS)
• Passwords are hashed using industry-standard algorithms — we never store plain-text passwords
• Files are automatically deleted after processing
• Access to production systems is restricted and logged

While we strive to protect your information, no method of transmission over the internet or method of electronic storage is 100% secure. We cannot guarantee absolute security.

7. Your Rights (GDPR/CCPA)

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate personal data
• Deletion: Request deletion of your personal data
• Export: Request your data in a portable format
• Object: Object to processing of your personal data
• Withdraw consent: Where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, please contact us at privacy@neatpdf.com. We will respond within 30 days.

California residents: Under the CCPA, you have the right to know what personal information we collect, request its deletion, and opt out of its sale. We do not sell personal information.

8. Children's Privacy

The Service is not directed to children under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete that information promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@neatpdf.com.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States, where our servers are located.

For transfers from the European Economic Area (EEA), we rely on standard contractual clauses approved by the European Commission to ensure adequate protection of your data.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by posting the updated policy on this page and updating the "Last updated" date.

We encourage you to review this Privacy Policy periodically. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.

11. Contact

If you have questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@neatpdf.com