Privacy Policy
Last updated: April 2, 2026
Information We Collect
When you sign in with Google OAuth, we collect the following information from your Google account:
- Email address โ Used as your unique identifier and for account recovery.
- Display name โ Used to personalize your profile.
- Profile picture URL โ Displayed as your avatar.
We do not request access to your Google Drive, contacts, calendar, or any other Google services.
Data Storage & Security
Your account data is stored in a distributed rqlite database cluster with the following security measures:
- Data is encrypted at rest and in transit (TLS 1.3).
- Database nodes are deployed in isolated networks with restricted access.
- Passwords (for email-based accounts) are hashed using bcrypt with a cost factor of 12.
- We perform regular automated backups with 30-day retention.
Local File Processing
All file processing happens locally in your browser using WebAssembly (WASM).
- PDF, image, video, and file conversion tools use WASM to process files on your device.
- Your files are never uploaded to our servers for processing.
- We have zero access to the content of any file you process.
- AI image processing models run on your device's GPU via ONNX Runtime Web.
Third-Party Services
- Google OAuth โ For authentication.
- Stripe โ For payment processing. We do not store your credit card information.
Your Rights
You have the right to:
- Access โ Request a copy of all personal data we hold about you.
- Correction โ Update your profile information at any time from your account page.
- Deletion โ Request complete deletion of your account and associated data.
- Portability โ Export your data in a machine-readable format.
To exercise any of these rights, contact us at simanstarshi@gmail.com.
Changes to This Policy
We may update this Privacy Policy from time to time. When we make significant changes, we will notify you via email or a prominent notice on our platform.