Privacy Policy

1. Introduction

Welcome to way2pdf ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your documents. This Privacy Policy explains how we handle information when you use our PDF conversion, merging, splitting, and OCR services.

By using way2pdf, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use our service.

2. Local Processing & Data Storage

2.1 Local Processing Architecture

way2pdf processes all documents locally on your server or device. This means:

• No Cloud Uploads: Files are never uploaded to external servers or cloud storage services
• No Third-Party Services: We do not use external APIs or third-party processing services for file conversion
• Server-Side Processing: All conversion, merging, splitting, and OCR operations occur on the server where way2pdf is installed
• No Data Transmission: Your files never leave your network environment

2.2 Temporary File Storage

Files uploaded to way2pdf are stored temporarily in local directories:

• Upload Directory: Files are stored in a temporary upload directory on the server
• Output Directory: Converted files are stored temporarily in an output directory
• Automatic Deletion: All files are automatically deleted after the session expires (default: 1 hour of inactivity)
• Session-Based Cleanup: Files are associated with unique session IDs and removed when sessions expire

3. Information We Collect

3.1 File Information

When you upload files, we temporarily collect:

• File name and extension
• File size
• File type (MIME type)
• File content (for processing purposes only)

Note: This information is used solely for conversion purposes and is deleted automatically after processing.

3.2 Usage Analytics (Optional)

If analytics are enabled on your installation, we may collect:

• Page visits and navigation patterns
• Conversion statistics (file type, format conversions)
• Geographic location (country-level, based on IP address)
• IP addresses (for analytics and security purposes)
• Browser and device information
• Session timestamps

Note: Analytics are stored locally in a SQLite database and are not shared with third parties. IP addresses may be used for geolocation but are not personally identifiable.

3.3 What We Do NOT Collect

• Personal Information: We do not require registration, accounts, or personal details
• Email Addresses: We do not collect or store email addresses
• Names or Identifiers: We do not collect personal names or identifying information
• Payment Information: way2pdf is completely free - no payment processing occurs

4. How We Use Your Information

The information we collect is used exclusively for:

• Document Processing: Converting, merging, splitting, and performing OCR on your documents
• Service Improvement: Understanding usage patterns to improve functionality (if analytics enabled)
• Security: Detecting and preventing abuse, unauthorized access, or malicious activity
• Session Management: Managing temporary file storage and cleanup

We do NOT:

• Sell, rent, or share your data with third parties
• Use your files for training machine learning models
• Send your data to external processing services
• Create user profiles for advertising or marketing

5. Data Sharing & Third Parties

We do not share your data with third parties. way2pdf is designed to operate independently without external dependencies.

5.1 No Third-Party Services

way2pdf does not integrate with:

• Cloud storage services (Google Drive, Dropbox, OneDrive)
• External conversion APIs
• Analytics services (Google Analytics, etc.) - unless you explicitly add them
• Social media platforms
• Advertising networks (except for Google AdSense, which only uses cookies)

5.2 Google AdSense

If Google AdSense is enabled on your installation:

• AdSense may use cookies to serve personalized ads
• AdSense does not have access to your uploaded files
• You can manage ad preferences through Google's Ad Settings
• See Google's Privacy Policy for details

6. Data Retention & Deletion

6.1 File Retention

• Session Duration: Files are retained for the duration of your active session
• Automatic Deletion: Files are automatically deleted after 1 hour of inactivity (default setting)
• Manual Cleanup: You can delete files immediately using the delete functionality
• Session Expiry: All session files are removed when the session expires

6.2 Analytics Data

If analytics are enabled:

• Usage statistics are stored locally in a SQLite database
• Data is aggregated and anonymized
• IP addresses are used for geolocation but not stored in a personally identifiable format
• You can access and manage analytics data through the admin dashboard (if configured)

7. Security Measures

We implement multiple security measures to protect your documents:

7.1 Technical Security

• MIME Type Validation: Files are validated to ensure they match expected formats
• Filename Sanitization: Uploaded filenames are sanitized to prevent path traversal attacks
• Session Isolation: Each user session is isolated with unique session IDs
• File Size Limits: Maximum file size limits prevent resource exhaustion (default: 200MB)
• Automatic Cleanup: Background processes automatically clean up expired files

7.2 Operational Security

• Local Processing Only: No network transmission of file content
• No Persistent Storage: Files are not stored permanently
• Access Control: Admin dashboard is password-protected (if enabled)
• Logging: Security events and errors are logged for monitoring

8. Your Rights & Choices

8.1 Data Control

You have full control over your data:

• Delete Files: You can delete individual files at any time
• Clear Session: Ending your session will delete all associated files
• No Registration Required: Use the service without providing personal information
• Opt-Out: You can stop using the service at any time

8.2 Geographic Considerations

way2pdf operates on your server, so data protection laws depend on your jurisdiction:

• GDPR (EU): If your server is in the EU, this service complies with GDPR principles
• FERPA (US Education): Suitable for educational institutions as files never leave local servers
• HIPAA: While we don't process health data, local processing may help with compliance

Note: Consult with your legal team for specific compliance requirements.

9. Cookies & Tracking

way2pdf uses minimal cookies:

9.1 Session Cookies

• Session Management: Flask session cookies are used to track your session
• Admin Authentication: If admin features are enabled, authentication cookies may be used
• Purpose: Essential for service functionality

9.2 Third-Party Cookies

If Google AdSense is enabled, it may use cookies for advertising purposes. You can manage these through:

• Google Ad Settings: https://adssettings.google.com
• Your browser's cookie settings

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be reflected by updating the "Last Updated" date at the top of this page.

Significant changes will be communicated through:

• Updates to this page
• Release notes if you're managing your own installation

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your privacy.

11. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact:

• Website: https://way2pdf.com
• Privacy Concerns: Review this policy for detailed information

For technical support or questions about your specific installation, contact your system administrator.

12. Summary