Privacy Policy

Your privacy is our priority — learn how we protect your data

Last Updated: January 2025

Our Privacy Commitment

PDF2Locker operates on a zero-knowledge, client-side architecture. Your PDF files, passwords, and document content never leave your device and are never uploaded to our servers. This policy explains what minimal information we may collect and how we protect your privacy.

1. Information We Do NOT Collect

Because PDF2Locker processes everything locally in your browser, we explicitly DO NOT collect, store, or have access to:

  • Your PDF files: All files remain on your device and are never uploaded
  • Your passwords: Passwords are processed locally and never transmitted to us
  • Document content: We never see or store any content from your documents
  • File metadata: File names, sizes, creation dates, or other metadata are not collected
  • Encryption keys: All cryptographic operations happen locally in your browser

2. Information We May Collect

While we don't collect your files or passwords, we may collect minimal, non-identifying information to improve our service:

2.1 Automatically Collected Information

  • Usage Analytics: We may use privacy-focused analytics tools to understand how visitors use our website (page views, session duration, general geographic region)
  • Device Information: Browser type, operating system, and device type (for compatibility purposes)
  • Technical Data: IP address (anonymized), referrer URL, and timestamps

All analytics data is aggregated and anonymized. We cannot identify individual users from this information.

2.2 Information You Provide

If you contact us through our contact form or email, we collect:

  • Your name (if provided)
  • Your email address
  • The content of your message

This information is used solely to respond to your inquiry and is not shared with third parties.

3. How We Use Information

Any minimal information we collect is used exclusively for:

  • Service Improvement: Understanding usage patterns to enhance user experience
  • Technical Optimization: Identifying and fixing technical issues
  • Communication: Responding to your inquiries or support requests
  • Security: Detecting and preventing abuse or malicious activity

4. Client-Side Processing Explained

PDF2Locker uses a client-side architecture, which means:

1

You upload a PDF

The file is loaded directly into your browser's memory — no upload to our servers occurs.

2

You enter a password

Your password is processed entirely in your browser using JavaScript — never transmitted anywhere.

3

Encryption happens locally

Our JavaScript code running in your browser applies AES-256 encryption to the PDF.

4

You download the protected PDF

The encrypted file is generated on your device and offered for download — it never touches our servers.

At no point in this process do your files, passwords, or data leave your device or reach our servers.

5. Cookies and Local Storage

5.1 Cookies

PDF2Locker may use minimal cookies for:

  • Remembering your preferences (e.g., theme settings)
  • Analytics (if implemented, anonymized)

We do not use cookies to track your files, passwords, or personal activities.

5.2 Local Storage

Your browser may temporarily store data locally (on your device) for functionality purposes. This data:

  • Remains on your device
  • Is never transmitted to us
  • Can be cleared by your browser settings

6. Third-Party Services

PDF2Locker may use the following third-party services:

6.1 CDN Services

We use Content Delivery Networks (CDNs) to load JavaScript libraries and assets faster. These services may collect minimal technical data like IP addresses for their own analytics, subject to their privacy policies.

6.2 Analytics Services

If we use analytics tools (like Google Analytics or privacy-focused alternatives like Plausible), they may collect anonymized usage data. We configure these tools to maximize privacy and minimize data collection.

We do not use third-party services that can access, view, or store your PDF files or passwords.

7. Data Retention

Since we don't collect your files or passwords, there's nothing to retain. Any minimal data we collect (like contact form submissions or analytics) is:

  • Retained only as long as necessary
  • Automatically deleted or anonymized after a reasonable period
  • Never sold or shared with third parties for marketing purposes

8. Your Rights

You have the right to:

  • Access: Request information about any data we may have collected about you
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your data (where applicable)
  • Portability: Request a copy of your data in a portable format
  • Objection: Object to certain types of processing
  • Opt-out: Opt out of analytics or cookies (via browser settings)

To exercise these rights, contact us at contact@pdf2locker.com.

9. Data Security

While your files and passwords never reach our servers, we still implement security measures for our website:

  • HTTPS Encryption: All website traffic is encrypted via SSL/TLS
  • Secure Hosting: Our website is hosted on secure, reputable infrastructure
  • Regular Updates: We keep our code and dependencies up to date
  • No Server-Side Storage: We have no database storing user files or passwords

10. Children's Privacy

PDF2Locker is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will delete it promptly.

11. International Data Transfers

Since your files and passwords are processed entirely on your device, there are no international data transfers of sensitive content. Any minimal analytics or contact data may be stored on servers located in various jurisdictions, protected by appropriate safeguards.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy periodically.

Significant changes will be communicated through a prominent notice on our website.

13. GDPR Compliance

For users in the European Union, PDF2Locker's client-side architecture inherently aligns with GDPR principles:

  • Data Minimization: We collect minimal to no personal data
  • Purpose Limitation: Any data collected is used only for specified purposes
  • Storage Limitation: Data is retained only as long as necessary
  • Integrity and Confidentiality: We implement appropriate security measures
  • Lawful Basis: Our processing is based on legitimate interests and user consent

14. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of the sale of personal information

Note: PDF2Locker does not sell personal information. Our client-side architecture means we don't collect your files or passwords in the first place.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: contact@pdf2locker.com

Contact Form: Contact Us

By using PDF2Locker, you acknowledge that you have read and understood this Privacy Policy.

Our Promise

Privacy isn't just a policy for us — it's the foundation of how PDF2Locker was built. Your trust is our most valuable asset, and we are committed to protecting your privacy at every level.