Privacy Policy

Your Privacy, Our Priority

Effective date: 10/30/2025

This Privacy Policy explains how we collect, use, disclose, and protect information when you use the Doedits platform and services, including our image tools, PDF tools and editor, document utilities, video and speech tools, file sharing, and related microservices.

Information We Collect

  • Account and Authentication: Email, name, and profile image when you sign in (e.g., via Google/Firebase). We store our own session tokens; we do not store your Google password.
  • Content You Upload or Create: Files, images, PDFs, videos, and derived outputs processed by our services. Temporary processing artifacts may be created.
  • Usage Data: Service interactions, tool selections, timestamps, and performance metrics for reliability and debugging.
  • Device and Network: IP address, browser type, and basic device info for security, fraud prevention, and service quality.

How We Use Information

  • Provide core features: editing images, processing PDFs, generating summaries, converting formats, and file sharing.
  • Authenticate users and maintain secure sessions.
  • Operate supporting microservices (e.g., email notifications, utilities, cloud storage) and improve reliability.
  • Detect, prevent, and respond to security incidents and abuse.
  • Improve product performance, quality, and user experience.

Data Storage and Retention

  • Processing Files: Files you upload for processing are retained only as long as necessary to complete the task and deliver results. Many tools delete inputs shortly after processing completes.
  • User-Managed Storage: If you explicitly save or share files (e.g., via file-sharing service), we store them until you delete them or until the share expires, according to feature settings.
  • Backups and Logs: Minimal metadata and logs may be retained for a limited period for security and diagnostics, then purged per our retention schedule.

Your Controls

  • Access and Deletion: You can access or delete files you uploaded or created. Deleting content from your account (or share) removes it from active storage and scheduled backups according to our purge cycles.
  • Account: You may request deletion of your account and associated personal data (subject to legal requirements). Contact support if an in-app option is unavailable.
  • Sharing: You control who can access shared links. You can revoke shares at any time; we disable access and remove associated tokens.

Security

  • Encryption in transit; storage encryption where supported by our infrastructure providers.
  • Scoped, rotating tokens, strict CORS, and httpOnly cookie sessions to reduce token exposure.
  • Environment isolation for microservices and principle of least privilege for service credentials.

Third-Party Services

  • Google/Firebase Authentication: Used for sign-in. We receive identity assertions (ID tokens) and exchange them for our session tokens; we do not store your Google password.
  • Cloud Storage: File storage/sharing may use cloud object storage (e.g., S3-compatible). We scope access and enforce expiration where applicable.
  • Email Service: Transactional emails (e.g., welcome, password reset) are sent through our email microservice.

Children's Privacy

Our services are not directed to children under 13. If you believe a child has provided personal information, contact us to remove it.

International Users

Data may be processed and stored in regions where we or our providers operate. We apply safeguards appropriate to the data and region.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the “Effective date” and, where appropriate, providing additional notice in-app.

Contact

Questions or requests? Contact our support team or email support@doedits.com.

Need our Terms as well? View Terms & Conditions