1. Overview
PDF Forge is engineered with a "Security-First" architecture. We understand that your documents contain sensitive information, and our infrastructure is designed to provide professional-grade PDF manipulation while maintaining the highest standards of data privacy.
2. Data We Process
Our service processes two types of data:
- Document Content: The files you upload for processing. These are processed in volatile memory and stored in an encrypted temporary bucket with automatic 2-hour deletion.
- Metadata: Technical information such as file size, format, and processing time, used exclusively for service optimization.
- User Account Data: If you create an account, we store your email address and encrypted password for premium features.
3. The Two-Hour Purge Protocol
We implement a strict programmatic deletion policy for all uploaded files:
- Immediate Deletion: You may manually delete your files at any time.
- Automated Cleanup: Hard deletion from all storage nodes exactly 2 hours after processing.
- Zero Backups: No permanent backups or archives are created. Once deleted, files are unrecoverable.
4. Third-Party Services
PDF Forge does not sell your data to third parties. We use limited service providers for infrastructure:
- Infrastructure: Cloudflare Workers and R2 for compute and storage.
- Analytics: Privacy-preserving analytics tracking site performance without identifying users.
- Payments: Handled by Stripe. PDF Forge never stores your credit card information.
5. Cookies
We use essential cookies to maintain your session and preferences. We do not use tracking or advertising cookies.
6. Your Rights
Under GDPR and other privacy frameworks, you have the right to access, rectify, or erase any personal data we hold about you. Given our 2-hour purge protocol, most data regarding your documents is deleted before a request can even be processed.