Privacy Policy

1. INTRODUCTION

This Privacy Policy (the “Privacy Policy”) explains how DOCONOVU LTD, a company incorporated and existing under the laws of England and Wales, having its registered office at 71–75 Shelton Street, Covent Garden, London WC2H 9JQ, United Kingdom (“Company”, “we”, “us”, or “our”), collects, uses, stores, discloses, transfers, and otherwise processes personal data in connection with the use of PDFTool.io (the “Service”).

This Privacy Policy applies to all users of the Service, including website visitors, registered account holders, customers, trial users, and any person interacting with the Service or communicating with us.

We are committed to protecting your privacy and processing personal data in accordance with applicable data protection laws, including where applicable:

• the UK General Data Protection Regulation (“UK GDPR”);

• the Data Protection Act 2018;

• the General Data Protection Regulation (EU) 2016/679 (“GDPR”);

• the California Consumer Privacy Act as amended by the California Privacy Rights Act (“CCPA/CPRA”);

• and other applicable privacy and consumer protection laws.

Please read this Privacy Policy carefully before using the Service.

2. DATA CONTROLLER

For the purposes of applicable data protection laws, DOCONOVU LTD acts as the data controller of personal data processed in connection with the Service.

Company details:

DOCONOVU LTD
71–75 Shelton Street
Covent Garden
London WC2H 9JQ
United Kingdom

Email: [email protected]

If you have questions regarding this Privacy Policy or the processing of your personal data, you may contact us using the details above.

3. SCOPE OF THIS PRIVACY POLICY

This Privacy Policy applies to personal data collected through:

• the PDFTool.io website;

• the Service and related applications;

• customer support communications;

• billing and payment processes;

• marketing and promotional communications;

• analytics and tracking technologies;

• and any other interaction with us relating to the Service.

This Privacy Policy does not apply to third-party websites, applications, or services that may be linked to or integrated with the Service and which operate under their own privacy policies.

4. PERSONAL DATA WE COLLECT

We may collect, use, store, and process different categories of personal data depending on how you interact with the Service.

The categories of personal data we may collect include, but are not limited to:

4.1 Identity and Contact Information

This may include:

• full name;

• email address;

• billing address;

• country or region;

• account login credentials;

• customer support communications;

• and other contact information voluntarily provided by you.

4.2 Account and Subscription Information

This may include:

• account registration details;

• subscription status;

• trial participation;

• billing intervals;

• renewal status;

• cancellation status;

• transaction history;

• and related account information.

4.3 Payment Information

Payments are processed through third-party payment service providers and processors.

We may receive limited payment-related information, including:

• payment status;

• payment method type;

• partial payment card identifiers;

• transaction identifiers;

• billing country;

• and subscription payment history.

We do not store full payment card details unless expressly stated otherwise.

Payment information is processed by authorised payment providers in accordance with their own privacy policies and security standards.

4.4 Usage and Technical Information

We may automatically collect technical and usage-related information, including:

• IP address;

• browser type and version;

• device identifiers;

• operating system;

• language preferences;

• referral URLs;

• pages viewed;

• session duration;

• interactions with the Service;

• timestamps;

• crash reports;

• diagnostic information;

• and other analytical data.

4.5 Uploaded Files and User Content

In order to provide the Service, users may upload files and documents for processing.

Such uploaded content may contain personal data depending on the nature of the files submitted by the user.

Uploaded files may be temporarily processed, stored, converted, compressed, edited, or otherwise handled solely for the purpose of providing the requested functionality of the Service.

We do not review uploaded files except:

• where necessary for technical support purposes;

• where required for security monitoring;

• where required by law;

• or where otherwise permitted under applicable law.

4.6 Communication Data

We may collect information contained in communications sent to us, including:

• support requests;

• customer service enquiries;

• survey responses;

• feedback;

• and correspondence sent via email, forms, or chat systems.

4.7 Marketing and Advertising Data

We may collect information relating to marketing interactions, including:

• newsletter subscriptions;

• advertising campaign attribution data;

• referral sources;

• marketing preferences;

• and interactions with promotional communications.

5. HOW WE COLLECT PERSONAL DATA

We may collect personal data:

• directly from you;

• automatically through your use of the Service;

• through cookies and similar technologies;

• through payment processors and service providers;

• through analytics and advertising partners;

• through customer support interactions;

• and through lawful third-party sources.

Additional information regarding cookies and tracking technologies is available in our Cookie Policy.

6. PURPOSES OF PROCESSING

We may process personal data for the following purposes:

• providing, operating, and maintaining the Service;

• processing document conversions and related functionalities;

• creating and managing user accounts;

• processing subscriptions and payments;

• managing trials and recurring subscriptions;

• authenticating users;

• communicating with users;

• responding to customer support requests;

• improving the Service;

• monitoring usage and performance;

• detecting fraud, abuse, unauthorised activity, or security incidents;

• enforcing our Terms and Conditions;

• complying with legal obligations;

• sending service-related communications;

• sending marketing communications where permitted by law;

• analysing business performance and user engagement;

• and protecting the rights, property, and safety of the Company, users, and third parties.

7. LEGAL BASES FOR PROCESSING (EU/UK USERS)

Where the GDPR or UK GDPR applies, we process personal data on one or more of the following legal bases:

7.1 Performance of a Contract

Processing is necessary to provide the Service, fulfil contractual obligations, process subscriptions, manage accounts, and deliver requested functionalities.

7.2 Legitimate Interests

We may process personal data where necessary for our legitimate business interests, including:

• improving the Service;

• fraud prevention;

• ensuring security;

• analytics and internal reporting;

• customer support;

• enforcing legal rights;

• and maintaining operational integrity.

Where we rely on legitimate interests, we ensure that such interests are not overridden by your fundamental rights and freedoms.

7.3 Consent

We may process personal data based on your consent where required by law, including:

• certain cookies and tracking technologies;

• certain marketing communications;

• and optional features requiring consent.

You may withdraw consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.

7.4 Legal Obligations

We may process personal data where necessary to comply with applicable laws, regulations, court orders, or governmental requests.

8. COOKIES AND TRACKING TECHNOLOGIES

We use cookies, pixels, SDKs, local storage, and similar technologies to:

• operate the Service;

• remember user preferences;

• authenticate sessions;

• analyse traffic and usage patterns;

• personalise user experiences;

• measure advertising effectiveness;

• and improve functionality.

Detailed information regarding the specific cookies and technologies used by the Service is available in our Cookie Policy.

Where required by law, we will request your consent before placing non-essential cookies on your device.

You may manage cookie preferences through your browser settings or consent management tools available on the website.

9. DISCLOSURE OF PERSONAL DATA

We may disclose personal data to third parties where necessary for the operation of the Service or where otherwise permitted by law.

Recipients may include:

• hosting providers;

• cloud infrastructure providers;

• payment processors;

• analytics providers;

• customer support providers;

• marketing and advertising partners;

• fraud prevention providers;

• professional advisers;

• legal and regulatory authorities;

• and affiliated entities or contractors.

We require third-party service providers processing personal data on our behalf to implement appropriate security and confidentiality measures.

We do not sell personal data in exchange for monetary compensation.

10. INTERNATIONAL DATA TRANSFERS

Your personal data may be transferred to, processed in, or accessed from countries outside your country of residence, including countries that may not provide the same level of data protection.

Where required by applicable law, we implement appropriate safeguards for international data transfers, including:

• Standard Contractual Clauses approved by the European Commission;

• UK International Data Transfer mechanisms;

• adequacy decisions;

• and other legally recognised safeguards.

By using the Service, you acknowledge that your personal data may be transferred internationally in accordance with this Privacy Policy.

11. DATA RETENTION

We retain personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, including:

• providing the Service;

• maintaining business records;

• complying with legal obligations;

• resolving disputes;

• enforcing agreements;

• and protecting our legitimate interests.

Retention periods may vary depending on:

• the type of data;

• legal requirements;

• operational needs;

• security considerations;

• and dispute resolution obligations.

Uploaded files may be automatically deleted after processing or after a limited retention period.

We reserve the right to delete files, inactive accounts, or associated data in accordance with our operational policies and legal obligations.

12. DATA SECURITY

We implement reasonable technical, administrative, and organisational measures designed to protect personal data against unauthorised access, loss, misuse, disclosure, alteration, or destruction.

Such measures may include:

• encryption;

• secure network infrastructure;

• restricted access controls;

• authentication systems;

• logging and monitoring;

• and security testing procedures.

However, no method of transmission over the internet or method of electronic storage is completely secure, and we cannot guarantee absolute security.

You acknowledge and accept that use of the Service is at your own risk.

13. USER RESPONSIBILITIES

You are responsible for ensuring that:

• you have the legal right to upload and process files using the Service;

• your use of the Service complies with applicable laws;

• uploaded content does not infringe third-party rights;

• and you do not upload unlawful, harmful, or prohibited content.

You should avoid uploading sensitive personal data unless necessary and appropriate safeguards are in place.

14. CHILDREN’S PRIVACY

The Service is not directed towards children and is not intended for individuals under the age of eighteen (18) or the minimum legal age in the relevant jurisdiction.

We do not knowingly collect personal data from children.

If we become aware that personal data relating to a child has been collected without appropriate authorisation, we may delete such information.

15. YOUR PRIVACY RIGHTS (EU/UK USERS)

If you are located in the European Union or the United Kingdom, you may have the following rights under applicable data protection laws:

• the right of access;

• the right to rectification;

• the right to erasure;

• the right to restriction of processing;

• the right to object to processing;

• the right to data portability;

• the right to withdraw consent;

• and the right to lodge a complaint with a supervisory authority.

These rights may be subject to legal limitations and exceptions.

To exercise your rights, please contact us using the contact details provided in this Privacy Policy.

We may request verification of identity before processing certain requests.

16. CALIFORNIA PRIVACY RIGHTS

If you are a California resident, you may have rights under the California Consumer Privacy Act (CCPA/CPRA), including:

• the right to know what personal information we collect;

• the right to request deletion of personal information;

• the right to correct inaccurate personal information;

• the right to access specific categories of personal information;

• the right to limit certain uses of sensitive personal information where applicable;

• and the right not to be discriminated against for exercising privacy rights.

California residents may submit requests by contacting us using the information provided in this Privacy Policy.

We may verify your identity before responding to requests.

17. MARKETING COMMUNICATIONS

Where permitted by applicable law, we may send marketing and promotional communications relating to the Service.

You may opt out of marketing communications at any time by:

• clicking the unsubscribe link in communications;

• adjusting account settings where available;

• or contacting us directly.

Even if you opt out of marketing communications, we may continue sending transactional or service-related communications where necessary.

18. THIRD-PARTY LINKS AND SERVICES

The Service may contain links to third-party websites, tools, or services.

We are not responsible for the privacy practices, content, or security of third-party services.

Your interactions with third-party services are governed by their own terms and privacy policies.

19. BUSINESS TRANSFERS

In the event of a merger, acquisition, restructuring, sale of assets, financing transaction, or similar corporate transaction, personal data may be transferred as part of the transaction, subject to applicable legal requirements.

20. AUTOMATED DECISION-MAKING

We may use automated systems for operational, security, fraud prevention, analytics, or subscription management purposes.

We do not intentionally use automated decision-making processes that produce legal or similarly significant effects without appropriate safeguards where required by law.

21. CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify or update this Privacy Policy at any time.

Updated versions will be published on the website and become effective upon publication unless otherwise required by applicable law.

Where legally required, we will provide notice of material changes.

Your continued use of the Service following such updates constitutes acceptance of the revised Privacy Policy.

22. CONTACT INFORMATION

If you have questions, concerns, or requests regarding this Privacy Policy or the processing of personal data, you may contact us at:

DOCONOVU LTD
71–75 Shelton Street
Covent Garden
London WC2H 9JQ
United Kingdom

Email: [email protected]