HomePrivacy Policy

Privacy Policy

Compliance

Our zero-upload guarantee ensures your files remain strictly yours. All processing runs entirely on your local device.

1. Scope & Client-Side Sandbox Guarantee

This Privacy Policy formally outlines the data processing limitations for FlexiFile. Unlike traditional online utility converters that require uploading your private files to remote cloud servers, FlexiFile operates strictly as a static application on your device.

All processing calculations—including PDF compiling, image format transcodings, text extractions (OCR), video editing, and cryptographic operations—take place locally within your browser sandbox. No binary data, document text, metadata, or developer inputs are ever transmitted over the network to our static CDN or any other third-party servers.

2. Data Processing & Storage Matrix

Data CategoryProcessing LocationRemote StorageRetention period
User Documents & Media FilesPDF contracts, text, images, videos, audio tracks loaded into the utilities.Local Browser RAM (Volatile Memory)None (Zero Transmission)Evicted instantly on tab close or file clear.
Metadata (EXIF, Geospatial tags)Camera models, GPS coordinates, device names attached to media files.Local Browser RAM (Volatile Memory)None (Zero Transmission)Cleared immediately during metadata stripping operations.
Application Settings (UI Theme)User choice of Light, Dark, or System system themes.Browser LocalStorageNone (Zero Transmission)Persistent until manual browser cache deletion.
Analytics & TelemetryTracking of feature usages, conversion success rates, and user flows.Not ApplicableNone (Zero Collection)No tracking systems are loaded in our bundles.

3. Regulatory Alignment: GDPR & HIPAA Compliance

EU GDPR Article 25 (Privacy by Design): By structuring FlexiFile without any data collection API, we satisfy compliance standards passively. Since personal identifier tracking and remote logging are non-existent, there is zero data breach surface area.

HIPAA Safeguards: Under HIPAA compliance rules, Protected Health Information (PHI) must be secured with strict technical and administrative safeguards. Since FlexiFile is processed entirely inside the browser window on the healthcare provider\'s computer, the data never travels to a remote environment. FlexiFile has no access to your PHI, eliminating the need to sign a Business Associate Agreement (BAA).

California Consumer Privacy Act (CCPA/CPRA): FlexiFile confirms that we do not "sell", "share", or "disclose" consumer information, nor do we track cookies or use telemetry systems.

4. Network Verification Audit

Security officers and compliance auditors can verify this platform\'s privacy model at any time:

  1. Open your web browser (e.g. Chrome, Firefox) and press F12 or Right Click > Inspect.
  2. Select the Network tab in the developer console panel.
  3. Perform any operation, such as converting a document or applying face blurs to an image.
  4. Confirm that no network traffic or outbound HTTP POST payloads are dispatched to third-party endpoints.

🛡️ Privacy Compliance Seal

Zero File Uploads

All files are parsed and compiled in-memory inside your local browser tab. No binary or text content is ever transmitted to a server.

No Session Logging

We do not log user actions, file names, file sizes, or conversion history. Once the browser tab is closed, all processing context is lost.

No Tracking Cookies

We do not use tracking cookies, analytics pixels, or advertisement trackers. Any local storage is used solely to store UI theme preferences.

Compliance Ready

FlexiFile meets strict HIPAA, GDPR, and CCPA guidelines because no data processing is delegated to third-party databases.

Questions? If you have any inquiries regarding the technical implementation of our local sandboxing structure or want to inspect our open source WebAssembly libraries, please visit our Contact Page.