Privacy Policy

Last updated: October 26, 2025

1. Introduction

PDFillable ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our PDF generation API service.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Name (first and last name)
  • Email address
  • Password (encrypted)
  • Organization information

2.2 Authentication Data

When you sign in with Google or other OAuth providers, we receive:

  • Your profile information (name, email, profile picture)
  • Authentication tokens

2.3 PDF Templates and Generated Content

We store:

  • PDF templates you upload or create
  • Generated PDF files
  • Data used to fill PDF templates (field values, images, etc.)
  • Template metadata (names, descriptions, field definitions)

2.4 Usage Data

We automatically collect:

  • API usage statistics (number of PDF generations, API calls)
  • Device information (browser type, operating system)
  • IP addresses
  • Access logs and timestamps

2.5 Payment Information

Payment processing is handled by DodoPayments. We store:

  • Subscription plan details
  • Payment status and history
  • Billing metadata

We do not store credit card numbers or sensitive payment information.

3. How We Use Your Information

We use your information to:

  • Provide and maintain our PDF generation service
  • Process your API requests and generate PDFs
  • Manage your account and subscription
  • Send you service-related notifications and updates
  • Monitor usage to enforce plan limits
  • Improve our service and develop new features
  • Prevent fraud and ensure security
  • Comply with legal obligations

4. Data Storage and Retention

4.1 PDF File Retention

Generated PDFs are stored according to your subscription plan:

  • Free Plan: 3 days
  • Starter Plan: 6 months
  • Pro Plan: 6 months
  • Enterprise Plans: Custom retention periods

4.2 Account Data

We retain your account information and templates for as long as your account is active. If you delete your account, we will delete your personal information within 30 days, except where retention is required by law.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

5.1 Service Providers

  • Supabase (authentication and database hosting)
  • DodoPayments (payment processing)
  • Cloud storage providers (for PDF storage)

5.2 Legal Requirements

We may disclose your information if required by law, court order, or to protect our rights and safety.

5.3 Organization Members

If you're part of an organization account, other members with appropriate permissions may access templates and generated PDFs within that organization.

6. Data Security

We implement appropriate technical and organizational security measures to protect your information, including:

  • Encryption of data in transit (HTTPS/TLS)
  • Encryption of sensitive data at rest
  • Secure authentication with JWT tokens
  • Regular security assessments
  • Access controls and authentication

7. Your Rights

Depending on your location, you may have the following rights:

  • Access your personal information
  • Correct inaccurate data
  • Request deletion of your data
  • Export your data
  • Withdraw consent for data processing
  • Object to certain data processing activities

To exercise these rights, please contact us using the information below.

8. Cookies and Tracking

We use cookies and similar tracking technologies to maintain your session, remember your preferences, and analyze usage. You can control cookies through your browser settings, but some features may not function properly if you disable them.

9. Third-Party Links

Our service may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to review their privacy policies.

10. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Continued use of our service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

Email: privacy@pdfillable.app