Privacy Notice

1. Information Collected

Our system collects data exclusively to manage user accounts, authenticate authorized recipients, and collect document usage logs.

A. Registered Users (Document Owners)

If you create a PDF-DRM.com account, we process your email address and the password you choose at registration.

You can also create a user account for our services using your an existing Google account and use to log in to your user account with us. If you choose this option, you allow us to request and use some of your personal data from your Google account. This involves us processing your full name and email address.

For security purposes, we process information related to your most recent login, including the login time, browser type, IP address, and the time of your last password reset. We have a legitimate interest in processing this information to identify suspicious login activity and to help detect, prevent, and respond to unauthorized use of user credentials.

This information is used solely to manage your account and to provide you with access to our document protection services. We never sell or give your profile data to any third parties.

Your profile data is retained as long as you maintain an active account with us. If you choose to delete your account, this data is permanently removed from our database.

B. Document Recipients (Viewers)

To verify authorized access and protect the integrity of the document content against unauthorized distribution and to enforce the access permissions established by the document owner, our system automatically collects specific data points when a viewer opens a document:

• The recipient's email address (used for identity verification).
• Sessions start time and durations.
• The recipient's IP address.
• The approximate geographic location derived from the network IP address.
• The amount of time a viewer spends accessing or interacting with a document.
• Anonymous Device ID - A randomly generated identifier used to distinguish unique devices and improve analytics accuracy. This identifier is generated by our system and is not a hardware serial number or manufacturer-issued device identifier.

2. Document Encryption and Key Management

We process and store files using standardized cryptographic methods to protect your data from unauthorized access:

• File Encryption: When a PDF file is uploaded to our platform, the file is encrypted using Advanced Encryption Standard with a 256-bit key (AES-256).
• Retention Exclusion: We do not store or retain these document passwords on our servers. Because we do not possess these credentials, we cannot recover, reset, or access any encrypted document if the user loses the password.

3. Cookies and Tracking Technologies

Our platform utilizes cookies and embedded scripts solely to maintain system security and functionality:

• Session and Authentication: Essential cookies are required to manage active user sessions and maintain secure access as you navigate the platform interface.
• Document Access Tracking: User activity is monitored specifically during active document viewing sessions. This tracking is mandatory to enforce designated policy restrictions and to populate the real-time access logs provided to the document owner.

4. Data Sharing and Non-Disclosure Policy

We maintain strict boundaries regarding the data processed on our platform. PDF-DRM.com does not sell, rent, trade, lease, or share any personal information, recipient metadata, or document tracking data with third-party organizations for marketing, profiling, behavioral targeting, or advertising purposes. All data remains isolated and is utilized strictly to provide the requested document security functions.

5. Inquiries and Contact Information

For technical inquiries regarding this Privacy Policy, our data processing workflows, or the cryptographic protocols used to maintain data isolation, please contact us through the contact us page .