Privacy Policy

DataFlow Convert (the "Service") is operated by [LEGAL ENTITY NAME], registered at [REGISTERED ADDRESS]. Contact: support@example.com.

For the purposes of the EU General Data Protection Regulation ("GDPR"), we are the data controller for the personal data described in this policy.

• Account data. Your email address and a hashed password (Argon2).
• Billing data. If you subscribe, we store a Stripe customer identifier. Payment card details are handled exclusively by Stripe and never touch our servers.
• Conversion metadata. For each conversion we store: input format, output format, file sizes, status, and timestamp. We do not persist the contents of converted files.
• Session cookies. A single httpOnly cookie (dfc_refresh) that authenticates your browser. It is strictly necessary for the Service to function.
• Server logs. Operational logs (request ID, status code, path, timing) retained for up to 30 days for security and debugging.

Files you upload for conversion are stored only on disk on the conversion worker, only for the duration of the conversion, and are deleted immediately after the converted file is streamed back to you. We do not read, analyse, or retain the contents.

• Contract — to provide the Service you signed up for.
• Legitimate interest — to keep the Service secure and prevent abuse (rate limiting, fraud detection).
• Legal obligation — to retain billing records as required by tax and accounting law.

• Stripe, Inc. — payment processing. See stripe.com/privacy.
• OVH SAS — hosting and object storage (EU region).

We do not sell your personal data and we do not use it for advertising.

• Account data: while your account exists, plus 30 days after deletion.
• Billing records: retained as long as required by applicable tax law.
• Conversion metadata: 12 months, then anonymised or deleted.
• Server logs: up to 30 days.
• Database backups: up to 30 days (encrypted, in OVH Object Storage).

You have the right to:

• Access and exportyour data — use the "Export my data" button on the Account page. The download includes your profile and conversion history as JSON.
• Rectify inaccurate data — contact support.
• Eraseyour account — use the "Delete account" button on the Account page. Active subscriptions must be cancelled first via the Billing Portal.
• Restrict or object to processing — contact support.
• Lodge a complaint with your national data protection authority (in Poland: UODO, uodo.gov.pl).

All core infrastructure (database, object storage, application servers) is located in the European Union. Stripe processes payment data in the United States under Standard Contractual Clauses.

Passwords are hashed with Argon2. Transport is protected with TLS 1.2+. Database backups are encrypted at rest in OVH Object Storage. We follow the principle of least privilege for access to production systems.

We will notify you of material changes via email at least 14 days before they take effect.