PDFCrowd Privacy Policy

This Privacy Policy explains how Pdfcrowd s.r.o. ("Pdfcrowd", "we", "us", or "our") processes personal data as controller for the PDFCrowd service.

Controller

Pdfcrowd s.r.o.
Kostelní náměstí 506/1, 288 02 Nymburk, Czech Republic
Company ID: 107 86 546
Email: support@pdfcrowd.com

Full company registration details are available on the About PDFCrowd page.

Processing

Account and service administration

Data: username, email, password hash, API keys, account settings, and account activity.
Purpose: provide and administer the service.
Legal basis: contract.
Retention: account lifetime, then as needed for legal, security, or dispute purposes.

Billing and tax

Data: billing, tax, invoice, payment, refund, and chargeback records.
Purpose: process purchases, issue invoices, keep accounting records, and handle taxes.
Legal basis: contract and legal obligation.
Retention: for the period required by tax and accounting law.

Service operation and conversions

Data: IP address, user agent, timestamps, request metadata, source URLs, status, output metadata, and similar service or conversion metadata.
Purpose: operate, troubleshoot, secure, and prevent abuse of the service.
Legal basis: contract and legitimate interests.
Retention: as needed for service operation, security, abuse prevention, and support.

Support

Data: support messages, contact details, attachments, and related metadata.
Purpose: respond to support requests.
Legal basis: contract and legitimate interests.
Retention: as needed for support, records, and dispute handling.

Security and fraud prevention

Data: IP address, user agent, cookies and similar technical identifiers, captcha results, rate-limit records, payment-risk signals, and logs.
Purpose: protect accounts, detect abuse, prevent fraud, and keep the service available.
Legal basis: legitimate interests and, where applicable, legal obligation.
Retention: as needed for security, fraud prevention, and abuse prevention.

Analytics, advertising, affiliates, and referrals

Data: analytics, advertising, affiliate, and referral data, where used.
Purpose: measure use of the service, attribute referrals, and manage partner programs.
Legal basis: legitimate interests, contract, or consent where required.
Retention: as needed for the relevant program or legal obligation.

Customer content submitted for conversion is processed by Pdfcrowd mainly as processor on behalf of the customer. That processing is governed by the applicable Data Processing Agreement. PDFCrowd does not keep uploaded files, submitted HTML, or generated files for later use; customer content retention and deletion are summarized on the Data Security and Privacy page.

Recipients

We disclose personal data only as needed to operate the service, meet legal obligations, or protect our rights. Recipients may include hosting providers, email and support providers, payment providers, accounting and tax providers, analytics and security providers, affiliate/referral providers, banks, professional advisers, and public authorities where required by law.

International Transfers

We may transfer personal data outside the EEA, or outside the UK where UK GDPR applies. Where required, we use transfer mechanisms under GDPR Chapter V or UK GDPR international transfer rules, such as adequacy decisions, UK adequacy regulations, the EU-US Data Privacy Framework or the UK Extension to the EU-US Data Privacy Framework where applicable, EU Standard Contractual Clauses, the UK International Data Transfer Agreement, or the UK Addendum to the EU Standard Contractual Clauses. You can contact us for information about the applicable safeguards.

Your Rights

Subject to the GDPR and UK GDPR conditions where applicable, you may request access, rectification, erasure, restriction, portability, and objection to processing. Where processing is based on consent, you may withdraw consent at any time. Contact us at support@pdfcrowd.com.

You may also complain to your local supervisory authority. Pdfcrowd's local supervisory authority is the Czech Office for Personal Data Protection: https://www.uoou.cz/en/.

Required Data

Some personal data is required to create an account, provide the service, process payments, issue invoices, or meet legal obligations. If you do not provide required data, we may not be able to provide the relevant service.

Automated Decisions

We do not make decisions based solely on automated processing that produce legal or similarly significant effects for you.

Changes

We may update this Privacy Policy when our processing, the service, or legal requirements change.