Privacy Policy
This Privacy Policy explains how SafeRedact, LLC ("we", "us", "our") collects, uses, and protects information when you use SafeRedact ("Service").
The short version: We don't store your documents. Files are processed and immediately deleted. We collect minimal account data to provide the Service. We never sell your data.
1. Document Processing
This is the most important part. Here's exactly what happens when you upload a document:
What We Do
- Your document is encrypted in transit (TLS 1.2+)
- The document is sent to our AI processing infrastructure for analysis
- Sensitive information is detected and coordinates are returned
- Your document is immediately deleted after processing
- Redacted documents are generated in your browser and downloaded directly to your device
What We Don't Do
- We do not store your documents on our servers
- We do not log or retain document contents
- We do not use your documents to train AI models
- We do not share your documents with third parties
- We do not have access to your documents after processing completes
AI Processing Infrastructure
We use Anthropic's Claude API for document analysis. Anthropic maintains a zero data retention policy for API requests, meaning:
- Your documents are not stored by Anthropic
- Your documents are not used to train Anthropic's models
- Processing occurs in memory and data is discarded after the response is generated
For more information, see Anthropic's Privacy Policy.
2. Information We Collect
Account Information (if you create an account)
| Data | Purpose |
|---|---|
| Email address | Account identification, communications |
| Name (optional) | Personalization |
| Payment information | Processed by Stripe; we don't store card numbers |
Usage Information
| Data | Purpose |
|---|---|
| Document count processed | Usage limits, billing |
| Feature usage | Product improvement |
| Error logs | Debugging, service reliability |
Technical Information
| Data | Purpose |
|---|---|
| IP address | Security, fraud prevention |
| Browser type | Compatibility, debugging |
| Device information | Optimization |
3. Information We Don't Collect
- Document contents or text
- Detected sensitive information (SSNs, addresses, etc.)
- Images or previews of your documents
- Redaction selections or patterns
4. How We Use Information
We use collected information to:
- Provide and maintain the Service
- Process payments and manage subscriptions
- Send transactional emails (receipts, account updates)
- Respond to support requests
- Improve the Service and fix bugs
- Prevent fraud and abuse
- Comply with legal obligations
5. Information Sharing
We do not sell your personal information. We may share information with:
- Service Providers: Companies that help us operate (e.g., Stripe for payments, Supabase for authentication). These providers are contractually bound to protect your data.
- Legal Requirements: If required by law, subpoena, or court order.
- Business Transfers: In connection with a merger, acquisition, or sale of assets.
6. Data Security
We implement appropriate security measures including:
- Encryption in transit (TLS 1.2+)
- Secure authentication via Supabase
- Payment processing via PCI-compliant Stripe
- Regular security reviews
However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
7. Data Retention
- Documents: Not retained. Deleted immediately after processing.
- Account data: Retained while your account is active and for a reasonable period after to comply with legal obligations.
- Usage logs: Retained for up to 90 days for debugging and analytics.
8. Your Rights
Depending on your location, you may have rights to:
- Access: Request a copy of your personal data
- Correction: Update inaccurate information
- Deletion: Request deletion of your account and data
- Portability: Receive your data in a portable format
- Objection: Object to certain processing activities
To exercise these rights, contact us at privacy@saferedact.app.
9. Cookies & Local Storage
We use:
- Essential cookies: For authentication and session management
- Local storage: To remember your preferences (e.g., TOS acceptance) and track guest usage limits
We do not use third-party tracking cookies or advertising cookies.
10. Children's Privacy
SafeRedact is not intended for use by children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately.
11. International Transfers
Your information may be processed in the United States or other countries where our service providers operate. By using the Service, you consent to such transfers.
12. California Privacy Rights (CCPA)
California residents have additional rights under the CCPA, including the right to know what personal information we collect, delete that information, and opt out of the sale of personal information. We do not sell personal information.
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a new effective date. Your continued use of the Service after changes constitutes acceptance.
14. Contact Us
Questions or concerns about this Privacy Policy? Contact us at:
SafeRedact, LLC
Email: privacy@saferedact.app