PDFNavi
Unggah PDF

Kebijakan Privasi

PDFNavi is a browser-based PDF conversion and editing service. We process personal data according to the principles of data minimization, transparency, and security. This policy explains our purposes of processing, categories of data collected, retention periods, cookies/analytics, international transfers, user rights, and how to exercise them.

Overview

PDFNavi (the “Service”) provides PDF merge, conversion, compression, and protection features directly in your browser. We follow the principles of data minimization, purpose limitation, storage limitation, appropriate technical/organizational safeguards, and user control.

Wherever possible, document processing is designed to run in your browser (client-side). If server storage is required, it is handled only temporarily and to the minimum extent. For service improvement and security, we may use non-identifying or aggregated data such as traffic logs and browser/device information.

This policy applies throughout your use of the Service and may be updated as laws or our Service change.

Legal basis of processing

  • Performance of a contract and pre-contractual steps: Processing is necessary to provide the PDF operations (merge, convert, edit, etc.) you request.
  • Legitimate interests: Within a reasonable and expected scope for security, abuse prevention, feature improvements, and quality enhancement.
  • Compliance with legal obligations: To fulfill statutory retention, notifications, and dispute-handling duties under applicable laws.
  • Consent: Optional cookies/analytics and marketing communications are processed only after your explicit consent.

Categories of information collected

Document/File processing data

  • Metadata of uploaded PDFs/images/documents (file name, format, size, etc.)
  • Processing options (page order/rotation/compression level/output format, etc.) and processing status
  • Temporary artifacts (thumbnails/previews) and error logs (if needed)

Usage and traffic data

  • Request/response logs (request path, status code, timestamp, latency)
  • Device/browser info (browser version, language, screen resolution, etc.)
  • Session info (session ID, authentication status, simple session cookies)

Account/Billing (if such features exist)

  • Account identifiers such as email and nickname
  • Payment identifiers/status via payment processors (raw payment data is kept by the processor)

Support data

  • Inquiry content, attachments (optional), contact details and reply history
  • Feedback for service improvement

Purposes of processing

Providing PDF merge/convert/edit features

Necessary to deliver the requested features accurately and consistently.

  • Determining file formats and converting; page extraction/reordering/rotation; compression, etc.
  • Generating previews/thumbnails (client-side first; temporary server-side processing if needed)
Service operations and security

To prevent abuse, monitor performance, and respond to incidents within the necessary scope.

  • Collecting access/error logs and blocking abnormal requests
  • Rate limiting and queueing to protect server resources
Quality improvement and usability
  • Aggregated analytics for feature usability and UI/UX improvements
  • Version compatibility checks and performance tuning
Legal obligations and dispute response
  • Statutory retention, incident response, and handling of rights requests
  • Responding to lawful requests from courts and supervisory authorities

Retention

As a rule, document/file content is processed in your browser. If server storage is necessary, we store it temporarily and delete it safely under an automatic expiration policy.

Logs and audit records are retained for a limited period under law or reasonable necessity.

  • Temporary files: typically deleted automatically within 24 hours
  • Error/access logs: retained for the minimum period needed for security/operations (e.g., 30–90 days)
  • Retention may be extended where required for legal disputes or investigations

Cookies and similar technologies

  • Essential cookies: Required for service delivery such as session continuity, load balancing, and authentication state.
  • Functional cookies (optional): Improve convenience (language preference, recent tasks, etc.).
  • Analytics cookies (optional): Aggregated statistics and usability improvements (activated after consent).

International transfers

Where necessary for service delivery, we may use cloud regions or global CDNs located outside your country.

In such cases, we apply legal safeguards such as adequacy decisions or Standard Contractual Clauses (SCCs), together with additional protections like encryption and access controls.

Security measures

  • Encryption in transit (TLS); storage minimization and expiration policies
  • Least-privilege access, access logging and auditing, anomaly monitoring
  • Regular vulnerability assessments and security patching
  • Encryption for sensitive data and key management policies

Your rights

  • Access/Copy: You can request access to and copies of your personal data under processing.
  • Rectification/Erasure: You can request correction of inaccurate information and deletion of data where storage purposes have been fulfilled.
  • Restriction of processing: You may request restriction of processing to the extent permitted by law.
  • Withdrawal of consent: You may withdraw your consent to optional purposes (analytics/marketing, etc.) at any time.
  • Data portability (where applicable): You may request provision in a machine-readable format within the scope provided by law.
  • Objection/Complaint: You have the right to lodge a complaint with a supervisory authority or seek dispute resolution.

How to exercise your rights (DSR)

  1. Identify request type (access/rectification/erasure/restriction/portability/withdrawal, etc.)
  2. Identity verification (request minimal information for verification where necessary)
  3. Process within a reasonable period and notify results
  4. If subject to statutory retention or legal limits, we will explain the reasons

Requests may be limited in whole or in part to comply with legal exceptions or to protect the rights of third parties.

Children’s personal data

Our Service is not directed to children under the age of 14.

If we learn that children’s data has been collected without parental (legal guardian) consent, we will promptly delete or segregate the data and take necessary measures.

Breach notification

If a personal data breach is confirmed, we will notify you promptly in accordance with applicable laws and implement corrective and preventive measures after impact assessment.

Depending on the scope of impact, we will notify individuals directly or by reasonable means such as a website notice.

Changes

We may revise this policy as our Service or applicable laws change.

Material changes will be announced in advance by reasonable means such as a website notice or email.