Legal

Privacy Policy

How DocAccessible collects, uses, stores, and protects your personal information and uploaded documents.

Terms of ServiceRefund Policy
Effective

March 5, 2026

This policy applies to all users of the DocAccessible platform, including visitors, registered users, and workspace administrators.

1. Information We Collect

We collect the following categories of information when you use DocAccessible:

Account information

Name, email address, and hashed password when you register. Passwords are hashed using bcrypt (12 rounds) and are never stored in plaintext.

Uploaded documents

Source files (PDF, DOCX, PPTX) submitted for conversion and HTML documents created or edited on the platform. Source documents are stored separately from converted outputs.

Payment information

Payment processing is handled entirely by DodoPayments, our Merchant of Record. We do not store credit card numbers or full payment credentials. We retain customer IDs, payment references, and transaction metadata for billing records.

Usage data

Page views, feature interactions, and session metadata collected through Google Analytics and server-side logging for service improvement and debugging.

Support communications

Messages, attachments, and metadata from support tickets and contact form submissions.

2. How We Use Your Information

We use collected information to:

  • Provide, operate, and maintain the DocAccessible platform.
  • Process conversion requests and deliver accessible documents.
  • Process payments and manage workspace subscriptions.
  • Send transactional emails (payment receipts, request updates, delivery notifications, and account recovery).
  • Respond to support tickets and contact inquiries.
  • Monitor service health, debug issues, and improve platform performance.
  • Enforce our Terms of Service and prevent abuse.

We do not sell your personal information. We do not use your uploaded documents for any purpose other than delivering the service you requested.

3. Data Storage and Security

All data is stored in cloud-hosted PostgreSQL databases with row-level security (RLS) enabled on all tables. Uploaded files are stored in cloud storage buckets with access controls that enforce ownership verification.

  • All API routes verify that the authenticated user owns the requested resource.
  • Admin routes require email allowlist verification.
  • Uploaded HTML has script tags and event handler attributes stripped before rendering (original stored file is preserved).
  • File uploads are validated for type (.html/.htm, .pdf, .docx, .pptx), size (under 100 MB), and structural integrity.
  • The service-role key is never exposed to client-side code.

We implement industry-standard measures to protect your data, but no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security.

4. Data Sharing

We share personal information only in the following limited circumstances:

  • Payment processing: DodoPayments receives payment information necessary to complete transactions.
  • Email delivery: Resend processes transactional email content on our behalf.
  • Analytics: Google Analytics receives anonymized usage data.
  • Legal obligations: We may disclose information when required by law, court order, or to protect the rights and safety of DocAccessible and its users.

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

5. Cookies and Tracking

DocAccessible uses cookies and similar technologies for:

  • Session management: Authentication cookies to maintain your signed-in state.
  • Preferences: Theme preference (light/dark mode) stored locally.
  • Analytics: Google Analytics cookies for aggregated usage statistics.

You can control cookie preferences through your browser settings. Disabling session cookies may prevent you from using authenticated features of the platform.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide the service:

  • Account data is retained while your account exists and for a reasonable period after deletion for legal and operational purposes.
  • Uploaded documents and conversion outputs are retained while your workspace subscription is active.
  • After cancellation, a hosted mirror of your documents is available for 60 days. After the grace period, documents are scheduled for deletion.
  • Payment records are retained as required by applicable tax and financial regulations.
  • Support ticket history is retained for service continuity and quality assurance.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you.
  • Request correction of inaccurate information.
  • Request deletion of your account and associated data.
  • Export your documents (ZIP export is available at any time through the dashboard).
  • Object to or restrict certain processing of your data.

To exercise these rights, contact us at contact@docaccessible.com. We will respond within 30 days.

8. Changes to This Policy

We may update this privacy policy from time to time. Material changes will be communicated via email or a notice on the platform at least 30 days before they take effect. The effective date at the top of this page indicates when the policy was last revised.

9. Contact

For privacy-related questions or requests, contact us at contact@docaccessible.com or through the Contact page.

Privacy questions?

Reach out to our team for any privacy-related questions, data access requests, or concerns.

Contact Us Open FAQ

Related reading

Continue with connected guides and operational references.

5 linked pages
1

Terms of Service

Open resource

2

Refund Policy

Open resource

3

Offboarding and data export

Open resource

4

SLA commitments

Open resource

5

Frequently asked questions

Open resource