Privacy Policy
Last updated: March 2026 · Effective: March 1, 2026
Your files never leave your browser. All document processing happens 100% on your device — we have zero access to your data.
1. Introduction
OfflineRedact ("we", "our", "us") operates the website offlineredact.com and provides a client-side document redaction tool. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.
We are committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR), the UK General Data Protection Regulation (UK GDPR), the California Consumer Privacy Act (CCPA/CPRA), and other applicable data protection laws worldwide.
By using OfflineRedact, you consent to the data practices described in this policy. If you do not agree with the terms of this policy, please do not access or use our services.
2. Zero-Knowledge Document Processing
privacy.noFileUploads.text
All document processing — including text extraction, PII (Personally Identifiable Information) detection, face detection, OCR (Optical Character Recognition), and redaction — happens entirely within your web browser using JavaScript and WebAssembly. No document content is ever transmitted to our servers or any third-party service.
This means we operate on a zero-knowledge architecture: we cannot see, access, read, store, or process the content of any document you work with. Even if compelled by a court order, we would have no document data to produce.
- PDF documents are parsed and redacted in-browser using pdf-lib
- Word documents (.docx) are processed by extracting and modifying XML in-browser
- Images are analyzed for faces using TensorFlow.js running locally in your browser
- OCR is performed using Tesseract.js — no cloud OCR services are used
- Redacted files are generated locally and downloaded directly to your device
3. Information We Collect
We collect minimal information, categorized as follows:
a) Account Information (Pro Users Only)
- •Email address — provided when you create an account or purchase a Pro license
- •Authentication data — managed securely by Supabase Auth (Google OAuth or magic link)
b) Payment Information
- •Payment is processed entirely by Stripe. We never receive, store, or have access to your credit card number, CVV, or billing address
- •We receive from Stripe: transaction confirmation, subscription status, and customer email
c) Analytics Data
- •Page views and feature usage via Google Tag Manager (anonymized, no personal data)
- •No document content, file names, or PII detected in your documents is ever transmitted
d) Automatically Collected Data
- •IP address — logged temporarily by our hosting provider (Vercel) for security and abuse prevention; not stored by us
- •Browser type and operating system — collected anonymously via analytics
- •Referring URL and pages visited — for understanding traffic sources
5. Third-Party Services
We use the following third-party services, each with their own privacy policies:
| Service | Purpose | Data Shared | Privacy Policy |
|---|---|---|---|
| Stripe | Payment processing for Pro subscriptions | Email address, subscription plan selection | Link |
| Supabase | User authentication and account management | Email address, OAuth tokens | Link |
| Vercel | Website hosting and deployment | IP address (server logs), page requests | Link |
| Google Tag Manager | Anonymous usage analytics | Anonymized page view and feature usage data | Link |
6. Data Retention
We retain data only as long as necessary for its intended purpose:
- Account data (email, auth tokens) — retained while your account is active; deleted within 30 days of account deletion request
- Payment records — retained for 7 years as required by tax and financial regulations
- Analytics data — aggregated and anonymized; individual session data retained for 26 months (Google Analytics default)
- Server logs (Vercel) — automatically purged after 30 days
- Document content — never stored; exists only in your browser memory during processing
7. Your Rights
Depending on your location, you have the following rights regarding your personal data:
Under GDPR (EU) & UK GDPR:
Right of Access
Request a copy of the personal data we hold about you
Right to Rectification
Request correction of inaccurate personal data
Right to Erasure
Request deletion of your personal data ("right to be forgotten")
Right to Restriction
Request that we limit how we use your data
Right to Data Portability
Receive your data in a structured, machine-readable format
Right to Object
Object to processing based on legitimate interests
Under CCPA/CPRA (California):
- Right to know what personal information is collected and how it is used
- Right to delete personal information held by us
- Right to opt-out of the sale of personal information — we do not sell your data
- Right to non-discrimination for exercising your privacy rights
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days (GDPR) or 45 days (CCPA).
8. Children's Privacy
OfflineRedact is not directed at children under the age of 16 (GDPR) or 13 (COPPA). We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us at [email protected] and we will promptly delete such information.
9. International Data Transfers
Our hosting provider (Vercel) and payment processor (Stripe) operate servers in the United States and other countries. When your account or payment data is processed by these services, it may be transferred outside your country of residence.
These transfers are protected by Standard Contractual Clauses (SCCs) approved by the European Commission, and by each provider's compliance with applicable data protection frameworks. Your document content is never transferred, as it is processed entirely on your device.
10. Data Security
We implement appropriate technical and organizational measures to protect your personal data:
- Zero-knowledge architecture — document content never leaves your browser
- HTTPS/TLS encryption for all website communications
- Stripe PCI DSS Level 1 compliance for payment processing
- Supabase Row Level Security (RLS) for database access control
- Regular security audits and dependency updates
- No sensitive data stored on our servers — minimal attack surface
11. Legal Basis for Processing (GDPR)
Under the GDPR, we process personal data based on the following legal grounds:
| Legal Basis | Processing Activity |
|---|---|
| Contract Performance | Processing your payment and providing Pro features you purchased |
| Legitimate Interest | Website analytics to improve our service; security and fraud prevention |
| Consent | Sending marketing communications (only if you opt in) |
| Legal Obligation | Retaining payment records as required by tax law |
12. Data Breach Notification
In the unlikely event of a data breach affecting your personal data, we will notify the relevant supervisory authority within 72 hours as required by GDPR Article 33. If the breach poses a high risk to your rights and freedoms, we will also notify you directly without undue delay.
Given our zero-knowledge architecture, any potential breach would be limited to account and payment metadata — your document content can never be compromised as it is never stored on our servers.
13. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will:
- Update the "Last updated" date at the top of this page
- Display a prominent notice on our website for 30 days
- Send an email notification to registered Pro users
- Maintain an archive of previous versions upon request
15. Contact Us
For privacy-related inquiries, data subject requests, or complaints:
- Privacy inquiries: [email protected]
- General support: [email protected]
- Legal matters: [email protected]
We aim to respond to all privacy inquiries within 5 business days.