Last updated: February 12, 2026
When you create an account or use Doc9, we collect information you provide directly, including your name, email address, organization name, and payment details. We also collect usage data such as document processing history, API usage metrics, and access logs.
We use the information we collect to:
We practice "Zero Footprint" processing. The content of your documents (text, images, and structured data you upload or generate) is processed in ephemeral memory and deleted immediately upon delivery of the generated output. We do not store your generated PDFs on our servers beyond the time required to deliver them to you.
We do not use the content of your documents to train, fine-tune, or improve our AI models. Your document content is never accessed by our employees unless you explicitly request support that requires it and grant written consent.
Metadata related to your processing jobs (timestamps, page counts, credit usage, job status) is retained for billing, audit, and support purposes.
Your data may be transferred to, and processed in, jurisdictions outside of your country of residence, including but not limited to the United States, the European Union, and the Asia-Pacific region. By using our Service, you consent to this transfer. Where required, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) to ensure your data receives an adequate level of protection regardless of the jurisdiction in which it is processed.
We do not sell your personal information. We may share information with third-party service providers who assist us in operating our platform, including cloud infrastructure providers, payment processors (Stripe), and AI model providers used for document processing. These providers are contractually obligated to protect your data.
We use essential cookies to maintain your session and preferences. We do not use third-party advertising cookies. You can configure your browser to refuse cookies, though this may affect your ability to use certain features.
We implement industry-standard security measures to protect your data, including encryption in transit and at rest, access controls, and regular security reviews. API keys are stored as cryptographic hashes and cannot be recovered after creation.
We retain your account information for as long as your account is active. Processed documents are automatically deleted after 30 days. Credit transaction history is retained for accounting purposes. You may request deletion of your account and associated data at any time.
Depending on your jurisdiction, you may have the right to access, correct, delete, or export your personal data. You may also have the right to object to or restrict certain processing. To exercise these rights, please contact us using the information below.
We may update this privacy policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date.
If you have questions about this privacy policy or our data practices, please contact us at privacy@doc9.ai.