Privacy

Account data

When you register, Clerk collects your email address. We also store your current plan and remaining conversion balance in your account metadata.

Payment data

Payments are processed by Stripe. We store only your Stripe Customer ID — your card details are never transmitted to or stored on our servers.

Uploaded files

Files you upload are loaded directly into memory for conversion. They are never written to disk or stored in a database. They are automatically purged immediately, irrespective of whether the conversion succeeded.

Anonymous usage (unregistered visitors)

We set a single HMAC-signed cookie to enforce the free usage limit. This cookie contains only a timestamp and a usage counter — no personal data. It expires after 24 hours.

• To provide and operate the conversion service
• To manage your account and subscription
• To enforce usage limits and prevent abuse
• To send transactional emails (password reset, receipts via Stripe)
• To comply with legal obligations

We do not use your data for advertising, profiling, or any purpose beyond what is necessary to provide the service.

When you submit a file for conversion, its contents are transmitted to Mistral AI's EU API endpoint to carry out the conversion. This transmission is the minimum necessary to deliver the service.

Mistral does not retain API inputs or use them for training. See Mistral's Privacy Policy for details.

We use Pirsch (pirsch.io) for website analytics. Pirsch is a privacy-first, cookie-free analytics service that operates without cookies or fingerprinting.

Pirsch collects only anonymised, aggregate statistics — such as page views, referrer, country, and device type. IP addresses are never stored. No personal data is transmitted to Pirsch. See Pirsch's Privacy Policy for details.

We use the following sub-processors, each operating under a Data Processing Agreement:

• Clerk— authentication and user management. Processes email.
• Stripe— payment processing. Processes payment card data and billing details under their own PCI-DSS certification.
• Mistral AI— file conversion via EU API endpoint. Receives file contents transiently; no retention or training.
• Pirsch— privacy-friendly, cookie-free website analytics. Collects only anonymised aggregate metrics (page views, referrer, country, device type); no cookies, no IP storage, no personal data.

We do not use advertising networks, behavioural trackers, or any other third-party services that receive your personal data.

• Uploaded files: immediately auto-deleted
• Account data: retained while your account is active; deleted upon request
• Payment records: retained as required by applicable tax and accounting law
• Anonymous usage cookie: expires after 24 hours

As a user in the European Economic Area, you have the following rights under the GDPR:

• Right to access — request a copy of your personal data
• Right to rectification — correct inaccurate data
• Right to erasure — request deletion of your data
• Right to restriction — limit how we process your data
• Right to portability — receive your data in a portable format
• Right to object — object to specific processing activities

To exercise any of these rights, contact us. We will respond within one month.