Important Notice: This Privacy Policy governs your use of Compress Document Pro services. By accessing our website or using our tools, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.
1 Introduction & Scope
1.1 Welcome to Compress Document Pro
Compress Document Pro ("we," "us," "our") operates the website https://compressdocument.in/ and provides a suite of online document processing tools including PDF compression, image conversion, document editing, and related services (collectively, the "Services").
1.2 Purpose of This Privacy Policy
This comprehensive Privacy Policy explains:
- How we collect, use, store, and protect your personal information
- Your privacy rights under applicable laws (GDPR, CCPA, etc.)
- Our compliance with Google AdSense requirements
- Security measures for document processing
- Our commitment to transparent data practices
1.3 Scope and Applicability
This policy applies to:
- All visitors to our website
- Users of our free and premium tools
- Registered account holders
- Mobile and desktop users
- All geographic locations where our Services are accessed
1.4 Legal Basis for Processing
We process personal data based on:
- Consent: When you explicitly agree to data processing
- Contractual Necessity: To provide requested Services
- Legal Obligation: To comply with applicable laws
- Legitimate Interests: For business operations and improvements
2 Information We Collect
2.1 Personal Information You Provide
| Data Type | Examples | Purpose | Legal Basis |
|---|---|---|---|
| Account Information | Name, email, password, profile photo | Account creation, authentication, personalization | Contract, Consent |
| Contact Information | Email address, phone number | Customer support, notifications, updates | Contract, Legitimate Interest |
| Payment Information | Billing address, payment method (processed by third parties) | Premium service subscription processing | Contract, Legal Obligation |
| User Content | Uploaded documents, images, processing preferences | Service delivery, tool functionality | Contract, Consent |
| Communication Data | Support tickets, feedback, survey responses | Service improvement, customer care | Legitimate Interest, Consent |
2.2 Automatically Collected Information
When you visit our website, we automatically collect:
- Technical Data: IP address (anonymized), browser type, device information, operating system
- Usage Data: Pages visited, time spent, tools used, click patterns
- Location Data: Country-level location (not precise GPS)
- Cookies and Similar Technologies: See Section 5 for details
2.3 Document Processing Specifics
Local Processing Architecture
Core Privacy Feature: Most of our document processing tools (PDF compression, image conversion, editing) operate 100% locally in your web browser using JavaScript and WebAssembly. This means:
- Documents are processed on your device, not our servers
- Files never leave your computer for basic processing tasks
- No server uploads for immediate tool usage
- Enhanced privacy for sensitive documents
Exceptions: Files are only uploaded when you explicitly use cloud storage features or save to your account dashboard.
2.4 Information from Third Parties
We may receive information from:
- Authentication Services: Google, Facebook (when you use social login)
- Payment Processors: Stripe, PayPal (transaction confirmation)
- Analytics Providers: Google Analytics (aggregated usage data)
- Advertising Networks: Google AdSense (ad performance data)
3 How We Use Your Information
3.1 Primary Service Delivery
Document Processing
To provide PDF compression, conversion, editing, and other document tools as requested
Account Management
To create, maintain, and secure user accounts and profiles
Payment Processing
To process subscription payments and premium service access
3.2 Service Improvement & Development
- Analytics: Analyze usage patterns to improve tool performance
- Feature Development: Develop new tools and enhance existing features
- Bug Fixes: Identify and resolve technical issues
- Performance Optimization: Improve website speed and reliability
3.3 Communication & Support
- Respond to customer support requests and inquiries
- Send service-related announcements and updates
- Provide technical assistance and troubleshooting
- Conduct user surveys and collect feedback
3.4 Security & Compliance
- Detect and prevent fraud, abuse, and security incidents
- Enforce our Terms of Service and legal agreements
- Comply with legal obligations and regulatory requirements
- Protect rights, property, and safety of users and our company
3.5 Marketing & Advertising
With your consent where required, we may use information for:
- Personalized advertising through Google AdSense
- Email marketing campaigns (opt-in only)
- Promotional offers and discounts
- Product recommendations based on usage patterns
4 Data Sharing & Disclosure
We Do Not Sell Personal Data
Important: Compress Document Pro does not sell, trade, or rent your personal information to third parties for marketing purposes.
4.1 Service Providers & Processors
We share data with trusted third-party service providers under strict confidentiality agreements:
| Service Provider | Purpose | Data Shared | Privacy Policy |
|---|---|---|---|
| Google Analytics | Website analytics, usage tracking | Anonymized usage data, IP (anonymized) | Google Privacy |
| Google AdSense | Advertising services | Non-PII, aggregated data | AdSense Privacy |
| Stripe/PayPal | Payment processing | Payment information, billing details | Stripe Privacy |
| Cloud Hosting | Data storage, server infrastructure | Account data, uploaded files (if saved) | Available on request |
| Email Services | Transactional emails, notifications | Email addresses, name | Available on request |
4.2 Legal Requirements
We may disclose information when required by law:
- To comply with legal process (subpoenas, court orders)
- To respond to government requests
- To enforce our Terms of Service
- To protect rights, property, or safety
- To investigate fraud or security issues
4.3 Business Transfers
In the event of a merger, acquisition, or sale of assets, user information may be transferred as a business asset. We will notify users and provide choices regarding their data.
4.4 Aggregated & Anonymized Data
We may share aggregated, anonymized data that cannot identify individuals for:
- Industry analysis and benchmarking
- Marketing and advertising purposes
- Business intelligence and research
- Partnership and collaboration opportunities
6 Data Security Measures
6.1 Security Architecture
We implement industry-standard security measures:
Encryption
SSL/TLS encryption for data in transit, AES-256 for data at rest
Access Controls
Role-based access, multi-factor authentication, least privilege principle
Firewalls & Protection
Web application firewalls, DDoS protection, intrusion detection
Backup & Recovery
Regular backups, disaster recovery plans, business continuity
6.2 Document Processing Security
Local Processing Advantage
Our unique local processing architecture provides enhanced security:
- No Server Exposure: Documents processed in browser, not on servers
- Reduced Attack Surface: Fewer points of vulnerability
- Immediate Deletion: Temporary files cleared after processing
- Client-Side Control: You control what leaves your device
6.3 Security Practices
- Regular Audits: Security assessments and penetration testing
- Employee Training: Security awareness and data protection training
- Incident Response: Documented procedures for security incidents
- Vulnerability Management: Regular updates and patch management
6.4 Security Limitations
While we implement robust security measures, no system is 100% secure. We cannot guarantee absolute security but commit to industry best practices.
7 Your Privacy Rights
7.1 GDPR Rights (EU/UK Users)
Right to Access
Request copies of your personal data
Right to Rectification
Correct inaccurate or incomplete data
Right to Erasure
Request deletion of your data ("Right to be Forgotten")
Right to Restrict
Limit processing of your data
Right to Portability
Receive your data in structured, machine-readable format
Right to Object
Object to processing based on legitimate interests
7.2 CCPA/CPRA Rights (California Users)
- Right to Know: What personal information is collected and how it's used
- Right to Delete: Request deletion of personal information
- Right to Opt-Out: Opt-out of sale of personal information (we don't sell data)
- Right to Non-Discrimination: Not be discriminated against for exercising rights
- Right to Correct: Correct inaccurate personal information
- Right to Limit: Limit use of sensitive personal information
7.3 Other Jurisdictional Rights
Depending on your location, you may have additional rights under:
- LGPD (Brazil): Similar to GDPR with additional transparency requirements
- PIPEDA (Canada): Consent-based data protection framework
- APP (Australia): Australian Privacy Principles compliance
- PDPA (Singapore): Consent, purpose limitation, and accountability
7.4 How to Exercise Your Rights
Request Process
To exercise your rights, please:
- Contact us at Yadavamarish11@gmail.com with your request
- Include "Privacy Rights Request" in the subject line
- Provide sufficient information to verify your identity
- Specify which right(s) you wish to exercise
Response Time: We respond within 30 days as required by law. We may extend this period for complex requests with notification.
8 Data Retention Policy
8.1 Retention Principles
We retain personal data only as long as necessary for the purposes outlined in this policy, unless a longer retention period is required by law.
8.2 Retention Periods
| Data Type | Retention Period | Basis |
|---|---|---|
| Account Information | Until account deletion + 30 days | Contract, Legal Requirement |
| Uploaded Documents (Cloud) | Until user deletion or 30 days after account closure | Service Provision |
| Local Processing Files | Not stored (processed locally) | Local Architecture |
| Payment Information | 7 years for tax/legal compliance | Legal Obligation |
| Analytics Data | 26 months (anonymized after) | Legitimate Interest |
| Support Communications | 3 years from last contact | Legitimate Interest |
| Marketing Data | Until consent withdrawal + 30 days | Consent |
8.3 Data Deletion Process
When data reaches its retention limit:
- Secure Deletion: Data is permanently deleted from active systems
- Backup Rotation: Backups are rotated according to schedule
- Anonymization: Some data may be anonymized for statistical purposes
- Verification: Deletion is verified through audit processes
9 International Data Transfers
9.1 Global Operations
As an online service, we operate globally with servers potentially located in multiple countries.
9.2 Transfer Mechanisms
We use approved transfer mechanisms for international data transfers:
- Standard Contractual Clauses (SCCs): EU-approved clauses for data transfers
- Adequacy Decisions: Transfers to countries with adequate protection
- Consent: Where applicable and required by law
- Derogations: Other legal bases for transfer when applicable
9.3 Data Localization
We comply with data localization requirements where applicable, including:
- Storing certain data within specific jurisdictions when required
- Implementing additional safeguards for cross-border transfers
- Providing transparency about data storage locations
10 Children's Privacy
Age Restrictions
Our Services are not directed to children under 16. We do not knowingly collect personal information from children under 16.
10.1 Age Verification
We do not actively verify user ages but rely on:
- User representations of age during account creation
- Parental consent mechanisms where applicable
- Age screening for certain services when required
10.2 Parental Controls
Parents and guardians can:
- Request review of child's collected information
- Request deletion of child's information
- Refuse further collection or use of child's information
- Contact us to exercise parental rights
10.3 COPPA Compliance
For users in the United States, we comply with the Children's Online Privacy Protection Act (COPPA) and do not knowingly collect information from children under 13.
11 Third-Party Services & Links
11.1 External Links
Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites.
11.2 Third-Party Integrations
We integrate with the following third-party services:
11.3 Social Media Integration
Social media features (share buttons, login) are governed by the privacy policies of the respective platforms.
12 Google AdSense Compliance
AdSense Program Policies
We comply with all Google AdSense policies, including:
12.1 Required Disclosures
- Third-Party Vendors: Use of third-party vendors including Google
- Cookie Usage: Use of cookies for personalized advertising
- User Consent: Mechanisms for user consent where required
- Opt-Out Options: Clear instructions for opting out
12.2 Personalized Advertising
We use personalized advertising through Google AdSense:
- Based on: User interests, demographics, browsing behavior
- Technologies: Cookies, device identifiers, location data
- Control: Users can control preferences through Ad Settings
12.3 User Choices & Controls
Opt-Out of Personalized Ads
Visit Google Ads Settings to control personalized advertising
Cookie Controls
Manage cookies through browser settings or our cookie banner
Device Controls
Reset advertising identifiers on mobile devices
Global Opt-Out
Use the Digital Advertising Alliance opt-out
12.4 AdSense-Specific Requirements
- Clear labeling of ads as "Advertisements"
- Prohibition of misleading ad implementations
- Compliance with ad placement policies
- Transparency about data collection for advertising
13 Policy Updates & Changes
13.1 Update Process
We may update this Privacy Policy periodically to reflect:
- Changes in our data practices
- New legal or regulatory requirements
- Service enhancements or new features
- Feedback from users and regulators
13.2 Notification Methods
We notify users of significant changes through:
Email Notification
Registered users receive email notifications for major changes
Website Notice
Prominent website banners for policy updates
Date Update
"Last Updated" date prominently displayed
13.3 Acceptance of Changes
Continued use of our Services after updates constitutes acceptance of the revised Privacy Policy.
14 Contact Information
Data Controller
Compress Document Pro
Operated by Amrish Yadav
Email Address
Yadavamarish11@gmail.com
For privacy inquiries and data requests
Physical Address
Manjhari Bazar, Tahabarpur
Azamgarh, Uttar Pradesh 276206
India
Phone Number
+91 98389 06467
Available Monday-Friday, 10AM-6PM IST
14.1 Data Protection Officer
For EU/UK GDPR compliance, our designated contact point is:
Amrish Yadav
Email: Yadavamarish11@gmail.com
14.2 Response Time
We aim to respond to all privacy inquiries within:
- General Inquiries: 2-3 business days
- Data Subject Requests: 30 days as required by law
- Urgent Matters: 24 hours for security incidents
15 Definitions & Interpretation
15.1 Key Definitions
Personal Data
Any information relating to an identified or identifiable natural person
Processing
Any operation performed on personal data (collection, storage, etc.)
Data Controller
The entity that determines the purposes and means of processing
Data Processor
The entity that processes data on behalf of the controller
Consent
Freely given, specific, informed, and unambiguous indication of agreement
Legitimate Interests
The interests of our business in conducting and managing our operations
15.2 Interpretation Rules
- References to legislation include amendments and replacements
- "Including" means including without limitation
- Headings are for convenience only and don't affect interpretation
- Singular includes plural and vice versa
Legal Compliance
This Privacy Policy is designed to comply with:
- General Data Protection Regulation (GDPR) - EU/UK
- California Consumer Privacy Act (CCPA/CPRA) - USA
- Information Technology Act, 2000 - India
- Google AdSense Program Policies
- Other applicable data protection laws
Last updated: February 1, 2026