Privacy Policy – PDFLocker | How We Protect Your Data

📅 Last Updated: January 1, 2025 — PDFLocker is built on a zero-data-collection principle. We process all PDF files client-side in your browser and never transmit your files or personal data to any server.

1. Overview and Our Core Privacy Promise

PDFLocker ("we," "our," or "us") operates the website at pdflocker.com (the "Service"). This Privacy Policy describes how we handle information in connection with your use of our Service.

The single most important thing to understand about PDFLocker is this: your PDF files are never uploaded to our servers. The PDF password protection tool processes your documents entirely within your web browser using client-side JavaScript. Your files, their contents, your passwords, and any document metadata never leave your device through our Service.

We designed PDFLocker this way deliberately, because we believe privacy-first architecture is more trustworthy than privacy policies alone. A privacy policy can be changed — but when encryption happens locally, no data transmission is technically possible.

2. Information We Do NOT Collect

To be absolutely transparent, here is what PDFLocker does not collect under any circumstances:

The contents of any PDF file you process
Any passwords you enter into the tool
File names, file sizes, or any file metadata
Any outputs (encrypted PDFs) generated by the tool
Your name, email address, or any personal identifiers (unless you voluntarily provide them via our Contact form)
Government identification, financial data, or sensitive personal information

3. Information We May Collect Automatically

Like virtually all websites, our web server may log certain standard technical information when you visit our site. This is standard web infrastructure behavior and includes:

IP Address: Your approximate geographic location (typically at the city or region level)
Browser and Device Information: Browser type, browser version, operating system, and device type
Page Access Logs: Which pages you visited, timestamps, and referring URLs
Performance Data: Page load times and error events for performance monitoring

This information is used solely for operational purposes — monitoring server health, diagnosing technical issues, and improving service performance. It is not linked to any personal identity and is not sold to third parties.

4. Cookies and Local Storage

PDFLocker uses minimal cookies strictly necessary for the operation of the website. We do not use tracking cookies, advertising cookies, or cross-site tracking technologies.

We may use browser local storage to save user preferences (such as UI settings) purely for your convenience. This data never leaves your browser and is not transmitted to us.

You can clear cookies and local storage at any time through your browser settings. Doing so will not affect the functionality of the PDF encryption tool.

5. Contact Form Data

If you choose to contact us via our Contact form, you may voluntarily provide your name, email address, and message content. This information is:

Used solely to respond to your inquiry
Never sold, rented, or shared with third-party marketers
Retained for a reasonable period to maintain communication records
Deleted upon request (see Your Rights, Section 9)

6. Third-Party Libraries and CDNs

PDFLocker loads the open-source pdf-lib library from a third-party CDN (Cloudflare). When your browser requests this script file, Cloudflare's servers may log standard request metadata (IP address, timestamp). This is standard CDN behavior outside our control. We recommend reviewing Cloudflare's privacy policy if you have specific concerns. We use CDN-hosted libraries solely for performance optimization and transparency — the libraries used are well-known, open-source, and widely audited by the security community.

7. Data Security

We implement appropriate technical and organizational measures to protect any information we do handle. Our website uses HTTPS encryption (TLS) for all communications. However, given that we do not collect or store your PDF files or passwords, the primary security architecture is the client-side processing model itself — it eliminates the risk of server-side data breaches for your documents by design.

8. Children's Privacy

PDFLocker is not directed to children under the age of 13. We do not knowingly collect personally identifiable information from children under 13. If you believe your child has provided us with personal information, please contact us and we will promptly delete it.

9. Your Privacy Rights (GDPR, CCPA, and Global)

Depending on your location, you may have the following rights regarding your personal data:

Right to Access: Request a copy of any personal data we hold about you
Right to Rectification: Request correction of inaccurate personal data
Right to Erasure ("Right to Be Forgotten"): Request deletion of your personal data
Right to Portability: Request a machine-readable copy of your data
Right to Object: Object to specific processing activities
Right to Withdraw Consent: Withdraw consent at any time for consent-based processing

To exercise any of these rights, contact us at privacy@pdflocker.com. Given our minimal data collection, most requests will be satisfied with confirmation that we hold no personal data beyond what you voluntarily submitted via contact forms.

California Residents (CCPA): We do not sell your personal information. You have the right to opt out of the sale of personal data, though no such sale occurs.

10. International Data Transfers

Our web servers may be located in countries outside your jurisdiction. Standard server access logs (non-PDF, non-personal content) may be processed in these locations. We maintain appropriate safeguards for any such transfers in compliance with applicable law.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. We will post the updated Privacy Policy on this page with a revised "Last Updated" date. We encourage you to review this page periodically. Continued use of the Service after changes are posted constitutes your acceptance of the revised policy.

12. Contact Us Regarding Privacy

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: privacy@pdflocker.com
Contact Form: pdflocker.com/contact
Response Time: We aim to respond to all privacy inquiries within 30 days

We are committed to working with you to resolve any privacy concerns. If you believe we have not adequately addressed your concerns, you may have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.