Privacy Policy

1. Introduction

DocuRift ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our document processing API and related services.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Email address
• Name (optional)
• Organization name (optional)
• Password (stored securely using industry-standard hashing)

2.2 Documents You Upload

When you use our API to process documents:

• Documents are temporarily stored for processing (typically less than 24 hours)
• Extracted data is stored according to your retention preferences
• We do not use your documents to train AI models
• You can request deletion of your data at any time

2.3 Usage Data

We automatically collect certain information about your use of our services, including API calls, processing times, error rates, and general usage patterns. This helps us improve our services and troubleshoot issues.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our document processing services
• Process your API requests and return extracted data
• Send you service-related communications and updates
• Monitor and analyze usage patterns to improve user experience
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations

4. Data Security

We implement industry-standard security measures to protect your data:

• All data is encrypted in transit using TLS 1.3
• Documents are encrypted at rest using AES-256
• API keys are hashed using SHA-256
• Access to systems is restricted and monitored
• Regular security audits and penetration testing

5. Data Retention

We retain your data only as long as necessary to provide our services. Uploaded documents are automatically deleted within 24 hours of processing unless you explicitly request longer retention. Account data is retained until you delete your account or request data deletion.

6. Third-Party Services

We may use third-party services for:

• Cloud infrastructure (for hosting and storage)
• AI processing (for document extraction)
• Payment processing (for credit purchases)
• Email delivery (for transactional emails)

These providers are bound by data processing agreements and are only given access to information necessary to perform their services.

7. Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your data
• Export your data in a portable format
• Object to certain processing activities
• Withdraw consent where applicable

To exercise these rights, contact us at privacy@docurift.com.

8. Cookies

We use essential cookies to maintain your session and preferences. We do not use tracking cookies or third-party advertising cookies. You can disable cookies in your browser settings, but this may affect functionality.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: