Privacy Policy
Last updated: March 16, 2026
ThePDF ("we," "us," or "our") operates the website the-pdf.com. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our free PDF tools.
1. Information We Collect
1.1 Data You Process with Our Tools
Your data stays on your device. The vast majority of tools on ThePDF process data entirely in your browser using JavaScript. This means:
- Your input data (text, files, images) is never uploaded to our servers
- We cannot see, access, or store what you process
- Your privacy is protected by design β not just by policy
- When you close the browser tab, your processed data is gone
1.2 Automatically Collected Information
When you visit our website, certain information is collected automatically:
- Log Data: IP address, browser type, operating system, referring URLs, pages visited, date/time stamps
- Device Information: Device type, screen resolution, language preference
- Usage Data: Pages visited, time spent on pages, click patterns (via analytics)
1.3 Cookies and Tracking Technologies
We use the following types of cookies:
| Type | Purpose | Provider |
|---|---|---|
| Essential | Theme preference, cookie consent | ThePDF |
| Analytics | Site usage statistics | Google Analytics |
| Advertising | Display relevant ads | Google AdSense |
1.4 Information You Provide
If you contact us via email, we collect your email address and message content solely to respond to your inquiry.
2. How We Use Your Information
- To provide, maintain, and improve our free tools and website
- To analyze site usage patterns and optimize user experience
- To respond to your support or feedback inquiries
- To display advertisements that help keep our tools free (via Google AdSense)
- To detect and prevent technical issues or abuse
3. Third-Party Services
We integrate the following third-party services, each with their own privacy policies:
- Google Analytics (Privacy Policy) β Website traffic analysis
- Google AdSense (Ad Policy) β Contextual and personalized advertising
- Cloudflare (Privacy Policy) β CDN, DDoS protection, DNS
- Google Fonts (Privacy FAQ) β Web font delivery
4. Google AdSense and Personalized Advertising
We use Google AdSense to display advertisements on our website. Google AdSense may:
- Use cookies to serve ads based on your prior visits to our website or other websites
- Use the DoubleClick cookie to enable interest-based advertising
- Allow third-party vendors to serve ads using cookies
You can opt out of personalized advertising by visiting Google's Ads Settings or aboutads.info.
5. Data Retention
We retain automatically collected data (analytics, logs) for a maximum of 26 months. Contact email correspondence is retained for up to 12 months after the last communication. Tool processing data is never retained β it exists only in your browser during your session.
6. Data Security
We implement appropriate technical and organizational measures to protect your information, including:
- HTTPS encryption for all data in transit
- Client-side processing to minimize data exposure
- Regular security reviews of our infrastructure
- Cloudflare protection against DDoS and malicious traffic
However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
7. Your Rights Under GDPR (European Users)
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have the following rights under the General Data Protection Regulation (GDPR):
- Right of Access β Request a copy of the personal data we hold about you
- Right to Rectification β Request correction of inaccurate data
- Right to Erasure β Request deletion of your personal data ("right to be forgotten")
- Right to Restriction β Request we limit processing of your data
- Right to Data Portability β Receive your data in a structured, machine-readable format
- Right to Object β Object to processing based on legitimate interests or direct marketing
- Right to Withdraw Consent β Withdraw consent at any time where processing is based on consent
Our legal basis for processing personal data includes: legitimate interest (analytics to improve our service), consent (cookies, advertising), and compliance with legal obligations.
To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.
8. Your Rights Under CCPA (California Residents)
If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights:
- Right to Know β What personal information we collect, use, disclose, and sell
- Right to Delete β Request deletion of personal information we've collected
- Right to Opt-Out β Opt out of the sale of personal information (we do not sell personal information)
- Right to Non-Discrimination β We will not discriminate against you for exercising your rights
We do not sell your personal information. We may share anonymized, aggregated data with analytics providers, but this cannot identify you individually.
To exercise your CCPA rights, contact us at [email protected].
9. International Data Transfers
Our servers are located in the United States. If you access our website from outside the US, please be aware that your information may be transferred to, stored, and processed in the US, which may have different data protection laws than your jurisdiction.
10. Children's Privacy
Our services are not directed to children under 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child, we will take steps to delete it promptly. If you believe a child has provided us with personal data, please contact us.
11. Do Not Track
Some browsers offer a "Do Not Track" (DNT) setting. We currently do not respond to DNT signals, as there is no industry standard for compliance. However, you can opt out of tracking through the cookie consent banner or browser settings.
12. Changes to This Policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top indicates when the latest changes were made. Continued use of our website after changes constitutes acceptance of the updated policy. We encourage you to review this page periodically.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
- Email: [email protected]
- Website: Contact Page
For GDPR-related inquiries, you may also lodge a complaint with your local data protection authority.