Redactorr
Redactorr
100% local • browser-only
Legal

Privacy Policy

Last updated: December 15, 2024

Our Core Privacy Promise

Your documents never leave your device. Redactorr's local runtime processes all sensitive data on your machine. We cannot see, access, or store your original documents.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Email address
  • Name (optional)
  • Authentication data (via Clerk)
  • Billing information (via Stripe, if you subscribe)

1.2 Usage Data

We collect anonymized, aggregate usage metrics:

  • Number of documents processed (count only)
  • File types used (e.g., "PDF", not content)
  • Feature usage (e.g., "custom patterns enabled")
  • Error reports (without document content)

1.3 What We Do NOT Collect

  • Your document contents
  • The sensitive data you redact
  • Token mappings
  • Original values of redacted data
  • Any PII from your documents

2. How Your Data is Processed

Local Processing

All document sanitization happens locally on your machine using our local runtime.

Encrypted Storage

Token mappings are stored encrypted on your device using AES-256 encryption.

No Cloud Upload

Documents are never uploaded to our servers. Only the redacted output can leave your device.

3. How We Use Information

We use collected information to:

  • Provide and maintain the service
  • Process payments and manage subscriptions
  • Send service updates and security alerts
  • Improve our detection patterns and accuracy
  • Respond to support requests

4. Data Sharing

We share data only with:

  • Clerk - Authentication services
  • Stripe - Payment processing
  • Vercel - Web hosting (control plane only)

We never sell your data. We never share document contents because we don't have access to them.

5. Data Retention

  • Account data: Retained while your account is active
  • Usage metrics: Anonymized and retained for 2 years
  • Local token mappings: Stored on your device, you control deletion
  • Billing records: Retained as required by law (typically 7 years)

6. Your Rights

You have the right to:

  • Access your account data
  • Correct inaccurate data
  • Delete your account
  • Export your data
  • Opt out of marketing communications

To exercise these rights, email us at privacy@redactorr.com

7. Security

We implement industry-standard security measures:

  • HTTPS encryption for all communications
  • AES-256 encryption for local storage
  • Egress guard to prevent data exfiltration
  • Regular security audits
  • SOC 2 compliance (in progress)

8. Cookies

We use essential cookies for:

  • Authentication session management
  • Security tokens

We do not use tracking cookies or third-party analytics that track individual users.

9. Children's Privacy

Redactorr is not intended for users under 16. We do not knowingly collect data from children.

10. Changes to This Policy

We may update this policy. Significant changes will be communicated via email or in-app notification.

11. Contact Us

Questions about this policy? Contact us at:

privacy@redactorr.com