Privacy Policy
Last updated: March 29, 2026
1. What we collect
Account information: When you register, we store your name, email address, and hashed password. If you sign in with Google, we receive your name, email, and profile picture from Google OAuth.
Payment information: Payments are processed by Razorpay. We store the transaction ID and payment status. We do not store your card number, UPI ID, or bank details. Razorpay handles all payment data under their own privacy policy.
Documents you upload: When you upload a document for processing, it is sent to our cloud-hosted OCR and AI services for text extraction and layout reconstruction. See Section 3 for details.
Usage data: We collect basic analytics like page visits and feature usage to improve the product. We do not track you across other websites.
2. What we store
Account data: Your name, email, hashed password, and wallet balance are stored in MongoDB (Azure Cosmos DB).
Processed documents: If you save a document to your history, the output is stored in Azure Blob Storage. Documents in history are subject to auto-deletion. If you do not save, the processed output is available only during your active session.
We do not build a database of user documents. We do not use your documents for training, analytics, or any purpose other than delivering the processed output to you.
3. Third-party services that process your data
To provide OCR, translation, and payment services, your data passes through the following third-party providers:
Cloud OCR Engine
Purpose: Text extraction and document structure mapping
Data shared: Your uploaded document images/PDFs are sent to a cloud OCR service for text extraction
AI Language Model
Purpose: Document layout reconstruction, translation, and text processing
Data shared: Extracted text and structural data are sent to an AI model for processing
Azure Blob Storage
Privacy policy →Purpose: Temporary storage of exported PDF/DOCX files
Data shared: Processed output files are stored temporarily for download
Azure Communication Services
Privacy policy →Purpose: Sending verification and notification emails
Data shared: Your email address is shared for email delivery
MongoDB (Azure Cosmos DB)
Privacy policy →Purpose: Database for user accounts, wallets, and document metadata
Data shared: Account information, transaction records, and document metadata
Razorpay
Privacy policy →Purpose: Payment processing
Data shared: Payment amount and order details. Card/UPI details are handled entirely by Razorpay
Google OAuth
Privacy policy →Purpose: Social login authentication
Data shared: Name, email, and profile picture when you choose to sign in with Google
4. Authentication
We offer two authentication methods: email/password registration and Google OAuth sign-in. Passwords are hashed using bcrypt before storage. We never store plain-text passwords.
Session tokens are managed via NextAuth.js and are stored as HTTP-only cookies in your browser.
5. Compliance
We do not currently hold SOC2, ISO 27001, HIPAA, or any formal security certifications. We are an early-stage product focused on building a reliable document processing service. If your use case requires certified compliance, please evaluate accordingly before uploading sensitive documents.
6. Your rights
You can request deletion of your account and all associated data at any time by contacting us at [email protected].
You can download or delete any saved documents from your history at any time through the application.
7. Contact
For any questions about this privacy policy, contact us at [email protected].