Privacy Policy

• Account information. When you sign in with Google, we receive your email address, name, and Google account identifier from Google OAuth — used only to create and secure your account.
• Documents you submit. PDFs and related files you upload, plus derived data (extracted text, per-page quality scores, processing metadata).
• Usage & billing data. Jobs run, pages processed, API key usage, and amounts billed.
• Technical data. IP address, browser/user-agent, and request logs used for security, abuse prevention, and diagnostics.
• Cookies. A single session cookie to keep you signed in. No third-party advertising or tracking cookies.

• To provide, operate, and secure the Service and process your documents.
• To authenticate you, manage API keys, and prevent abuse.
• To meter usage and process payments.
• To provide support and improve reliability.

We do not sell your data, and we do not use your uploaded documents or their contents to train AI/ML models.

Uploaded documents and their outputs are retained only as long as needed to deliver your result and per your account's retention setting (default: automatic deletion within 24 hours). Documents are encrypted in transit (TLS) and at rest. You may delete a document or your account at any time.

Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including its Limited Use requirements. We request only the basic profile and email scopes needed to sign you in, use that data solely for authentication and account management, and never transfer, sell, or advertise with it.

We share data only with service providers ("subprocessors") that help us operate the Service, under contractual confidentiality and data-protection obligations — cloud hosting and storage (Cloudflare), our payment processor, and the OCR/AI inference providers used to process documents. We do not sell personal information. See the subprocessor list.

We use encryption in transit and at rest, scoped access controls, hashed API keys, and short retention windows. No method of transmission or storage is 100% secure, but we follow industry-standard practices. More in our Security overview.

Depending on your location (including under GDPR and CCPA/CPRA), you may have rights to access, correct, export, or delete your personal data, and to object to or restrict certain processing. Exercise these in-product or by contacting us; we respond within the timeframes required by law.

We may process and store data in countries other than yours. Where required, we use appropriate safeguards for international transfers.

The Service is not directed to children under 16, and we do not knowingly collect their personal information.

We may update this Policy from time to time. Material changes will be reflected by updating the "Last updated" date above and, where appropriate, by additional notice.

Questions or requests: privacy@searchlayerpdf.com. See also our Terms of Service.