Privacy Policy

RemeDocs is a PDF accessibility scanning and remediation platform. This policy explains what data we collect, why we collect it, and what we do with it. We've written it to be readable, not to bury you in legalese.

1. Information We Collect

Account information. When you sign up, we collect your name, email address, and optionally your company or organization name.

Uploaded PDF files. When you upload a document for scanning or remediation, we store that file so we can process it and make the results available to you.

Usage data. We collect records of the scans you run, their results (accessibility scores, issue counts), and general product usage. This helps us improve the service and calculate your monthly scan usage against your plan limits.

Billing information. Payments are processed by Stripe. We never see or store your raw card number. We do store Stripe customer IDs and subscription status so we can manage your account.

Contact form submissions. If you reach out via our contact form, we store the name, email, company, and message you provide.

Error and performance data. We use Sentry to capture errors and performance issues. This may include anonymized technical context such as browser type and the page where an error occurred. We don't intentionally send personal data to Sentry.

2. How We Use Your Information

• To provide, operate, and improve the RemeDocs service
• To send transactional emails (scan confirmations, billing receipts, password resets) via Resend
• To enforce plan limits (monthly scan counts)
• To respond to contact form inquiries
• To diagnose bugs and improve reliability (via Sentry)
• To understand aggregate usage patterns and improve the product (via Plausible)

We do not use your data for advertising. We do not sell your data. We do not share it except as described in Section 4.

3. Data Storage and Security

Your account data is stored in a managed PostgreSQL database on DigitalOcean. Your uploaded PDFs and remediated output files are stored in DigitalOcean Spaces (object storage, NYC3 region). All data is encrypted in transit (TLS) and at rest.

Access to production systems is restricted to authorized personnel. We follow reasonable security practices, but no system is perfectly secure — if you have a security concern, please email [email protected].

4. Data Retention

We retain different types of data for different periods:

• Account data — retained while your account is active. After account closure, your data is deleted within 30 days.
• PDF files — original uploaded PDFs are deleted after 90 days. Remediated PDFs are available for download for 30 days after processing.
• Usage logs — retained for 12 months for security and debugging purposes, then anonymized.
• Payment data — handled by Stripe and subject to Stripe's retention policy.

5. Your Rights

You have the following rights regarding your personal data:

• Right to access — you can request a copy of the personal data we hold about you.
• Right to delete — you can request deletion of your account and all associated data.
• Right to export — you can download your data, including remediated PDFs, from your dashboard.
• Right to opt out — you can opt out of marketing communications at any time.

California residents (CCPA): You have the right to know what personal data we collect, the right to delete your data, and the right to opt out of the sale of personal data. Note: RemeDocs does not sell personal data.

EU/EEA residents (GDPR): You have additional rights including the right of access, rectification, erasure, data portability, and objection to processing. You also have the right to lodge a complaint with your local data protection supervisory authority.

To exercise any of these rights, email [email protected]. We will respond within 30 days.

6. Third-Party Services

We use the following third-party services to operate RemeDocs. Each has its own privacy policy:

• Stripe — Payment processing. stripe.com/privacy
• Anthropic (Claude AI) — AI models used to analyze PDF content and generate accessibility reports. Document content is sent to Anthropic's API for processing. anthropic.com/privacy
• DigitalOcean — Cloud infrastructure (database, file storage, hosting). digitalocean.com/legal/privacy-policy
• Resend — Transactional email delivery. resend.com/legal/privacy-policy
• Plausible Analytics — Privacy-friendly website analytics. No cookies set. No personal data collected. Aggregate traffic data only. plausible.io/privacy
• Sentry — Error tracking and performance monitoring. sentry.io/privacy

7. Cookies and Tracking

The RemeDocs marketing site uses Plausible Analytics, which is cookie-free and does not collect personal data — no cookie banner is needed.

The RemeDocs app (app.remedocs.com) uses a session cookie to keep you logged in. This is a strictly necessary cookie required for the service to function.

8. Data Sharing

We do not sell, rent, or trade your personal information. We share data only with the third-party service providers listed above, and only to the extent necessary to operate the service.

We may disclose information if required by law, court order, or to protect the rights, property, or safety of RemeDocs or its users.

9. Children's Privacy

RemeDocs is not directed to children under 18. We do not knowingly collect personal information from minors. If you believe a minor has created an account, please contact us and we'll remove it promptly.

10. Changes to This Policy

We may update this policy from time to time. When we do, we'll update the effective date at the top of this page. If the changes are significant, we'll notify you via email. Continued use of the service after changes are posted constitutes acceptance of the updated policy.

11. Contact Us

Questions about this policy? Email us at [email protected].