WorkWithPDF
Sign inSee pricing
← BackLegal

Privacy Policy

Effective: 1 April 2026  ·  Stipple AI Pty Ltd

WorkWithPDF is built on a single, non-negotiable principle: your documents never leave your device. This is not a policy choice — it is an architectural fact. Understanding this shapes everything else in this document.

1. The Core Technical Reality

Every PDF operation on WorkWithPDF — merging, splitting, compressing, converting, redacting, signing, annotating — runs entirely inside your web browser using WebAssembly and Web Workers. Your files are loaded into your browser's local memory, processed there, and the result is written back to your device. At no point is any file content, page content, or document data transmitted over a network connection to our servers or any third-party server.

We are technically incapable of seeing your files. This is not a promise we are making — it is a constraint imposed by how the software is built. You can independently verify this at any time by opening your browser's DevTools (F12 → Network tab) while using any tool and observing that zero file-related network requests occur.

2. Who We Are

WorkWithPDF is operated by Stipple AI Pty Ltd, an Australian proprietary limited company. For any privacy matter, contact us at gaurav@stipple.sh.

3. What We Do NOT Collect

To be unambiguous, the following data is never collected, transmitted, or stored by us:

  • The contents of any PDF or document you process
  • File names, file sizes, or metadata of your documents
  • Page counts, text content, or images within your files
  • Any output files you download
  • Your organisation's data, IP, or confidential information

This is true regardless of what tier you are on — free or paid.

4. What We Do Collect

4.1 Account Information

If you create an account, we collect your email address and optionally your name, managed via our authentication provider (Clerk). This is used solely to verify your licence and send transactional emails such as receipts and password resets.

4.2 Anonymised Usage Events

We record anonymised, aggregated events to understand which tools are used and to improve the product. An event looks like: “tool: merge-pdf, browser: Chrome, country: AU”. It contains no file content and no personally identifiable information. IP addresses used to derive country are not stored.

4.3 Payment Records

Payments are processed entirely by our third-party payment provider. We never see or store your card details. We retain only your email address, order ID, and amount paid for billing and support purposes.

4.4 Support Emails

If you email us, we retain that correspondence to respond to your enquiry and for up to 12 months thereafter. Please do not attach sensitive documents to support emails — we do not need them and they would be the only way your file content could ever reach us.

5. Cookies

We use two types of cookies:

  • Authentication session cookie — set by Clerk when you sign in. Strictly necessary; expires when you sign out or after 30 days.
  • Device ID cookie — a random identifier stored locally to enforce the 3-document limit on the free tier. It contains no personal information and is never sent to our servers in association with file content.

We use no advertising cookies, tracking pixels, or third-party marketing cookies of any kind.

6. How We Use Information

  • To authenticate your account and enforce your licence tier
  • To process payments and issue receipts
  • To respond to support requests
  • To improve the product through aggregated, anonymised analytics
  • To comply with our legal obligations

We do not sell, rent, or share your personal information with third parties for their own marketing or commercial purposes. Ever.

7. Sub-processors

We use a small number of third-party services that may handle limited personal data (never file content):

  • Clerk — authentication and session management
  • Payment processor — payment handling (card data never reaches us)
  • Vercel — hosting infrastructure for the web application

Each sub-processor is bound by contractual data processing agreements consistent with applicable privacy law.

8. Your Rights

Depending on your jurisdiction you may have the right to access, correct, delete, or export your personal data, and to object to or restrict certain processing. Because we hold very little personal data about you — only your email and payment record — these requests are straightforward to fulfil. Email us at gaurav@stipple.sh and we will respond within 30 days.

9. Data Retention

Account information is retained for as long as your account is active. Payment records are retained for 7 years as required by Australian tax law. Support correspondence is retained for 12 months. Anonymised analytics are retained indefinitely in aggregated form. You may request deletion of your account at any time.

10. Security

Because your files never leave your device, the largest attack surface in a conventional cloud-based service — the server holding your documents — does not exist here. For the personal data we do hold (email, payment records), we use HTTPS encryption in transit, strict access controls, and regular security reviews.

11. Children

WorkWithPDF is not directed at children under 16. We do not knowingly collect personal data from children under 16. Contact us immediately at gaurav@stipple.sh if you believe this has occurred.

12. International Transfers

Stipple AI Pty Ltd is based in Australia. Our sub-processors may operate infrastructure globally. Where personal data is transferred outside Australia or the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses.

13. Changes to This Policy

We may update this policy as the product evolves. We will post changes at workwithpdf.io/legal/privacy with a new effective date. For material changes we will notify you by email where practicable.

14. Contact

Privacy questions or requests: gaurav@stipple.sh
Stipple AI Pty Ltd, Australia

Privacy Policy | WorkWithPDF