GDPR Compliance
Last updated: May 26, 2026
PDFBuddy is committed to complying with the General Data Protection Regulation (GDPR). This page outlines how we protect your rights as an EU data subject.
1. Your Rights Under GDPR
As an EU resident, you have the following rights regarding your personal data:
- Right of Access: Request a copy of all personal data we hold about you.
- Right to Rectification: Request correction of inaccurate personal data.
- Right to Erasure: Request deletion of your account and all associated data.
- Right to Portability: Request export of your data in a machine-readable format.
- Right to Object: Object to processing of your data for specific purposes.
2. Data Processing Basis
We process personal data based on:
- Contract: To provide PDF processing services you request.
- Consent: For optional analytics and marketing communications.
- Legitimate Interest: For security monitoring and fraud prevention.
3. Data Retention
- Uploaded files: Automatically deleted after 2 hours.
- Account data: Retained until you delete your account.
- Server logs: Retained for 30 days for security purposes.
4. International Transfers
Your data may be processed in data centers outside the EU. We ensure adequate protection through Standard Contractual Clauses (SCCs) and compliance with applicable regulations.
5. Data Protection Officer
For GDPR-related requests, contact our Data Protection Officer at dpo@pdfforge.io.