Privacy at a Glance
🔒
Zero Third-Party Sharing
Your documents are never sent to OpenAI, Google, or any external AI service. All processing happens in our secure, isolated environment.
🛡️
End-to-End Encryption
Documents are encrypted in transit and at rest using AES-256 encryption. Only you have access to your data and results.
🏠
On-Premise Available
For maximum security, deploy KompareDocs in your own environment. Complete control over data processing and storage.
🗑️
Automatic Data Deletion
Documents and analysis results are automatically deleted according to your retention preferences. No permanent storage.
Information We Collect
Documents and Content
- Uploaded Documents: We temporarily process the documents you upload for analysis. These are automatically deleted according to your retention settings.
- Analysis Results: We store the results of document analysis for the duration specified in your account settings (default: 30 days).
- User-Defined Rules: Custom comparison rules and settings you create are stored to improve your experience.
Account Information
- Contact Details: Email address, name, and company information for account management.
- Billing Information: Payment details processed securely through Stripe (we never store credit card numbers).
- Usage Metrics: Aggregated statistics about feature usage to improve our service (no document content is included).
Technical Information
- Log Data: Server logs for security and performance monitoring (IP addresses are anonymized after 30 days).
- Performance Data: Response times and system performance metrics to ensure optimal service.
How We Use Your Information
Document Processing
- Analyze documents using our AI models (processed locally, never sent to third parties)
- Generate comparison reports and identify conflicts
- Apply custom rules and preferences you've configured
- Provide quick summaries and risk assessments
Service Improvement
- Improve AI model accuracy through aggregated, anonymized feedback
- Enhance user interface and experience based on usage patterns
- Develop new features based on user needs
Communication
- Send important account and service updates
- Provide customer support when requested
- Share relevant product updates (you can opt out anytime)
Data Security
Encryption and Protection
- Encryption in Transit: All data is encrypted using TLS 1.3 during transmission
- Encryption at Rest: Documents and data are encrypted using AES-256 encryption when stored
- Access Controls: Multi-factor authentication and role-based access controls protect your account
- Network Security: VPC isolation, firewalls, and intrusion detection systems protect our infrastructure
Compliance and Certifications
- SOC 2 Type II: Annual third-party security audits
- GDPR Compliant: Full compliance with European privacy regulations
- HIPAA Available: Business Associate Agreements available for healthcare customers
- ISO 27001: Information security management system certification
Data Centers
- Primary infrastructure hosted in certified data centers (AWS, Azure)
- Data residency options available for regulatory compliance
- Regular security assessments and penetration testing
- 24/7 security monitoring and incident response
Data Retention and Deletion
Document Retention
- Default Retention: Documents are automatically deleted after 30 days
- Custom Retention: You can set retention periods from 1 day to 1 year
- Immediate Deletion: Delete documents manually at any time
- Analysis Results: Stored for the same period as source documents
Account Data
- Active Accounts: Account information retained while your subscription is active
- Account Closure: All data deleted within 90 days of account closure
- Legal Requirements: Some data may be retained longer for legal compliance (e.g., billing records)
Sharing and Disclosure
We Do NOT Share Your Documents With:
- OpenAI or any other external AI service providers
- Third-party analytics companies
- Marketing or advertising partners
- Government agencies (except when legally required)
- Other KompareDocs customers
Limited Sharing
- Service Providers: Trusted partners who help operate our service (under strict confidentiality agreements)
- Legal Requirements: When required by law or to protect our rights
- Business Transfers: In the event of a merger or acquisition (with advance notice)
Your Rights and Controls
Access and Control
- Data Access: View all data we have about you
- Data Export: Download your documents and analysis results
- Data Deletion: Delete specific documents or your entire account
- Data Correction: Update or correct your account information
Privacy Settings
- Retention Controls: Set custom document retention periods
- Processing Location: Choose where your data is processed (Enterprise plans)
- Communication Preferences: Control what emails you receive
- Analytics Opt-out: Opt out of aggregated usage analytics
Enterprise Controls
- Single Sign-On (SSO): Integrate with your identity provider
- SCIM Provisioning: Automate user management
- Audit Logs: Complete audit trail of all actions
- Data Loss Prevention: Additional controls for sensitive data
International Data Transfers
KompareDocs operates globally while respecting local privacy laws:
- EU Data: Processed within the EU or with adequate safeguards
- Standard Contractual Clauses: Used for international transfers
- Data Residency: Enterprise customers can specify processing locations
- Local Compliance: We comply with local privacy laws in all jurisdictions
Contact Us
Questions about privacy or data handling? We're here to help:
Updates to This Policy
We may update this privacy policy from time to time. When we do:
- We'll notify you via email for material changes
- The updated policy will be posted on this page
- The "Last Updated" date will be revised
- Continued use of the service constitutes acceptance
Last Updated: September 16, 2024