Last updated: 13th January 2021
User data is safely stored in Europe. The docduo core infrastructure is hosted in Ireland. The docduo plugin infrastructure is hosted in Frankfurt, Germany. User data is stored in our core infrastructure. We do not transfer user data outside of the EU.
We partner with cloudconvert.com to temporary and securely convert and optimize your contents. This additional temporary storage is fully compliant with GDPR and do safely delete contents up to one day.
1. Respect of Privacy
Here's what we do to protect user privacy:
Before or at the time of collecting personal information, we will identify the purposes for which information is being collected.
We will collect and use of personal information solely with the objective of fulfilling those purposes specified by us and for other compatible purposes, unless we obtain the consent of the individual concerned or as required by law.
We collect data about visitors of shared document using the docduo's viewer. This data is collected anonymously and is not directly bound to any identifiable user, whether it be its personal identity, or its network information.
We will only retain personal information as long as necessary for the fulfillment of those purposes.
We will collect personal information by lawful and fair means and, where appropriate, with the knowledge or consent of the individual concerned.
Personal data should be relevant to the purposes for which it is to be used, and, to the extent necessary for those purposes, should be accurate, complete, and up-to-date.
We will protect personal information by reasonable security safeguards against loss or theft, as well as unauthorized access, disclosure, copying, use or modification.
We will make readily available to customers information about our policies and practices relating to the management of personal information.
2. GDPR Policy
docduo strictly implements the GDPR regulation, that aims at protecting user data and providing a right to modify and delete such data, as well as to consent to data collection.
3. Viewer Cookie & IP Policy
Cookies are necessary for viewer functionalities; they are needed to restore the viewer session and messages of a viewer user when browsing between website pages and/or coming back on the website a few days after.
Cookies have a default expiration time of 6 months, which is renewed if and when the user comes back to the website and loads the viewer.
Cookies bind an user to a single session. If that session is a client, it is permanent (unless deleted by a website agent); otherwise the session is temporary and is destroyed 30 minutes after the last website access.
Cookies are not used for tracking purposes. They are solely used to bind an user to a server-side session storage, which is then used for security purposes, in the event either the user access a document with advanced security options (such as per-email access).
Cookies do not store the IP address of the visitor.
We are committed to conducting our business in accordance with these principles in order to ensure that the confidentiality of personal information is protected and maintained.