Privacy Policy

Effective Date: November 23, 2025

1. Introduction

InkToPath ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our PDF and image to SVG conversion service (the "Service").

By using the Service, you consent to the data practices described in this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.

2. Information We Collect

Personal Information:

Account Information: Email address, password (encrypted), and username when you register for an account
Payment Information: Payment details are processed securely through Stripe. We do not store full credit card numbers on our servers
Subscription Information: Your chosen subscription tier, payment history, and quota usage

Conversion Data:

Uploaded Files: PDF and image files you upload for conversion
Conversion History: Records of your conversions, including file names, conversion dates, and file sizes
Output Files: SVG files generated from your conversions

Technical Information:

Log Data: IP addresses, browser type, operating system, and access times
Cookies: Authentication cookies and session data to maintain your login state
Usage Data: Information about how you interact with the Service

3. How We Use Your Information

We use the information we collect for the following purposes:

Service Delivery: To provide, maintain, and improve the conversion service
Account Management: To create and manage your account, authenticate users, and process subscriptions
Payment Processing: To process payments and manage billing through Stripe
Quota Enforcement: To track and enforce conversion quotas based on your subscription tier
Communication: To send you service-related emails, including password resets, quota notifications, and important updates
Security: To detect, prevent, and address technical issues, fraud, and abuse
Legal Compliance: To comply with applicable laws and regulations

4. Data Storage and Retention

            File Retention Policy:
            Guest Users (No Account): Uploaded files and converted SVG files are automatically deleted after 7 days
Subscribers (Plus/Pro): Files are retained for 30 days from the conversion date
Account Data: Account information is retained as long as your account is active
Inactive Accounts: Accounts with no login activity for 12 consecutive months may be deleted

        

You can request deletion of your files at any time by contacting us. Upon account deletion, all associated files and conversion history will be permanently deleted within 30 days.

5. Third-Party Services

We use the following third-party services:

Stripe: For payment processing. Stripe's privacy policy can be found at https://stripe.com/privacy
Email Service Provider: For sending transactional emails (password resets, notifications). We do not share your email with marketing third parties

These third parties have their own privacy policies governing their use of your information. We are not responsible for their privacy practices.

6. Data Security

We implement industry-standard security measures to protect your information, including:

Encryption of passwords using ASP.NET Identity framework
HTTPS encryption for all data transmitted between your browser and our servers
Secure storage of files on our servers
Regular security audits and updates

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security.

7. Cookies and Tracking

We use cookies for essential functions:

Authentication Cookies: To keep you logged in and maintain your session
Preference Cookies: To remember your settings (e.g., dark mode preference)

You can configure your browser to refuse cookies, but this may limit your ability to use certain features of the Service.

8. Your Rights and Choices

Depending on your location, you may have the following rights:

Access: Request a copy of the personal information we hold about you
Correction: Request correction of inaccurate or incomplete information
Deletion: Request deletion of your account and associated data
Data Portability: Request a copy of your conversion history in a portable format
Opt-Out: Unsubscribe from non-essential emails (note: we will still send service-critical emails)
Withdrawal of Consent: Withdraw consent for data processing where consent is the legal basis

To exercise any of these rights, please contact us using the information in the "Contact Us" section below.

9. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

Service Providers: With third-party vendors who perform services on our behalf (e.g., Stripe for payments)
Legal Requirements: When required by law, court order, or government request
Protection of Rights: To protect our rights, property, or safety, or that of our users or the public
Business Transfers: In connection with a merger, acquisition, or sale of assets (you will be notified via email)

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those of your country. By using the Service, you consent to such transfers.

11. Children's Privacy

The Service is not intended for individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected information from a child under 13, we will take steps to delete such information promptly.

12. California Privacy Rights (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

Right to know what personal information is collected
Right to know whether personal information is sold or disclosed and to whom
Right to say no to the sale of personal information (we do not sell personal information)
Right to access your personal information
Right to request deletion of personal information
Right to equal service and price, even if you exercise your privacy rights

13. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

Legal basis for processing: Consent, contract performance, and legitimate interests
Right to withdraw consent at any time
Right to lodge a complaint with a supervisory authority
Right to data portability
Right to object to processing based on legitimate interests

14. Do Not Track Signals

Our Service does not currently respond to "Do Not Track" signals from browsers. We do not track users across third-party websites.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of any material changes by:

Posting the updated Privacy Policy on this page with a new "Effective Date"
Sending an email notification to your registered email address

Your continued use of the Service after such changes constitutes your acceptance of the updated Privacy Policy.

16. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@inktopath.com
Response Time: We aim to respond to all privacy inquiries within 30 days

17. Summary of Key Points

            ✓ We collect email, payment info (via Stripe), and conversion data
✓ Files are auto-deleted: 7 days (guests), 30 days (subscribers)
✓ We do not sell your personal information
✓ You can request access, correction, or deletion of your data
✓ We use industry-standard security measures
✓ Payment processing handled securely by Stripe
✓ GDPR and CCPA compliant

        

Return to Home | Terms of Service