DocuAlly

Privacy Policy

Your privacy is fundamental to our mission. This policy explains how we collect, use, and protect your information with enterprise-grade security.

Last updated: September 13, 2025

Our Commitment to Privacy

At DocuAlly, we understand that your documents contain sensitive and valuable information. We are committed to protecting your privacy and maintaining the confidentiality of your data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our professional document management platform.

Information We Collect

  • Account information (name, email, company details)
  • Document files you upload for processing
  • Usage analytics and performance metrics
  • Technical data (IP address, browser type, device info)
  • Communication records with our support team

How We Use Your Information

  • Provide document processing and management services
  • Improve our AI-powered tools and features
  • Communicate about your account and our services
  • Ensure platform security and prevent unauthorized access
  • Comply with legal obligations and industry standards

Data Security & Protection (Honest Approach)

  • Industry-standard HTTPS/TLS encryption (not "military-grade" claims)
  • Standard AES-256 encryption for data storage
  • Regular security reviews within our budget constraints
  • Multi-factor authentication available for user accounts
  • Cloud provider security with standard monitoring
  • Honest disclosure: No system is 100% secure despite best efforts

Your Privacy Rights

  • Access and review your personal data
  • Correct or update inaccurate information
  • Delete your account and associated data
  • Export your data in portable formats
  • Opt-out of marketing communications

Data Sharing & Disclosure

  • We never sell your personal information
  • Your documents are not used to train AI models
  • Limited sharing with trusted service providers only
  • Legal disclosure only when required by law
  • Explicit consent required for any other sharing

International Data Transfers

  • Data processed in secure, certified facilities
  • GDPR compliance for European Union users
  • Adequate protection measures for all transfers
  • Standard contractual clauses where applicable
  • Regular compliance monitoring and audits

Our Transparency Commitment

  • We clearly distinguish between available features (12 tools) and pending features (38 tools)
  • AI features are under legal review - we do not collect AI training data until activated
  • We use standard security practices, not inflated "military-grade" claims
  • Data retention periods are clearly defined by subscription tier
  • We disclose all third-party services and their data access levels
  • Privacy policy updates are communicated transparently with change summaries

Data Retention

Account Data

We retain your account information for as long as your account is active or as needed to provide you services. You can delete your account at any time.

Document Data

Processed documents are automatically deleted after 30 days unless you choose to save them. Saved documents are retained until you delete them or close your account.

Data Processing Risk Disclosures

AI Tool Limitations & Data Processing Risks

AI Processing Accuracy: When AI features become available, they may produce inaccurate, incomplete, or biased results. AI models can misinterpret document content, generate false information, or fail to understand context properly.

Data Training Risks: AI models may inadvertently learn patterns from your documents that could affect future processing. While we implement safeguards, complete isolation of training data cannot be guaranteed.

Content Interpretation: AI tools may misinterpret sensitive, confidential, or proprietary information in your documents. Users are responsible for reviewing all AI-generated outputs before relying on them.

Language Processing Limitations: AI translation and summarization tools may lose nuance, context, or critical information, especially in technical, legal, or medical documents.

User Responsibility for Document Content

Content Legality: You are solely responsible for ensuring that all documents you upload and process comply with applicable laws, regulations, and third-party rights. DocuAlly cannot verify the legality or appropriateness of your content.

Sensitive Information: You assume full responsibility for any sensitive, confidential, or proprietary information contained in your documents. This includes personal data, trade secrets, financial information, medical records, or legal documents.

Third-Party Rights: You are responsible for ensuring you have the right to process, modify, or share any documents you upload. This includes copyright, trademark, privacy rights, and contractual obligations.

Compliance Requirements: If your documents are subject to specific regulatory requirements (HIPAA, GDPR, SOX, etc.), you are responsible for ensuring our processing methods meet those requirements.

Data Processing & Security Risks

Temporary Storage Risks: Documents are temporarily stored during processing and may be vulnerable to unauthorized access, system failures, or data breaches during this period.

Third-Party Dependencies: Our services rely on third-party cloud providers and APIs. We cannot guarantee the security practices or availability of these external services.

Data Transmission: While we use encryption, data transmission over the internet carries inherent risks. Complete security cannot be guaranteed during upload, processing, or download.

System Vulnerabilities: Despite security measures, our systems may contain unknown vulnerabilities that could be exploited by malicious actors.

Human Error: Our staff may inadvertently access, modify, or disclose your data due to human error, despite training and access controls.

Required User Acknowledgment

Risk Acceptance: By using DocuAlly, you acknowledge and accept all risks associated with document processing, including but not limited to data loss, corruption, unauthorized access, or misprocessing.

No Guarantees: We provide no guarantees regarding the accuracy, completeness, or security of document processing. All services are provided "as is" without warranties.

Independent Verification: You agree to independently verify all processing results and not rely solely on our tools for critical business, legal, or personal decisions.

Backup Responsibility: You are responsible for maintaining backups of all important documents before processing. DocuAlly is not responsible for data loss or corruption.

Cookies and Tracking

We use cookies and similar technologies to enhance your experience:

Essential Cookies

Required for basic site functionality and security

Analytics Cookies

Help us understand usage patterns and improve our service

Preference Cookies

Remember your settings and preferences

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

Questions About Privacy?

If you have any questions about this Privacy Policy or our privacy practices, please don't hesitate to contact us.

Email

privacy@docually.com

Data Protection Officer

dpo@docually.com

Support

support@docually.com

Contact UsView Security