Privacy Policy

Effective Date: January 1, 2025 | Version 1.0

DeadlineFTP.com ("DeadlineFTP," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, web application, mobile application, desktop application, and related services (collectively, the "Service").

This policy complies with applicable privacy laws including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), and other applicable data protection regulations.

1. Information We Collect

1.1 Information You Provide

We collect information you voluntarily provide when using the Service:

Account Information: Name, email address, and password when you create an account
Organization Information: Organization name and details when creating an organization account
Payment Information: Billing address and payment card details (processed securely by Stripe)
Photo Content: Images and associated metadata you upload to the Service
Communications: Information you provide when contacting our support team

1.2 Information Collected Automatically

When you access the Service, we automatically collect:

Device Information: Device type, operating system, browser type, and version
Usage Data: Features used, actions taken, and time spent on the Service
Log Data: IP address, access times, and referring URLs
Connection Information: Information about your FTP and QUIC connections to our servers

1.3 Information from Third Parties

We may receive information from:

Authentication Providers: If you sign in using Google, we receive your name, email, and profile picture
Payment Processors: Stripe provides us with transaction status and limited billing information

2. How We Use Your Information

We use your information for the following purposes:

Service Delivery: To provide, maintain, and improve the Service
Account Management: To create and manage your account and subscriptions
Photo Processing: To store, process, and transmit your photos as part of the Service
Communication: To send service-related notifications, updates, and support responses
Security: To detect, prevent, and address technical issues and security threats
Legal Compliance: To comply with applicable laws and legal obligations
Analytics: To understand how users interact with our Service and improve user experience

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), United Kingdom, and Switzerland, we process your personal data based on the following legal grounds:

Contract Performance: Processing necessary to provide the Service you requested
Legitimate Interests: Processing for our legitimate business interests, such as improving the Service and preventing fraud
Legal Obligation: Processing required to comply with applicable laws
Consent: Where you have given explicit consent for specific processing activities

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

We share information with third-party service providers who assist in operating our Service:

DigitalOcean: Cloud infrastructure and data storage (servers located in the United States)
Stripe: Payment processing
Google: Authentication services (if you choose to sign in with Google)
Resend: Email delivery for account notifications and invitations

4.2 Legal Requirements

We may disclose your information if required by law, subpoena, or other legal process, or if we believe disclosure is necessary to:

Comply with applicable laws or legal obligations
Protect the rights, property, or safety of DeadlineFTP, our users, or the public
Detect, prevent, or address fraud, security, or technical issues

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes described in this policy:

Photo Content: Retained according to your subscription plan's retention period (typically 7-90 days), then automatically deleted
Account Information: Retained while your account is active and for a reasonable period afterward to comply with legal obligations
Usage Data: Retained for up to 24 months for analytics and service improvement
Payment Records: Retained as required by tax and accounting regulations (typically 7 years)

6. Data Security

We implement appropriate technical and organizational measures to protect your information:

Encryption of data in transit using TLS/SSL and QUIC protocols
Encryption of data at rest
Secure authentication including support for Google OAuth
Regular security assessments and monitoring
Access controls limiting employee access to personal data

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

7. International Data Transfers

Your information may be transferred to and processed in the United States, where our servers are located. If you are located outside the United States, please be aware that:

The United States may have different data protection laws than your country
For EEA/UK users, we rely on Standard Contractual Clauses approved by the European Commission to ensure adequate protection
By using the Service, you consent to the transfer of your information to the United States

8. Your Privacy Rights

8.1 Rights for All Users

Regardless of your location, you have the right to:

Access your account information through your account settings
Update or correct your account information
Delete your account by contacting us at support@deadlineftp.com
Export your photos before account deletion

8.2 Additional Rights for EEA/UK/Swiss Users (GDPR)

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have additional rights:

Right of Access: Request a copy of your personal data
Right to Rectification: Request correction of inaccurate data
Right to Erasure: Request deletion of your personal data ("right to be forgotten")
Right to Restriction: Request restriction of processing in certain circumstances
Right to Data Portability: Receive your data in a structured, machine-readable format
Right to Object: Object to processing based on legitimate interests
Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
Right to Lodge a Complaint: File a complaint with your local data protection authority

8.3 Additional Rights for California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the CCPA and CPRA:

Right to Know: Request disclosure of the categories and specific pieces of personal information we collect
Right to Delete: Request deletion of your personal information
Right to Correct: Request correction of inaccurate personal information
Right to Opt-Out of Sale: We do not sell personal information, so this right does not apply
Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

Categories of Information Collected: Identifiers, commercial information, internet activity, and professional information as described in Section 1.

Categories of Information Disclosed: We disclose identifiers and commercial information to service providers as described in Section 4.

8.4 Exercising Your Rights

To exercise any of your privacy rights, please contact us at:

Email: support@deadlineftp.com

We will respond to your request within the timeframe required by applicable law (typically 30 days for GDPR, 45 days for CCPA).

9. Cookies and Tracking Technologies

We use limited cookies and similar technologies:

Essential Cookies: Required for authentication and security (session cookies)
Functional Cookies: Remember your preferences and settings

We do not use advertising or tracking cookies. We do not participate in cross-site tracking or targeted advertising.

You can control cookies through your browser settings. Disabling essential cookies may affect your ability to use the Service.

10. Children's Privacy

The Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If we learn that we have collected personal information from a child under 18, we will delete that information promptly. If you believe we have collected information from a child under 18, please contact us immediately.

11. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access.

12. Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature. Because there is no accepted standard for how to respond to DNT signals, we do not currently respond to DNT signals. However, as stated above, we do not engage in cross-site tracking or targeted advertising.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by:

Posting the updated policy on our website with a new effective date
Sending an email notification to account holders
Providing notice through the Service

Your continued use of the Service after the effective date of any changes constitutes acceptance of the updated policy.

14. Contact Information

If you have questions about this Privacy Policy or our privacy practices, please contact us:

DeadlineFTP.com
Email: support@deadlineftp.com

For GDPR-related inquiries, you may also contact your local data protection authority.

15. Additional Disclosures

15.1 Nevada Residents

Nevada residents may opt out of the sale of personal information. We do not sell personal information as defined under Nevada law.

15.2 Virginia, Colorado, Connecticut, and Utah Residents

Residents of these states have similar rights to California residents under their respective state privacy laws. Please contact us to exercise your rights.

15.3 Brazilian Residents (LGPD)

If you are a resident of Brazil, you have rights under the Lei Geral de Proteção de Dados (LGPD), including the right to access, correct, delete, and port your data. Please contact us to exercise your rights.

15.4 Canadian Residents (PIPEDA)

If you are a Canadian resident, you have rights under the Personal Information Protection and Electronic Documents Act (PIPEDA). You may access and correct your personal information by contacting us.