Privacy Policy

Your privacy is our priority. Learn how we protect your data and ensure your files remain secure.

Last updated: September 15, 2025

Table of Contents

1. Privacy Overview

At BulkMaker ("we," "us," or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, protect, and handle your information when you use our bulk processing tools and services.

🔒 Key Privacy Commitments

  • Your files never leave your browser during processing
  • We don't store or access your uploaded files
  • All file processing happens locally on your device
  • We only collect minimal, necessary information
  • Your data is never sold to third parties

2. Information We Collect

2.1 Information You Provide

  • Contact Information: Name, email address when you contact us or subscribe to updates
  • Account Information: If you create an account, we collect username, email, and encrypted password
  • Communication Data: Messages you send us through contact forms or support requests

2.2 Automatically Collected Information

  • Usage Analytics: Pages visited, features used, time spent (via Google Analytics)
  • Technical Data: IP address, browser type, device information, operating system
  • Performance Data: Processing times, error rates (anonymized)

2.3 Information We DON'T Collect

  • Contents of your uploaded files
  • Processed file data or results
  • File names or metadata (unless explicitly shared for support)
  • Sensitive personal information from file processing

3. File Processing & Security

3.1 Client-Side Processing

All file processing happens directly in your browser using JavaScript. This means:

  • Your files never upload to our servers
  • Processing occurs entirely on your device
  • No file content is transmitted over the internet
  • You maintain complete control over your data

3.2 Cloud Storage Integration

When you use cloud storage integration:

  • We use secure APIs provided by cloud providers
  • Files are accessed directly between your browser and the cloud service
  • We don't intercept or store cloud-accessed files
  • Authentication tokens are stored locally in your browser only

3.3 Processing Logs

We may collect anonymized processing statistics for service improvement:

  • Number of files processed (not content)
  • Processing success/failure rates
  • Performance metrics
  • Error types (without file data)

4. Cookies & Tracking

4.1 Essential Cookies

  • Session Management: Keep you logged in and maintain preferences
  • Security: Prevent unauthorized access and protect against attacks
  • Tool Settings: Remember your customized tool configurations

4.2 Analytics Cookies

  • Google Analytics: Understand how users interact with our tools
  • Usage Statistics: Track feature popularity and performance
  • Improvement Data: Identify areas for enhancement

4.3 Managing Cookies

You can control cookies through:

  • Browser settings to block or delete cookies
  • Our cookie consent banner (where applicable)
  • Opting out of Google Analytics

5. How We Use Your Data

5.1 Service Provision

  • Operate and maintain our bulk processing tools
  • Provide customer support and technical assistance
  • Process payments for premium services
  • Deliver requested features and functionality

5.2 Communication

  • Respond to your inquiries and support requests
  • Send service updates and important notifications
  • Deliver newsletter content (with your consent)
  • Provide security alerts and system maintenance notices

5.3 Service Improvement

  • Analyze usage patterns to enhance user experience
  • Develop new features and tools
  • Optimize performance and reliability
  • Conduct security assessments and improvements

6. Data Sharing

6.1 We DON'T Share Personal Data With:

  • Data brokers or marketing companies
  • Social media platforms for advertising
  • Third-party analytics beyond Google Analytics
  • Any entity for commercial purposes

6.2 Limited Sharing Scenarios

We may share information only in these specific circumstances:

  • Service Providers: Trusted partners who help operate our service (hosting, payment processing)
  • Legal Requirements: When required by law or to protect rights and safety
  • Business Transfer: In case of merger, acquisition, or sale (with user notification)
  • With Consent: When you explicitly authorize data sharing

6.3 Third-Party Services

  • Google Analytics: Website usage analytics (anonymized)
  • Cloud Providers: Infrastructure services (AWS, Google Cloud)
  • Payment Processors: Secure payment handling (Stripe, PayPal)
  • Email Services: Newsletter and transactional emails

7. Data Retention

7.1 Retention Periods

  • Account Data: Retained while your account is active + 3 years
  • Contact Inquiries: 2 years for support purposes
  • Usage Analytics: 26 months (Google Analytics default)
  • Payment Records: 7 years for tax and legal compliance
  • File Processing Data: Immediately deleted (never stored)

7.2 Data Deletion

Data is automatically deleted when:

  • Retention periods expire
  • You request account deletion
  • Legal requirements are fulfilled
  • Business purposes are completed

8. Security Measures

8.1 Technical Security

  • Encryption: TLS/SSL for all data transmission
  • Access Controls: Multi-factor authentication for admin access
  • Data Protection: Encrypted storage for sensitive information
  • Regular Updates: Security patches and system updates

8.2 Organizational Security

  • Staff Training: Regular security awareness training
  • Access Limitation: Principle of least privilege
  • Security Audits: Regular internal and external assessments
  • Incident Response: Defined procedures for security events

8.3 Client-Side Security

  • Local Processing: Files never leave your device
  • No File Storage: Zero server-side file retention
  • Secure APIs: Encrypted communication with cloud services
  • Browser Security: Utilization of modern browser security features

9. Your Rights

9.1 Data Access Rights

You have the right to:

  • Access your personal data we hold
  • Receive a copy of your data in portable format
  • Know how your data is being used
  • Understand who has access to your information

9.2 Control Rights

  • Correction: Update or correct inaccurate information
  • Deletion: Request removal of your personal data
  • Restriction: Limit how we process your data
  • Objection: Opt out of certain data processing activities

9.3 Communication Preferences

  • Unsubscribe from newsletters at any time
  • Opt out of marketing communications
  • Control notification preferences
  • Update communication methods

9.4 Exercising Your Rights

To exercise your rights, contact us at [email protected]. We'll respond within 30 days and may require identity verification.

10. Children's Privacy

BulkMaker is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information promptly.

For users between 13-18, we recommend parental guidance when using our services. Parents or guardians may contact us to:

  • Review information collected from their child
  • Request deletion of their child's information
  • Prohibit further collection of their child's information

11. International Transfers

11.1 Data Location

BulkMaker operates globally, and your information may be processed in countries other than your own. We ensure appropriate safeguards are in place:

  • Adequate Protection: Data transfers only to countries with adequate privacy laws
  • Standard Contractual Clauses: EU-approved contracts for data protection
  • Certification Programs: Partners certified under Privacy Shield or equivalent
  • Local Laws: Compliance with applicable data protection regulations

11.2 Regional Compliance

  • GDPR (EU): Full compliance with European data protection requirements
  • CCPA (California): California Consumer Privacy Act compliance
  • PIPEDA (Canada): Personal Information Protection and Electronic Documents Act
  • Local Laws: Adherence to applicable regional privacy regulations

12. Policy Updates

12.1 Notification of Changes

We may update this Privacy Policy from time to time. When we make changes:

  • We'll update the "Last Updated" date at the top
  • Significant changes will be prominently announced on our website
  • Email notification for material changes (if you've subscribed)
  • 30-day notice period for major policy changes

12.2 Types of Updates

  • Minor Updates: Clarifications, contact information changes
  • Material Changes: New data collection practices, sharing policies
  • Legal Updates: Changes due to new laws or regulations
  • Feature Updates: Privacy implications of new tool features

12.3 Your Continued Use

By continuing to use BulkMaker after policy updates, you accept the revised terms. If you disagree with changes, you may:

  • Contact us to discuss concerns
  • Request data deletion before changes take effect
  • Discontinue use of our services

13. Contact Information

13.1 Privacy Officer

For privacy-related questions, concerns, or requests:

  • Email: [email protected]
  • Response Time: 30 days maximum, typically within 5 business days
  • Subject Line: Please include "Privacy Request" for faster processing

13.2 General Contact

13.3 Data Protection Authority

You have the right to lodge a complaint with your local data protection authority if you believe we've violated your privacy rights. For EU residents, you can find your local authority at https://edpb.europa.eu/about-edpb/members_en

🔐 Privacy Commitment

We take your privacy seriously and are committed to protecting your personal information. This policy reflects our dedication to transparency and your right to privacy. If you have any questions or concerns, please don't hesitate to contact us.