FileCollect
ProductPricingSecurity
Log inStart free

Privacy Policy

Last updated: July 15, 2026

1. Who we are

FileCollect ("we", "us", "our") operates the website www.filecollect.io and the FileCollect application. This policy explains how we collect, use, and protect personal data when you use our service.

2. What data we collect

Account data (professionals): When you sign in with Google, we receive your name, email address, profile picture, and a Google Drive access token. We also store your Stripe customer ID if you subscribe to a paid plan.

Client data: When a professional creates a document request, they provide the client's name and email address. We store this data to send upload invitations and reminders on the professional's behalf.

Uploaded files: Files uploaded by clients are temporarily stored on our server (up to 24 hours) while they are delivered to the professional's Google Drive. After successful delivery, the temporary copy is deleted. We do not read, analyse, index, or share the contents of uploaded files.

Usage data: We collect basic usage logs (page views, feature usage, error reports) to improve the service. We do not use third-party tracking cookies.

3. How we use your data

  • To provide the FileCollect service (file delivery, reminders, notifications).
  • To process payments via Stripe.
  • To send transactional emails (invitations, reminders, account notifications).
  • To improve the service and fix bugs.
  • To comply with legal obligations.

4. Legal basis (GDPR)

We process data based on:

  • Contract: To provide the service you signed up for.
  • Legitimate interest: To improve the service, prevent fraud, and send relevant product updates.
  • Consent: For optional marketing communications (you can opt out at any time).

5. Who we share data with

  • Google: Files are delivered to Google Drive via the Google Drive API using OAuth tokens you authorise.
  • Stripe: Payment processing. See Stripe's privacy policy.
  • Cloudflare: CDN and DDoS protection. See Cloudflare's privacy policy.

We do not sell personal data to third parties.

6. Data retention

  • Account data is retained for the lifetime of your account. When you delete your account, we remove your data within 30 days.
  • Uploaded files are deleted from our servers within 24 hours of successful delivery to Google Drive.
  • Email logs are retained for 12 months for debugging and compliance, then deleted.

7. Your rights

Under the GDPR, you have the right to:

  • Access your personal data.
  • Correct inaccurate data.
  • Delete your data ("right to be forgotten").
  • Object to processing based on legitimate interest.
  • Data portability (export your data).
  • Withdraw consent at any time.

To exercise these rights, contact us at privacy@filecollect.io.

8. Cookies

We use a single session cookie (filecollect.sid) to keep you logged in. This is a strictly necessary cookie and does not require consent. We do not use advertising or analytics cookies.

9. Data security

See our Security page for details on how we protect data in transit and at rest.

10. Children

FileCollect is not directed at children under 16. We do not knowingly collect personal data from children.

11. Changes

We may update this policy from time to time. Material changes will be notified via email. The "Last updated" date at the top reflects the most recent revision.

12. Contact

For questions about this policy, contact us at privacy@filecollect.io.

FileCollect

Client documents, collected and filed.

Product
PricingSecurityContact
Legal
Privacy PolicyTerms of Service
© 2026 FileCollect. All rights reserved.