Privacy Policy

Your Data, Your Control

Last updated: October 2, 2025

At DocuRevive, we take your privacy seriously. This policy explains how we collect, use, and protect your information.

Information We Collect

We collect information you provide directly to us:

  • Account information: Name, email address, and authentication credentials (managed by Clerk.com)
  • Documents: Files you upload or connect via Google Drive
  • Usage data: How you interact with our service (queries, uploads, features used)
  • Payment information: Processed securely by Stripe (we never store credit card details)

How We Use Your Information

We use your information to:

  • Provide and improve our document intelligence services
  • Process your documents using AI (OCR, entity extraction, search)
  • Communicate with you about your account and service updates
  • Ensure security and prevent fraud
  • Comply with legal obligations

Data Storage & Security

Your data is protected by enterprise-grade infrastructure:

Microsoft Azure

Documents and AI processing are handled by Azure, which provides:

  • • SOC 2 Type II certified infrastructure
  • • HIPAA and GDPR compliance
  • • Encryption at rest and in transit (AES-256)
  • • Multi-region redundancy

Cloudflare

Our application runs on Cloudflare's edge network, providing:

  • • DDoS protection and WAF (Web Application Firewall)
  • • TLS 1.3 encryption for all connections
  • • Global edge caching for performance
  • • ISO 27001 certified infrastructure

Data Sharing

We do not sell your data. We only share information with:

  • Service providers: Azure (AI processing), Cloudflare (hosting), Clerk (authentication), Stripe (payments)
  • Legal requirements: When required by law or to protect our rights

Your Rights

You have the right to:

  • Access: Request a copy of your data
  • Delete: Request deletion of your account and data
  • Export: Download your documents at any time
  • Opt-out: Unsubscribe from marketing emails

To exercise these rights, contact us at [email protected]

GDPR & HIPAA Compliance

GDPR (EU users): We comply with GDPR requirements, including data portability, right to erasure, and lawful processing. Our infrastructure (Azure, Cloudflare) is GDPR-compliant.

HIPAA (Healthcare): For healthcare customers, we offer HIPAA-compliant configurations with Business Associate Agreements (BAA) available upon request. Azure provides HIPAA-compliant infrastructure.

Data Retention

We retain your data as long as your account is active. When you delete your account:

  • Documents are permanently deleted within 30 days
  • Account information is deleted within 90 days
  • Backups are purged within 180 days

Cookies & Tracking

We use essential cookies for authentication and session management. We do not use third-party advertising cookies.

Changes to This Policy

We may update this policy from time to time. We'll notify you of significant changes via email or in-app notification.

Contact Us

Questions about this policy? Contact us:

  • Email: [email protected]
  • Address: Infrastacks LLC, 7901 4th St N Ste 300, St. Petersburg, FL 33702

See also: Terms of Service | Security