Privacy Policy
Your privacy is fundamental to how docuProof works.
Effective: February 1, 2026
The Short Version: Your files never leave your device. We only receive a cryptographic hash (fingerprint) of your file—not the file itself. We cannot see, access, or reconstruct your documents.
1. What We Collect
What we DO collect:
- SHA-256 Hash: A 64-character cryptographic fingerprint of your file, computed in your browser
- Email Address: For sending your certificate and anchoring confirmation
- Optional Metadata: Filename and display name you choose to provide
- Payment Information: Processed securely by Stripe—we never see your full card number
What we DO NOT collect:
- Your actual file or document contents
- Any data that could reconstruct your file
- Browsing history or tracking cookies
2. How Your File Stays Private
docuProof uses client-side hashing. When you select a file:
- Your browser computes the SHA-256 hash locally on your device
- Only this 64-character hash is sent to our servers
- SHA-256 is a one-way function—the hash cannot be reversed to reveal your file
- Your file never touches our servers or any third-party service
This is not just a policy—it's how the technology works. We cannot access your documents even if we wanted to.
3. How We Use Your Information
We use the information we collect to:
- Create and anchor your proof-of-existence record
- Send you your PDF certificate and anchoring confirmation
- Process your payment via Stripe
- Provide customer support when you contact us
- Improve our service based on aggregate, anonymized usage patterns
We do NOT:
- Sell your information to third parties
- Use your data for advertising
- Share your email with marketing partners
4. Data Storage & Security
Proof Records: Your proof data (hash, proof ID, timestamps) is stored on secure, encrypted infrastructure to enable verification.
Blockchain: Your hash is permanently anchored to the blockchain. This is public by design—anyone can verify the timestamp, but the hash alone reveals nothing about your file.
Email: Your email is stored securely and used only for service communications.
Payment: All payment processing is handled by Stripe. We never store your full credit card information.
5. Third-Party Services
We use the following third-party services:
- Stripe: Payment processing (Stripe Privacy Policy)
- Postmark: Email delivery (Postmark Privacy Policy)
- Netlify: Website hosting (Netlify Privacy Policy)
- OpenTimestamps: Blockchain timestamping protocol (open-source, decentralized)
6. Your Rights
You have the right to:
- Access: Request information about what data we hold about you
- Correction: Request correction of inaccurate information
- Deletion: Request deletion of your account and associated data
- Portability: Request a copy of your data in a standard format
Note: Proof records anchored to the blockchain cannot be deleted from the blockchain—this is fundamental to how the service works. However, we can delete your account information and email from our systems.
To exercise these rights, contact us at support@docuproof.io.
7. Cookies & Tracking
We use minimal, essential cookies for:
- Maintaining your session during checkout
- Basic analytics to understand service usage (no personal tracking)
We do NOT use:
- Advertising cookies
- Cross-site tracking
- Third-party marketing pixels
8. Children's Privacy
docuProof is not intended for children under 16. We do not knowingly collect information from children under 16. If you believe we have collected such information, please contact us immediately.
9. Changes to This Policy
We may update this Privacy Policy as our service evolves. Material changes will be posted with a new Effective date. Your continued use of docuProof after changes constitutes acceptance of the updated policy.
10. Contact Us
BuyWayz LLC (dba docuProof.io)
Cheyenne, Wyoming, USA
Email: support@docuproof.io
For privacy-specific inquiries, please include "Privacy" in your subject line.