Privacy Policy

The Short Version
Your data belongs to you and not us. We don’t resell data about our users or data extracted from uploaded documents. We do use data from our users and data extracted from uploaded documents for improving our services. Keeping your data safe is our highest priority and we take extended measurements to guarantee data security.
The Long Version
Docsumo.com (hereinafter “Docsumo” or “Service Provider”) undertakes to protect the Personal Data of its Clients adhering to the regulations outlined by the Data Protection Act of 2018, GDPR, Singapore's PDPA 2012 & California's CCPA 2020. This Privacy Policy is part of the Terms of Service. Each word defined in the Privacy Policy shall have the same meaning as in the Terms of Service.
By visiting or registering to Docsumo on the website https://docsumo.com or any subdomain, the Client acknowledges to comply with the Privacy Policy, which may be amended from time to time without prior notice. Any modification or update shall be uploaded on the website docsumo.com or Docsumo application.
1. Collected Data
While registering to and using Docsumo, the Service Provider collects, on a voluntary basis, from the Client a limited number of data, including Personal Data, which is solely for the performance of Docsumo and used in connection with Docsumo.
The Client may therefore be required to provide the following information:
First name
Last name
Email address
Phone
Company name
Company billing address
Company tax identification number (VAT/GST number)
In addition, thereto, the Service Provider may collect data concerning the Client’s preferences or behavior on the website docsumo.com and the Docsumo application (what pages the Client visits, surveys, etc.).
While using Docsumo, the Client typically imports documents (e.g. PDF’s as well as scanned image documents) through our application, by email, via our API or a third party integration partner. Imported Documents will then be processed by the core extraction engine to generate Parsed Content.
2. Usage of Data
The purpose of data collection within Docsumo is to enhance the Client experience. We will retain any Data you submit for as long as Docsumo deems it necessary to provide adequate service to the User, unless explicitly asked by a User for their Data to be deleted.
The Client has a permanent right to access, amend or delete any information related to him/her/it by sending an email to privacy@docsumo.com. Upon receipt of email, data would be deleted/modified within a span of 30 days & confirmation email would be sent once done.
All data provided by the Client, including Personal Data, Imported Documents and Parsed Content will not be freely given to anyone. We do not, under any circumstances, sell either your Personal Data or your Document Data. This applies to the documents uploaded to our document processing tools available freely. Uploaded documents will be processed to provide you structured data by our automated data-extraction tool using deep learning approach and artificial intelligence. The uploaded document will be retained and used for further research, development and training of the artificial intelligence and will be deleted. This processing is based, in the context of Data Protection Act of 2018, GDPR, Singapore's PDPA 2012 & California's CCPA 2020 regulations, on legitimate interests of Docsumo.
If someone originating from your account or someone contacted via Docsumo at the User’s discretion playing role of “Client” complains or contacts us, we might then contact that person.
Docsumo does not collect any personal data that reveals, directly or indirectly, the racial and ethnic origins, the political, philosophical, religious opinions or trade union affiliation of persons, or information which concerns the health or sexual life of any person. Such sensible data shall not be sent, processed or stored through Docsumo.
For purposes of the Data Protection Act of 2018, GDPR, Singapore's PDPA 2012 & California's CCPA 2020, Docsumo acts as the “data controller” for Personal Data and acts as the “data processor” for Imported Documents and Parsed Content.
All personal Data is stored securely in accordance with the principles of the Data Protection Act 2018 and the European Union’s General Data Protection Regulation. For more details on these two security regulations see the clause below (Security).
Any or all of the above Data may be required by us from time to time in order to provide you with the best possible service and experience when using our Website. Specifically, Personal Data may be used by us for the following reasons:
internal record keeping;
improvement of our products / services;
transmission by email of promotional materials that may be of interest to you;
transmission to 3rd parties in order for them to market relevant promotional materials that may be of interest to you;
the ability to make automated decision making, including profiling, only for the purpose of offering a better and more personalized experience for the User or marketing to new users based on information from the users of Docsumo in aggregate.
3. Third party websites and  services
Docsumo may, from time to time, employ the services of other parties for dealing with certain processes necessary for the operation of the Website. The provider of such services have access to certain Personal Data provided by Users of this Website and may be located in various locations throughout the world.
Unless we specifically say otherwise, your Data will never be intentionally disclosed to third parties for the sake of administering better service, but never for marketing purposes through various affiliates and / or other companies within our group.
Any Personal Data used by such parties is used only to the extent required by them to perform the services that we request. Any use for other purposes is strictly prohibited. Furthermore, any Data that is processed by third parties will be processed within the terms of this privacy policy and in accordance with the Data Protection Act of 2018, GDPR, Singapore's PDPA 2012 & California's CCPA 2020.
Additionally, Data can be transmitted to 3rd parties for relevant marketing purposes at the sole discretion of those employed by Docsumo.
Upon express request and at his/her/its own risks, the Client may also decide to transfer the Imported Documents and Parsed Content to 3rd Party Service for cloud integration purposes notably, an API endpoint owned by the Client or by third party service providers such as Google Sheets, Salesforce, Zapier, Microsoft Flow, etc.
If requested by law or by court order, Docsumo may provide the Personal Data to the legal authorities
4. Links to other websites
Docsumo and all its websites may, from time to time, provide links to other websites. We have no control over such websites and are not responsible for the content of these websites. This privacy policy does not extend to your use of such websites. You are advised to read the privacy policy or statement of other websites prior to using them.
5. Controlling use of your Data
Wherever you are required to submit Data, you will be given options to restrict our use of that Data. This may include the following:
Use of Data for direct or indirect marketing purposes; and
You have the right to ask for a copy of any of your personal Data held by Docsumo.
You have the right to withdraw consent necessary to use the services provided by Docsumo at any time.
You have the right for your data to be deleted from the servers and databases of Docsumo.
6. Security
Docsumo takes data security very seriously and its system is compliant with the latest web security standards. Docsumo uses full SSL encryption, between its server and the Client once the latter is logged in and for the transfer to the Client. The login system is protected against brute­force attacks, injection of malicious scripts and other commonly known attack types. The access to Docsumo or to the Client’s Account and thus to the processed data is only possible through a valid password. The passwords are stored encrypted hash keys in the database and not visible to the staff of Docsumo.
Docsumo application is running on the Amazon Webservices Cloud, Google Cloud Platform. All servers are always up­to­date with the latest security releases. A full backup is made on a daily basis and all data is constantly stored on different hard­drives to prevent data loss in case of a hardware failure. Personal data pertaining to the Clients will be deleted at the latest two (2) months after the closing or deletion of the Client’s Account.
Only authorized employees have access to view Personal Data, Imported Documents and Parsed Content.
If password access is required for certain parts of the Website, you are responsible for keeping this password confidential.
We endeavour to do our best to protect your personal Data. However, transmission of information over the internet is not always perfectly secure and is done at your own risk. We cannot ensure the security of your Data transmitted to Docsumo.
7. Cookies
Types of Cookies
i. Strictly Necessary - These cookies are essential for websites on our services to perform their basic functions. These include those required to allow registered users to authenticate and perform account related functions. We also use these cookies to help identify and prevent potential security risks.
ii. Cookies saved/Services - Login and User Details
iii. Tool used - Cloudflare, Docsumo token 
iv. Functionality - These cookies are used to store preferences set by users such as account name, language, and location.
v. Cookies saved/Services - Username, Region, Language, and User Preference
vi. Analytics and Performance - Performance cookies collect information on how users interact with our websites, including what pages are visited most, as well as other analytical data. We use these details to improve how our websites function and to understand how users interact with them.
vii. Cookies saved/Services - Page Visits, Load Speed, Bounce Rate, and Idle user time
viii. Tools used - Hotjar, Google analytics
ix. Advertising - These cookies are track details such as the number of unique visitors, the number of times particular ads have been displayed, and the number of clicks the ads have received. They are also used to build user profiles, including showing you ads based on products you’ve viewed or acts you have taken on our (and other) websites.
x. Cookies saved/Services - Third party advertisers
xi. Tools used - Facebook Pixel, Google Ads, Linkedin Pixel, Hotjar, Chameleon, Google Analytics, Mixpanel, Hubspot, Apollo
Visitors may wish to restrict the use of cookies or completely prevent them from being set. Most browsers provide for ways to control cookie behavior such as the length of time they are stored – either through built-in functionality or by utilizing third party plugins. If you disable cookies, please be aware that some of the features of our service may not function correctly.

It is recommended that you ensure that your internet browser is up-to-date and that you consult the help and guidance provided by the developer of your internet browser if you are unsure about adjusting your privacy settings.
8. Communication by Docsumo
Docsumo may send emails to the Client for technical or administrative purposes or to inform the Client of the latest developments. Docsumo may also send unrelated commercial offers to the Client but in relation with the activity of the Client.
9. General
You may not transfer any of your rights under this privacy policy to any other person. We may transfer our rights under this privacy policy where we reasonably believe your rights will not be affected.

If any court or competent authority finds that any provision of this privacy policy (or part of any provision) is invalid, illegal or unenforceable, that provision or part-provision will, to the extent required, be deemed to be deleted, and the validity and enforceability of the other provisions of this privacy policy will not be affected.

Unless otherwise agreed, no delay, act or omission by a party in exercising any right or remedy will be deemed a waiver of that, or any other, right or remedy.

The Privacy Policy is governed by and interpreted according to the laws of Singapore. Any dispute, controversy or claim arising under, out of or relating to the validity, interpretation and performance of this Privacy Policy shall be referred to and finally determined by the competent courts in Singapore law shall apply.

For any questions or concerns relating to the use of your User Data while using Docsumo, you are welcome to email to privacy@docsumo.com
10. Changes of business ownership and control
Docsumo may, from time to time, expand or reduce our business and this may involve the sale and/or the transfer of control of all or part of Docsumo. Data provided by Users will, where it is relevant to any part of our business so transferred, be transferred along with that part and the new owner or newly controlling party will, under the terms of this privacy policy, be permitted to use the Data for the purposes for which it was originally supplied to us. We may also disclose Data to a prospective purchaser of our business or any part of it. In the above instances, we will take steps with the aim of ensuring your privacy is protected.
11. Changes to this privacy policy
Docsumo reserves the right to change this privacy policy as we may deem necessary from time to time or as may be required by law. Any changes will be immediately posted on the Website and you are deemed to have accepted the terms of the privacy policy on your first use of the Website following the alterations. You may contact Docsumo by email at privacy@docsumo.com
Last updated on 4th January, 2024