Editobox

Privacy Policy

Last Updated: May 1, 2025

At Editobox, we take your privacy seriously. This Privacy Policy explains how we collect, use, and protect your information when you use our website and services.

Information We Collect

Client-Side Processing

Most of our tools (image editing, PDF management, and utility tools) process your files directly in your browser. This means that your files are not uploaded to our servers unless explicitly stated for specific tools that require server-side processing (such as background removal). Your privacy is our priority, and we ensure that your data remains on your device whenever possible. Files processed client-side are never transmitted to our servers, stored, or accessible to our team.

Usage Information

We collect anonymous usage data such as page views, tool usage, feature interactions, and user navigation patterns to improve our services and user experience. This data is aggregated and does not personally identify individual users. We use this information to understand which tools are most valuable, identify areas for improvement, and optimize performance.

Automatically Collected Data

When you visit our website, we automatically collect certain information including your IP address (which may be considered personal data under GDPR), browser type and version, device information, operating system, referring URLs, and timestamps of visits. This information helps us provide a better service, troubleshoot technical issues, and analyze site performance.

Cookies and Similar Technologies

We use cookies and similar tracking technologies to enhance your experience on our website, analyze usage patterns, and optimize our services. Cookies are small text files stored on your device that allow us to recognize your browser and remember certain information. You can control cookie settings in your browser preferences.

Detailed Cookie Information

Essential Cookies

These cookies are necessary for the website to function properly. They enable basic features like page navigation, access to secure areas, and remember your tool preferences (such as language selection). These cookies do not collect personally identifiable information.

Analytics Cookies

We use Google Analytics to collect anonymous statistics about how visitors use our site. These cookies help us understand visitor behavior, page performance, and popular features. Information collected includes pages visited, time spent on site, browser type, device type, and traffic sources. All data is aggregated and anonymized.

Advertising Cookies (Google AdSense)

Google AdSense uses cookies to display relevant advertisements based on your browsing activity across websites. These cookies track which ads you've seen, how often you see them, and your interaction with ads. You can opt out of personalized advertising by visiting Google's Ad Settings page. Note that opting out doesn't mean you'll see fewer ads—just less personalized ones.

Managing Cookies

You can control and delete cookies through your browser settings. Most browsers allow you to refuse cookies, delete existing cookies, or receive notifications before a cookie is stored. Note that disabling cookies may affect website functionality and your user experience. Instructions for managing cookies vary by browser—consult your browser's help documentation for specific guidance.

How We Use Your Information

We use the information we collect to:

  • Provide and maintain our services reliably and securely
  • Improve and optimize our website, tools, and user experience
  • Analyze usage patterns, trends, and feature popularity
  • Prevent fraud, abuse, and enhance security measures
  • Respond to user inquiries and provide customer support
  • Communicate updates about our services (only if you explicitly opt in)
  • Display relevant advertisements through Google AdSense
  • Comply with legal obligations and enforce our Terms of Service

Data Security

We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption of data in transit using HTTPS/SSL, secure server configurations, regular security audits, and access controls limiting who can view collected data. However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Client-Side Processing Security

For tools that process files client-side, your files never leave your browser. All processing happens locally on your device using JavaScript and Web APIs. This means your sensitive documents, images, and files remain completely private and are never transmitted over the network or stored on our servers.

Data Retention

For files processed client-side: No retention—files exist only in your browser's temporary memory and are discarded when you close the tab or navigate away. For server-side processing tools (like background removal): Files are processed and immediately deleted from our servers—typically within minutes and never retained beyond the session. Analytics data is retained according to Google Analytics retention policies (default: 14 months, configurable).

Your Rights Under GDPR (EU Users)

If you are located in the European Economic Area (EEA), you have specific rights under the General Data Protection Regulation (GDPR):

  • Right to Access: You can request information about what personal data we hold about you.
  • Right to Rectification: You can request correction of inaccurate personal data.
  • Right to Erasure ('Right to be Forgotten'): You can request deletion of your personal data, subject to certain exceptions.
  • Right to Restrict Processing: You can request that we limit how we use your data.
  • Right to Data Portability: You can request a copy of your data in a structured, machine-readable format.
  • Right to Object: You can object to processing of your data for direct marketing or other purposes.
  • Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time.
  • Right to Lodge a Complaint: You can file a complaint with your local data protection authority.

Exercising Your Rights

To exercise any of these rights, contact us at [email protected] with your request. We will respond within 30 days as required by GDPR. Note that for most tools, we process data client-side and retain no personal information, so there may be limited data to access or delete.

Your Rights Under CCPA (California Users)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: You may request disclosure of the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
  • Right to Opt-Out of Sale: You may opt out of the sale of your personal information. (Note: We do not sell personal information.)
  • Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA rights.

Do Not Sell My Personal Information

Editobox does not sell personal information as defined by the CCPA. We do not share, rent, or sell your personal data to third parties for monetary or other valuable consideration. Third-party services like Google Analytics and AdSense operate under their own privacy policies and data processing agreements.

Exercising Your CCPA Rights

To exercise your CCPA rights, email us at [email protected] with 'CCPA Request' in the subject line. Include your full name, email address (if applicable), and specific request. We will verify your identity and respond within 45 days as required by law.

Advertising and Google AdSense

We use Google AdSense and other third-party vendors to serve ads when you visit our website. These companies may use information (not including your name, address, email address, or telephone number) about your visits to this and other websites in order to provide advertisements about goods and services of interest to you. This practice is known as interest-based advertising or behavioral advertising.

The DART Cookie

Google, as a third-party vendor, uses cookies (including the DoubleClick DART cookie) to serve ads on Editobox. Google's use of the DART cookie enables it to serve ads to our users based on their visit to Editobox and other sites on the Internet. Users may opt out of the use of the DART cookie by visiting the Google Ad and Content Network privacy policy at https://policies.google.com/technologies/ads

Opt-Out Options

You can opt out of personalized advertising by visiting Google's Ads Settings (https://adssettings.google.com), the Network Advertising Initiative opt-out page (http://www.networkadvertising.org/choices/), or the Digital Advertising Alliance opt-out page (http://www.aboutads.info/choices/). Opting out doesn't remove ads—you'll still see non-personalized ads.

Third-Party Services

We may use third-party services such as analytics providers (Google Analytics) and advertising networks (Google AdSense). These third parties may use cookies, web beacons, and other technologies to collect information about your use of our website. You can choose to disable or selectively turn off our cookies or third-party cookies in your browser settings.

Third-Party Privacy Policies

This Privacy Policy applies only to Editobox. We are not responsible for the privacy practices of third-party services. We encourage you to review the privacy policies of any third-party services you access from our website. Key third-party services we use: Google Analytics (analytics), Google AdSense (advertising), and Cloudflare (security and performance).

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those of your country. When transferring data internationally, we use appropriate safeguards such as standard contractual clauses or rely on adequacy decisions to ensure your data is protected according to applicable regulations.

Children's Privacy

Our services are not intended for children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately, and we will take steps to delete such information from our systems.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or business operations. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the 'Last Updated' date. We encourage you to review this Privacy Policy periodically for any changes. Your continued use of our services after changes are posted constitutes acceptance of the updated Privacy Policy.

Contact Us

If you have any questions about this Privacy Policy, please contact us at [email protected]