Privacy Policy

Your data rights and our responsibilities.

This Privacy Policy explains how OpenDocs collects, uses, stores, shares, and protects personal data when individuals visit our website, create accounts, or use our collaboration services. It is written in a GDPR-style format to help users understand the legal basis and controls connected to their information.

Effective date: April 2, 2026 Controller: OpenDocs Contact: privacy@opendocs.io

Information We Collect

We collect personal data that is necessary to provide and improve OpenDocs. The categories of information we collect depend on how you interact with our website and services.

  • Account and identity data: name, business email address, company name, job title, login credentials, and account preferences.
  • Service usage data: workspace activity, feature interactions, device information, IP address, browser type, referral URLs, session timestamps, and diagnostic logs.
  • Content and collaboration data: files, comments, permissions, revision history, and metadata generated when users create, edit, or share materials through OpenDocs.
  • Communication data: inquiries sent to support, survey responses, onboarding information, and correspondence related to billing, compliance, or security requests.

How We Use Information

OpenDocs uses personal data to operate the service, maintain security, communicate with customers, and meet legal obligations. Where required, we rely on one or more lawful bases under applicable data protection law, including performance of a contract, legitimate interests, consent, and compliance with legal obligations.

  • To create and administer accounts, authenticate users, and deliver collaboration features.
  • To maintain system reliability, monitor performance, troubleshoot issues, and prevent fraud, abuse, or unauthorized access.
  • To send transactional notices, service announcements, policy updates, and support communications.
  • To analyze product usage, improve functionality, and develop new features in a proportionate and privacy-conscious manner.
  • To comply with legal, regulatory, tax, audit, and law-enforcement obligations where required.

Cookies

OpenDocs uses cookies and similar technologies to keep the website functional, remember user preferences, understand aggregate engagement, and support security controls. Some cookies are strictly necessary for core site behavior, while others are used for analytics or preference management.

Where required by law, we request consent before placing non-essential cookies on a device. Users can also manage cookie preferences through browser settings or the cookie banner presented on the site.

Third Parties

We may share personal data with carefully selected third-party service providers that support hosting, infrastructure, analytics, customer support, communications, security monitoring, and payment administration. These parties process data on our behalf under contractual obligations designed to protect confidentiality and limit use to authorized purposes.

We may also disclose information where necessary in connection with legal claims, compliance obligations, corporate transactions, or to protect the rights, safety, and security of OpenDocs, our customers, and the public.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy, including service delivery, dispute resolution, recordkeeping, and legal compliance. Retention periods vary depending on the data type, account status, contractual obligations, and applicable law.

When data is no longer required, we delete it, anonymize it, or securely isolate it from active use in accordance with our retention and disposal procedures.

Your Rights

Subject to applicable law, individuals may have the right to access, correct, update, delete, restrict, object to, or request portability of their personal data. Individuals may also withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing performed before withdrawal.

Users in the European Economic Area, the United Kingdom, and other jurisdictions with similar protections may also have the right to lodge a complaint with a supervisory authority if they believe their data has been handled unlawfully.

Data Security

OpenDocs applies administrative, technical, and organizational safeguards intended to protect personal data against unauthorized access, disclosure, alteration, and destruction. These measures include access controls, encryption in transit, audit logging, environment monitoring, and role-based permissions.

No system is completely immune from risk, but we continuously review and strengthen our security posture to reduce the likelihood and impact of incidents.

Changes

We may update this Privacy Policy from time to time to reflect changes to our services, legal obligations, or privacy practices. When material changes are made, we will revise the effective date and provide additional notice where required, such as through the website or service communications.

Contact

If you have questions about this Privacy Policy, want to exercise your privacy rights, or need to contact us about data protection matters, email privacy@opendocs.io or write to OpenDocs Privacy Office, 100 Market Street, Suite 400, San Francisco, CA 94105, United States.