DATA PROTECTION AND PRIVACY
Last Modified: 2025
Introduction
This comprehensive Data Protection Framework (designated herein as the "Framework") establishes the procedural methodology through which PDFClick, an enterprise functioning within Israeli legal jurisdiction (referenced throughout as "the Organization," "our entity," or "PDFClick"), acquires, processes, distributes, and protects personal information related to your engagement with our software installation products, browser extensions, and complementary technological solutions (collectively identified as the "Platform").
Our organizational commitment centers on maintaining rigorous privacy standards and ensuring all information management procedures comply with relevant data protection legislation, including the European Union General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA), as applicable to your residential jurisdiction.
This Framework represents an integral element of our User Agreement ("Agreement"). We recommend comprehensive examination of this Framework prior to downloading, accessing, or engaging with our Platform. California residents subject to CCPA provisions may reference our specialized California Privacy Addendum for jurisdiction-specific details regarding their rights and our corresponding responsibilities.
Scope and Acceptance
Platform utilization constitutes implicit acceptance of this Framework's provisions. Users acknowledge that continued engagement with our services indicates ongoing consent to the data handling practices outlined herein.
Categories of Information Acquired
Our operational interactions may involve acquiring diverse information classifications, organized as follows:
- Personal Data Categories: Information capable of identifying specific individuals, encompassing:
- Digital Identifiers: Device-specific markers including Internet Protocol addresses, unique network identifiers, and Media Access Control addresses serving as distinctive hardware signatures.
- User-Supplied Information: Details voluntarily furnished including personal names, organizational affiliations, and electronic mail addresses during communication interactions.
- Non-Personal Data Categories: Information incapable of individual identification when considered independently, including:
- Technical Information: Platform interaction details encompassing access timestamps, device specifications and operating system versions, approximate geographic positioning, referral sources directing users to our Platform, language configuration preferences, and installed application inventories.
Specific Data Collected and Processing Purposes
Technical Data Collection:
- System performance metrics for Platform optimization
- Error reporting information for troubleshooting and enhancement
- Usage analytics for feature development and user experience improvement
- Security monitoring data for fraud prevention and unauthorized access detection
Contact Information Processing:
- Electronic mail addresses for customer support communications
- User names for personalized service delivery
- Organizational details for business relationship management
Collection Methods
- Automatic Collection Procedures: Technical information, including Internet Protocol addresses, undergoes automatic acquisition during Platform engagement through cookies, device logs, and automated monitoring systems.
- Voluntary Collection Procedures: Personal Data acquisition occurs exclusively through voluntary user submission, particularly when users initiate contact through provided communication channels or complete registration forms.
Data Transfer and Cross-Border Processing
Platform functionality may necessitate information storage or processing across multiple international locations, including United States facilities and European Economic Area jurisdictions. Our organization implements appropriate protective measures, consistent with applicable data protection regulations including GDPR provisions, ensuring adequate Personal Data protection during cross-border transfers through Standard Contractual Clauses and other approved transfer mechanisms.
Data Security Measures
Information protection represents a fundamental organizational priority. We deploy industry-standard technical and administrative security protocols safeguarding against unauthorized access, utilization, disclosure, modification, or destruction. However, complete security cannot be guaranteed for internet-based transmission methods or electronic storage systems.
For security incidents or data breach concerns, please contact: [email protected]
Data Retention Practices
Information preservation continues only as required to fulfill Framework-specified purposes, maintain legal compliance, resolve disputes, and enforce agreements. Upon determination that information no longer serves these requirements, secure deletion from organizational systems occurs promptly.
Personal Data typically remains stored for three years following final Platform interaction, unless extended retention becomes necessary for legal compliance or dispute resolution purposes.
Data Sharing and Disclosure
Information sharing with external parties occurs under these restricted circumstances:
- Service Provider Relationships: Reputable third-party vendors may receive information access to facilitate Platform provision and enhancement. These providers operate under stringent confidentiality agreements prohibiting information utilization beyond designated purposes.
- Legal Obligation Compliance: Information disclosure may occur when legally mandated, including compliance with applicable legislation, regulatory requirements, legal procedures, or governmental requests.
- Rights Protection: Information disclosure may proceed if deemed necessary for protecting organizational rights, property, or safety, or that of users and others.
- Business Transaction Circumstances: During merger, acquisition, or asset sale events, information may transfer as part of the transaction process.
- Explicit User Consent: Information sharing for additional purposes occurs exclusively with explicit user authorization.
Legal Basis for Processing (GDPR Compliance)
Personal Data handling aligns with these lawful GDPR foundations:
- Legitimate Interest: Digital identifier processing remains essential for operational functionality, secure Platform provision, and proactive fraud mitigation.
- Contractual Obligation: Contact information processing becomes necessary for fulfilling contractual responsibilities, including inquiry responses and requested service provision.
- Consent: Specific circumstances, as legally mandated, may require Personal Data processing based on explicit user consent. Clear and unambiguous consent will always be sought before processing data for these purposes.
Individual Rights and Entitlements
Applicable data protection legislation provides specific Personal Data rights, potentially including:
- Access Rights: Users may request access to Personal Data maintained by our organization.
- Rectification Rights: Users may request correction of inaccurate or incomplete Personal Data.
- Erasure Rights: Under certain conditions, users may request Personal Data deletion.
- Processing Restriction Rights: Users may request limitations on Personal Data processing under specific circumstances.
- Objection Rights: Users may object to Personal Data processing based on legitimate interests or direct marketing activities.
- Data Portability Rights: Users may receive Personal Data in structured, commonly-used, machine-readable formats and transmit such data to alternative controllers.
- Consent Withdrawal Rights: Where processing relies on consent, users may withdraw such consent at any time.
- Complaint Rights: Users may lodge complaints with supervisory authorities within their jurisdiction regarding data processing practices.
To exercise these rights, contact us using the information provided below.
Children's Privacy Protection
Our organization does not knowingly acquire or store Personal Data from individuals under sixteen years of age. Upon discovering such information collection from children under sixteen, immediate deletion procedures commence. Individuals under eighteen should review this Framework with parental or guardian supervision.
Do Not Track Signal Response
Our Platform does not currently respond to Do Not Track (DNT) browser signals or similar preference mechanisms.
Third-Party Materials and External Links
The Platform may contain references to external websites, services, or content not owned, controlled, or endorsed by our organization. We explicitly disclaim control over, responsibility for, or endorsement of such third-party materials, external websites, or associated services.
Users acknowledge that our organization bears no liability for damages, losses, or consequences arising from engagement with third-party materials or external resources accessed through our Platform.
Framework Modifications
This Framework may undergo periodic updates reflecting operational changes, legal obligations, or regulatory requirements. Modifications will be posted on this page with corresponding "Last Modified" date updates. Regular Framework review is recommended. Continued Platform utilization following modifications constitutes acceptance of revised Framework provisions.
Contact Information and Communication
Questions, concerns, or inquiries regarding this Framework may be directed to:
PDFClick
Electronic Mail: [email protected]
Additional communication channels may be available through our official website or Platform interface.
CALIFORNIA CONSUMER PRIVACY ACT (CCPA) ADDENDUM
Introduction for California Residents
This addendum applies specifically to California State residents under CCPA provisions. Definitions referenced herein incorporate those established in the primary Privacy Framework as necessary.
Sale of Personal Information
Our organization has not sold Personal Data during the preceding twelve-month period under CCPA definitions. However, certain data categories may be "shared" for cross-context behavioral advertising purposes (retargeting activities). Any categories subject to sale or sharing appear in the designated section below.
Categories of Personal Information Collected
| Category | Examples | Collection Status |
|---|---|---|
| Category A - Identifiers | IP addresses, email addresses, device identifiers | Collected |
| Category B - Personal Information Categories | Names, contact information, financial data | Collected |
| Category C - Protected Classification Characteristics | Age, gender, national origin | Not Collected |
| Category D - Commercial Information | Purchase records, product preferences | Not Collected |
| Category E - Biometric Information | Fingerprints, voiceprints | Not Collected |
| Category F - Internet/Network Activity | Browsing history, search history, interaction data | Collected |
| Category G - Geolocation Data | Physical location information | Collected |
| Category H - Sensory Data | Audio, visual recordings | Not Collected |
| Category I - Professional/Employment Information | Job title, employer information | Not Collected |
| Category J - Non-Public Education Information | Student records, grades | Not Collected |
| Category K - Inferences | Preferences, characteristics, behavior predictions | Collected |
Disclosures of Personal Information for Business Purposes
| Category | Recipient Category | Business Purpose |
|---|---|---|
| Category A - Identifiers | Service providers, analytics partners | Platform functionality, fraud prevention |
| Category B - Personal Information Categories | Customer service providers | Communication, support services |
| Category F - Internet/Network Activity | Analytics providers, security services | Usage analysis, security monitoring |
| Category G - Geolocation Data | Service optimization providers | Service localization, fraud detection |
| Category K - Inferences | Analytics partners | Service improvement, user experience enhancement |
Sale or Share of Personal Information
No categories of personal information are sold or shared for cross-context behavioral advertising purposes.
Information Collection Methods
Our organization distinguishes between direct collection (user-provided information through forms, communications) and automatic collection (cookies, device logs, analytics tools). Reference the primary Privacy Framework for comprehensive tracking methodology details.
Personal Information Usage
Collected information serves multiple purposes including service provision, legal compliance, security maintenance, fraud prevention, analytics, communication facilitation, and Platform enhancement activities.
Data Retention Practices
Information retention periods align with those specified in the primary Privacy Framework's retention policy section.
Consumer Rights
| Right | Details |
|---|---|
| Right to Know | Access personal information categories, sources, purposes, and third-party sharing details |
| Right to Delete | Request personal information deletion, subject to legal and operational exceptions |
| Right to Correct | Request correction of inaccurate personal information |
| Right to Opt-Out of Sale/Share | Decline personal information sale or sharing for advertising purposes |
| Right to Limit Sensitive Personal Information | Request limitations on sensitive personal information processing (if applicable) |
| Right to Non-Discrimination | Equal service provision regardless of privacy rights exercise |
| Right to Data Portability | Receive personal information in portable format |
Rights Exercise and Authorized Agents
California residents may submit privacy requests via [email protected] or through designated web forms. Identity verification procedures apply to all requests. Authorized agents may submit requests with proper documentation of authority.
Financial Incentive Notice
No financial incentives are currently offered in exchange for personal information collection, retention, or sale.
Twelve-Month Update Commitment
This CCPA addendum undergoes annual review and updates to maintain compliance with applicable regulations.