Privacy Policy

Last Updated:

This Privacy Policy describes how TidyFax (“we,” “our”) collects, uses, and protects information when you use our website or services.

1. Information We Collect

1.1 Information You Provide

  • Recipient fax number
  • Your email (optional)
  • Uploaded documents
  • Payment info (processed by Stripe; we do not store card numbers)

1.2 Automatically Collected Information

  • IP address and device information
  • Browser metadata
  • Basic analytics
  • Fax metadata (timestamps, status, etc.)

2. How We Use Your Information

  • Deliver fax transmissions
  • Provide updates or confirmations
  • Improve performance and security
  • Handle billing and prevent fraud
  • Technical support

We never sell personal information.

3. Document Handling

Documents are stored temporarily for processing only. They are deleted automatically after the fax attempt completes.

4. Payment Processing

Stripe handles all payment information independently. We do not store full card numbers or CVVs.

5. Information Sharing

We may share limited data with:

  • Telecommunications carriers for fax delivery
  • Payment processors
  • Security and analytics partners
  • Law enforcement when required by law

6. Data Security

We use TLS/HTTPS encryption, secure cloud infrastructure, and access controls to protect your information.

7. Cookies

We use minimal cookies strictly for functionality, security, and basic analytics.

8. Your Rights (GDPR, CCPA, CPRA)

If applicable based on your location, you may request:

  • Access to your personal data
  • Correction of inaccurate data
  • Deletion of your data
  • Restriction of processing
  • Export of your data

Email requests to privacy@tidyfax.com.

9. Colorado Privacy Act (CPA)

If you are a Colorado resident, you may exercise the following rights under the Colorado Privacy Act:

  • Right to access personal data
  • Right to correct inaccuracies
  • Right to delete personal data
  • Right to data portability
  • Right to opt out of data processing for targeted advertising or profiling (not applicable here since we do not perform these actions)

10. HIPAA & PHI

TidyFax does not permit the transmission of PHI unless:

  • A signed HIPAA Business Associate Agreement is in place
  • Your organization is approved for HIPAA workflows

11. Children’s Privacy

Not intended for use by children under 13.

12. International Data Transfers

Data may be processed in the United States. Safeguards are applied consistent with applicable law.

13. Changes

We may update this Privacy Policy periodically. Continued use constitutes acceptance.

14. Contact

Email: privacy@tidyfax.com