Legal
Last updated: March 21, 2026
DocMetrics ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service. Please read this policy carefully. By using DocMetrics, you agree to the collection and use of information in accordance with this policy.
We collect information that you provide directly to us when you create an account or use the Service, including your name, email address, company name, and job title; profile information such as a profile photo and contact preferences; payment information which is processed securely by our third-party payment processor and never stored directly by us; PDF documents and related metadata you upload to the platform; and messages, feedback, and support requests you send us.
When you use the Service we also automatically collect usage data including pages viewed, features used, time spent, and click patterns; device information including IP address, browser type, operating system, and device identifiers; approximate location data based on your IP address; session data, preferences, and authentication tokens via cookies; and document engagement metrics including views, downloads, and time spent per page.
Document Privacy: The documents you upload are encrypted and private. We do not access, read, or use your document content for any purpose other than providing the Service. Your documents belong to you.
We use the information we collect to provide and operate the Service — creating and managing your account, processing and storing your documents, enabling document sharing and collaboration, generating analytics and insights, and providing customer support.
We also use your information to improve the Service by analysing usage patterns, developing new features, fixing bugs, and optimising performance; to communicate with you including sending service announcements, responding to enquiries, sending marketing communications with your consent, and notifying you about document activity; and for security and fraud prevention including detecting and preventing fraudulent activity, monitoring for suspicious behaviour, enforcing our Terms of Service, and complying with legal obligations.
DocMetrics enables users ("senders") to share documents with third parties ("recipients") and track how those recipients engage with shared content. When a recipient accesses a document shared through DocMetrics, we collect engagement data on behalf of the sender including the time the document was opened, the device and approximate location of the viewer, time spent on each page, and whether the document was downloaded.
Where a sender requires email verification before a recipient can view a document, the recipient's email address is collected and associated with their engagement data. This data is made available to the sender through their DocMetrics dashboard.
Senders who use DocMetrics to share documents with their own clients, prospects, or contacts are responsible for ensuring they have the appropriate legal basis for sharing those individuals' engagement data. DocMetrics acts as a data processor on behalf of the sender in this context.
For recipients: If you have received a document link from a DocMetrics user and have questions about how your data is being used, please contact the person or organisation that sent you the link. You may also contact us at support@docmetrics.io and we will assist where we are able to.
We do not sell your personal information to third parties.
We share your information with your consent when you explicitly share documents with other users or third parties and we share the information necessary to facilitate that sharing.
We share information with trusted third-party service providers who help us operate our business including cloud hosting providers, payment processors, email service providers, and security services. These providers are contractually obligated to protect your data and may only use it to provide services to DocMetrics.
We may disclose your information if required to do so by law or in response to valid legal requests from authorities. We may also disclose information to protect the rights, property, or safety of DocMetrics, our users, or others, or to prevent fraud or illegal activity.
If DocMetrics is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.
We implement industry-standard security measures to protect your information including TLS encryption for all data in transit, encryption at rest for stored documents and personal data, multi-factor authentication support, role-based access control, regular access audits, and automated backups.
While we implement robust security measures, no method of transmission over the internet or electronic storage is 100 percent secure. We cannot guarantee absolute security of your information.
Data Breach Notification: In the event of a data breach that affects your personal information, we will notify you within 72 hours via email and provide details about what happened, what data was affected, and the steps we are taking to address it.
We retain your personal data for as long as your account is active or as needed to provide the Service. If you terminate your account, we will delete your personal data within 90 days unless we are required to retain it by applicable law.
Document engagement data generated by recipients viewing your shared documents is retained for the duration of your account. You can delete individual documents and their associated analytics from your dashboard at any time. We recommend exporting any data you wish to keep before closing your account as deletion is permanent and cannot be undone.
Depending on your location and applicable law, you may have the following rights regarding your personal information:
Right to Access
You can request a copy of the personal data we hold about you. We will provide this in a structured, commonly used format within 30 days.
Right to Rectification
You can request correction of inaccurate or incomplete personal data. You can also update most information directly in your account settings.
Right to Deletion
You can request deletion of your personal data. We will delete your data unless we have a legal obligation to retain it. Deletion is permanent and cannot be undone.
Right to Data Portability
You can request your data in a machine-readable format. We provide export functionality in your account settings.
Right to Object
You can object to processing of your personal data for direct marketing purposes. You can opt out of marketing emails at any time using the unsubscribe link in any email we send.
Right to Restrict Processing
You can request restriction of processing in certain circumstances such as while we verify the accuracy of your data.
To exercise any of these rights contact us at support@docmetrics.io or use the data controls in your account settings. We will respond to your request within 30 days and may need to verify your identity before processing it.
We use cookies and similar tracking technologies to operate and improve the Service. We use essential cookies that are necessary for the Service to function including security, authentication, and session management — these cannot be disabled. We use functional cookies that remember your preferences such as language and display settings. We use analytics cookies to understand how the Service is used so we can improve it.
You can control non-essential cookies through your browser settings. Disabling certain cookies may affect your ability to use some features of the Service. Essential cookies cannot be disabled as they are required for the Service to function.
DocMetrics operates globally and your data may be transferred to and stored in countries outside your own. When we transfer personal data internationally we ensure appropriate safeguards are in place in accordance with applicable data protection law including using Standard Contractual Clauses approved by the European Commission where required and ensuring all third-party processors sign data processing agreements.
All data transfers use encryption in transit and at rest regardless of where the data is processed or stored.
For users in the European Economic Area, DocMetrics processes personal data under the following legal bases: performance of a contract when processing is necessary to provide the Service you have signed up for; legitimate interests for improving our Service, preventing fraud, and ensuring security; consent for marketing communications and non-essential cookies; and legal obligation where processing is required by applicable law.
If you are located in the EEA and have concerns about how we process your personal data, you have the right to lodge a complaint with your local data protection authority.
Our Service is not intended for anyone under the age of 18.
We do not knowingly collect personal information from anyone under 18 years of age. If you believe a child has provided personal information to us, please contact us immediately at support@docmetrics.io and we will delete that information as quickly as possible.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. For material changes we will notify you at least 30 days in advance via email and display a prominent notice in the Service. For minor changes we will update the last updated date at the top of this policy.
Your continued use of the Service after changes are posted constitutes your acceptance of the updated policy. We encourage you to review this policy periodically.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at support@docmetrics.io. We aim to respond to all privacy enquiries within 3 business days. For complex requests such as data access or deletion we will respond within 30 days as required by applicable law.
For general support enquiries please visit our contact page.
We are committed to being transparent about how we handle your information. Reach out and we will respond within 3 business days.
Version 1.0 — Last updated: March 21, 2026