Privacy Notice

Censr is operated by Carson Green, an individual sole proprietor, acting as data controller for the personal data described below. Contact: admin@censr.tech.

Censr performs PDF redaction entirely in your browser. The contents of your document, the redactions you draw, and the final redacted file are never uploaded to or stored on our servers. We have no copy of your file and no way to access it.

• Payment information (name, email, billing details) — collected and processed by our payments provider, Paddle, acting as Merchant of Record. We receive limited transaction metadata (e.g. transaction ID, amount, country) but not your full card details. Legal basis: performance of a contract.
• Server logs (IP address, user agent, timestamps, request paths) — collected automatically by our hosting infrastructure for security, abuse prevention, and debugging. Retained for a short period and then deleted or aggregated. Legal basis: legitimate interest in operating a secure service.
• Purchase-unlock record — when you pay to download a redacted file, we store a record of that transaction so your browser can re-enable the download within your session. This does not contain the file itself. Legal basis: performance of a contract.

We use a small number of essential cookies and local storage entries required for the Service to function (for example, remembering your unlocked download within a session). We may also use cookies and third-party analytics tools — such as Google Analytics — to understand aggregate usage of the Service, measure performance, and improve the product. Where required by applicable law (for example, in the EEA and UK), non-essential analytics cookies will only be set after you give consent through a cookie banner. You can withdraw consent or clear cookies through your browser at any time.

• Paddle — payment processing, billing, tax, invoicing, and subscription management as Merchant of Record.
• Hosting and infrastructure providers — to operate the website and store the limited records described above.
• Analytics providers — where enabled and where you have consented, for aggregate usage measurement.
• Authorities — where required by law, legal process, or to protect rights, property, or safety.

We never retain the contents of your documents. Payment records are retained per Paddle’s policy and our own tax and accounting obligations. Server logs are retained for a short period and then deleted or anonymised. Unlock records are retained only as long as needed to support re-download and reconciliation.

Depending on where you live, you may have rights to access, correct, delete, restrict, or object to the processing of your personal data, and to data portability. You may also have the right to withdraw consent and to lodge a complaint with a supervisory authority. To exercise any of these rights, email admin@censr.tech.

All traffic to Censr is served over HTTPS. Because document processing happens in your browser, the most sensitive data — the document itself — never leaves your device. We use industry-standard technical and organisational measures to protect the limited data we do hold.

Our service providers may process data outside your country of residence. Where required, we rely on appropriate safeguards such as standard contractual clauses.

We may update this notice from time to time. Material changes will be reflected in the “Last updated” date above.