CodexPDF CodexPDF

Privacy notice

This page explains what happens to PDFs you upload to the CodexPDF demo at /demo and what we do with the extraction results.

Who we are

CodexPDF is operated by Print with Synergy / Think Neverland. You can reach us at hello@printwithsynergy.com.

Default demo behaviour

By default, files you upload to the demo are processed entirely in memory: a type/size check, a virus scan, then extraction by the Codex engine. The file is not written to disk and is not retained after the response is returned to your browser.

Optional: keep a copy to improve the engine

On the demo page you will see an opt-in checkbox: "Help improve the engine — let CodexPDF keep this file and the extracted results to improve our extraction engine." The checkbox is off by default. The demo works identically whether you tick it or not.

If you tick the box, after extraction completes we store:

  • the original PDF you uploaded,
  • its filename,
  • its size in bytes,
  • the structured extraction results (the Codex JSON),
  • the time of upload and a scheduled deletion time.

We do not store your IP address, browser fingerprint, account identifiers, or any cookies tied to the upload. We do not share retained files with third parties. The PDF lives in access-controlled object storage; the metadata lives in an access-controlled Postgres database.

How long we keep it

Retained uploads are automatically deleted after the retention window (90 days by default). After deletion the PDF object is removed from object storage and the results record is cleared. You can also ask us to delete a specific upload sooner — see below.

Why we keep it

The sole purpose is to improve the CodexPDF extraction engine — identifying classes of documents we handle poorly, validating schema changes, and regression-testing new versions. We do not use retained files to train third-party models, generate marketing content, or for any purpose other than engine improvement.

Lawful basis (UK / EU GDPR)

Where UK GDPR or EU GDPR applies, we rely on your explicit consent (Article 6(1)(a)) for retention. Consent is given by ticking the checkbox on the demo page. You can withdraw consent at any time by deleting the upload (see below) or by emailing us. Withdrawing consent does not affect processing carried out before the withdrawal.

Deleting a retained upload

When your upload is stored, the demo response shows two values: a Receipt ID and a Deletion token. Keep these if you want to be able to delete the copy before it expires.

To delete on demand, either:

  • Send the receipt ID and deletion token to hello@printwithsynergy.com, or
  • Call the API directly: DELETE /api/demo-retention/<id> with the header X-Deletion-Token: <token>.

If you no longer have the deletion token, email us from the address you uploaded from (if any) or describe the file as best you can and we will do our best to identify and remove it.

Your rights

Where UK / EU GDPR applies you have the right to access, correct, delete, restrict, or port the personal data we hold about you, and to object to processing. To exercise any of these rights, email hello@printwithsynergy.com. You also have the right to lodge a complaint with your supervisory authority (in the UK, the ICO).

Security

Retained files are stored in access-controlled object storage with encryption in transit (HTTPS) and at rest (provider-side). Metadata is stored in an access-controlled Postgres database. Access is restricted to authorised CodexPDF maintainers.

Changes to this notice

If we materially change how retained uploads are used, we will update this notice and the demo page wording before the change takes effect.