Privacy Policy

This policy explains what information RoadDXF collects, how we use it, and your choices. Short version: we collect the minimum we need to run the Service (your email, your subscription status, and how many exports you've used this month). We don't sell your data. We don't track you for advertising.

1. Information We Collect

Account information. When you sign in with Google via Firebase Authentication, we receive your email address, display name, and a Google profile photo URL (if you have one). We do not receive your Google password or access to your Google account beyond these basic identity fields.

Subscription and billing information. If you subscribe to a paid tier, we store your Stripe customer ID, subscription ID, current tier, subscription status, renewal date, and cancellation state. Your credit card number and billing address are handled entirely by Stripe — we never see or store them.

Usage data. We count how many DXF exports you have generated in the current calendar month, to enforce your plan's limit. We do not store the bounding boxes you selected, the DXF files you downloaded, or the content of your exports.

Temporary file storage (mobile Share feature only). On mobile devices, when you tap the Share / Send via Email button, your exported DXF file is temporarily uploaded to Vercel Blob cloud storage and assigned a unique public URL. This URL can be shared with anyone who needs to download the file. Uploaded files are automatically deleted after 24 hours. This feature is only used when you explicitly tap the Share button on mobile — DXF files you download directly are never uploaded to any server.

Technical data. Our hosting provider (Vercel) and our backend services may log standard request information: IP address, browser type, timestamps, and URLs requested. These logs are retained for a limited time for debugging and security purposes.

2. Information We Do NOT Collect

• We do not use advertising trackers or third-party advertising pixels.
• We do not sell, rent, or share your personal information with advertisers or data brokers.
• We do not permanently store the DXF files you export. Files uploaded via the mobile Share feature are stored temporarily for 24 hours and then automatically deleted.
• We do not store your credit card information (Stripe handles that).

3. How We Use Your Information

• To authenticate you and maintain your account.
• To enforce your subscription plan's export limit.
• To process payments and send you receipts through Stripe.
• To send you essential account notifications (billing receipts, password resets, service disruptions).
• To respond to your support inquiries.
• To debug, secure, and improve the Service.

We will not send you marketing emails without your explicit opt-in.

4. Third-Party Services We Use

RoadDXF relies on these external services to operate:

• Firebase (Google): Authentication and account database. Firebase privacy.
• Stripe: Payment processing and subscription management. Stripe privacy.
• Vercel: Hosting and serverless functions. Vercel privacy.
• Vercel Blob: Temporary cloud storage used exclusively by the mobile Share feature. Uploaded DXF files are publicly accessible via a unique URL for 24 hours, then automatically deleted. Vercel privacy.
• Thunderforest: Map background tiles displayed in the app. Thunderforest terms.
• Esri ArcGIS Online: Optional satellite imagery layer. Esri privacy.
• OpenStreetMap (Overpass API): Road, building, and address data. OSMF privacy.
• Nominatim (OpenStreetMap): Address search and reverse geocoding when you look up a location.
• County GIS services and TIGER (U.S. Census): Parcel boundaries (no personal data exchanged).
• Google Analytics 4 (Google): Aggregated, privacy-respecting usage analytics (page views, referrers, rough geographic region, device type) to help us improve the Service. We do not use Google Analytics for advertising. Google privacy · GA opt-out browser add-on.

5. Cookies and Local Storage

RoadDXF uses:

• Authentication cookies (set by Firebase) to keep you signed in.
• Browser local storage to remember your export count if you use the Service as a guest (without signing in).
• Google Analytics cookies (e.g., _ga, _ga_*) to measure aggregate site usage. These do not identify you personally and we do not use them for advertising. You can opt out using the Google Analytics opt-out browser add-on.

We do not use tracking cookies for advertising.

6. Data Retention

• Your account data is retained as long as your account exists.
• If you delete your account (contact us), we will remove your personal data from our database within 30 days, except where we are required to retain it for tax or legal reasons (billing records, for example).
• Server logs are retained for up to 90 days for security and debugging.

7. Your Rights

Depending on where you live, you may have rights under laws like the California Consumer Privacy Act (CCPA) or the European Union's General Data Protection Regulation (GDPR). These include:

• The right to know what personal information we have about you.
• The right to request a copy of your data.
• The right to request correction or deletion of your data.
• The right to opt out of the sale of your personal information (we do not sell personal information, so this is automatic).

To exercise any of these rights, email support@roaddxf.com. We will respond within 30 days.

8. Children's Privacy

RoadDXF is not intended for children under 13, and we do not knowingly collect information from children under 13. If you believe a child has provided us with personal information, contact us and we will delete it.

9. Security

We use industry-standard security measures: HTTPS for all connections, Firebase's managed authentication, and Stripe's PCI-compliant payment infrastructure. However, no internet service is 100% secure. Please use a unique, strong password on your Google account.

10. International Users

RoadDXF is operated from the United States. If you use the Service from outside the U.S., your information will be transferred to and processed in the U.S. By using the Service, you consent to this transfer.

11. Changes to This Policy

We may update this policy from time to time. When we do, we will update the "Last updated" date at the top. Material changes will be announced by email to active subscribers.

12. Contact

Questions about this privacy policy or your data? Email support@roaddxf.com.