Skip to main content

Privacy Policy

Last updated: April 25, 2026

This policy explains what information RoadDXF collects, how we use it, and your choices. Short version: we collect the minimum we need to run the Service (your email, your subscription status, and how many exports you've used this month). We don't sell your data. We don't track you for advertising.

1. Information We Collect

Account information. When you sign in with Google via Firebase Authentication, we receive your email address, display name, and a Google profile photo URL (if you have one). We do not receive your Google password or access to your Google account beyond these basic identity fields.

Subscription and billing information. If you subscribe to a paid tier, we store your Stripe customer ID, subscription ID, current tier, subscription status, renewal date, and cancellation state. Your credit card number and billing address are handled entirely by Stripe — we never see or store them.

Usage data. We count how many DXF exports you have generated in the current calendar month, to enforce your plan's limit. We do not store the bounding boxes you selected, the DXF files you downloaded, or the content of your exports.

Temporary file storage (mobile Share feature only). On mobile devices, when you tap the Share / Send via Email button, your exported DXF file is temporarily uploaded to Vercel Blob cloud storage and assigned a unique public URL. This URL can be shared with anyone who needs to download the file. Uploaded files are automatically deleted after 24 hours. This feature is only used when you explicitly tap the Share button on mobile — DXF files you download directly are never uploaded to any server.

Technical data. Our hosting provider (Vercel) and our backend services may log standard request information: IP address, browser type, timestamps, and URLs requested. These logs are retained for a limited time for debugging and security purposes.

2. Information We Do NOT Collect

3. How We Use Your Information

We will not send you marketing emails without your explicit opt-in.

4. Third-Party Services We Use

RoadDXF relies on these external services to operate:

5. Cookies and Local Storage

RoadDXF uses a small set of cookies and browser storage. Non-essential analytics cookies are off by default for California, EU, and UK visitors via Google Consent Mode v2, and turn on only when you click Accept on the cookie banner. You can change your choice anytime via the Cookie Settings link in the footer. RoadDXF uses:

We do not use tracking cookies for advertising.

6. Your Cookie Choices and Consent

If you visit from California, the European Union, or the United Kingdom, you will see a cookie banner the first time you load the site. Until you click Accept, Google Analytics, Firebase Analytics, and Stripe analytics are set to denied via Google Consent Mode v2. This means no analytics or advertising cookies are stored and no personal data is sent to those services for tracking purposes. You can change your choice at any time using the Cookie Settings link in the footer.

Visitors outside California, the EU, and the UK do not see the banner by default. If you would prefer to opt out anyway, click Cookie Settings in the footer.

Note: certain cookies are strictly necessary for the site to function (for example, the authentication cookie that keeps you signed in). These cannot be disabled because the Service would not work without them.

Do Not Track signals. Some browsers send a "Do Not Track" (DNT) header. Because there is no industry consensus on how DNT signals should be interpreted by websites, RoadDXF does not respond to DNT signals. To opt out of analytics on RoadDXF, please use the Decline button in our cookie banner or the Cookie Settings link in the footer.

Global Privacy Control (GPC). RoadDXF honors the GPC browser signal automatically. If your browser sends a GPC opt-out signal, we treat it as a request to decline non-essential cookies for that visit, with no banner shown. This complies with the Colorado Privacy Act and Connecticut Data Privacy Act.

7. Data Retention

8. Your Rights

Depending on where you live, you may have rights under laws like the California Consumer Privacy Act (CCPA) or the European Union's General Data Protection Regulation (GDPR). These include:

To exercise any of these rights, email support@roaddxf.com. We will respond within 30 days.

9. Children's Privacy

RoadDXF is not intended for children under 13, and we do not knowingly collect information from children under 13. If you believe a child has provided us with personal information, contact us and we will delete it.

10. Security

We use industry-standard security measures: HTTPS for all connections, Firebase's managed authentication, and Stripe's PCI-compliant payment infrastructure. However, no internet service is 100% secure. Please use a unique, strong password on your Google account.

11. International Users

RoadDXF is operated from the United States. If you use the Service from outside the U.S., your information will be transferred to and processed in the U.S. By using the Service, you consent to this transfer.

12. Changes to This Policy

We may update this policy from time to time. When we do, we will update the "Last updated" date at the top. Material changes will be announced by email to active subscribers.

13. Contact

Questions about this privacy policy or your data? Email support@roaddxf.com.