This Privacy Policy explains how ConvertAll processes information when you browse the site, upload a file for conversion, download a result, or interact with advertising and analytics tools on public pages.
It is written to match the current technical implementation of the service, including temporary file storage, Google AdSense, Google tag based analytics, and browser-side consent storage.
ConvertAll is an online file conversion service. The site operator acts as the controller for personal data processed through the public website, except where independent third-party providers act as separate controllers under their own terms.
This policy applies to public pages, uploaded files, temporary conversion tasks, analytics, advertising technologies, and browser-side preference storage used by the website.
Depending on how you use the site, we may process the following categories of data: IP address, browser and device metadata, language and locale information, referrer information, visited URLs, interaction events on public pages, uploaded file contents, uploaded file names, source and target formats, task identifiers, task status, timestamps, and error messages generated during processing.
We do not require a public user account to use the main converter flow. However, technical and server-side records may still qualify as personal data under the General Data Protection Regulation or similar laws where they can be linked to an identifiable person.
We process uploaded files and related task data to perform the conversion you explicitly request. Where the GDPR applies, this processing is generally necessary to provide the service requested by you or to take steps at your request before providing that service.
We also process technical, diagnostic, anti-abuse, and rate-control information to maintain site security, queue stability, fraud prevention, service monitoring, and troubleshooting. Where the GDPR applies, this is generally based on our legitimate interests in operating and defending the service.
Where required by applicable law, personalized advertising related processing is based on your consent choice. You may accept or reject ad consent through the banner shown on supported public pages.
Uploaded files are processed only to complete the requested conversion. Source files are stored in temporary server storage, converted output files are generated for download, and a task record is created containing a UUID, source format, target format, status, timestamps, and any processing error message.
The current implementation is configured for automatic removal after approximately one hour. Expired task records are periodically deleted by a cleanup job, and deleting the task removes both the uploaded source file and the generated result file from storage.
Please do not upload files containing sensitive, confidential, regulated, or third-party personal data unless you have a lawful basis and are comfortable using an online conversion service for that material.
The site currently uses browser storage for at least the following purposes: storing the visual theme preference under the key convertall-theme and storing the advertising consent choice under the key convertall-ads-consent.
Third-party services such as Google may also use cookies, device identifiers, or similar technologies when analytics or advertising features are active. Their handling of such data is governed by their own privacy documentation.
Public pages load Google tag for measurement and event reporting. The site also includes support for Google AdSense on eligible public pages when advertising is enabled for the current host and a valid publisher client ID is configured.
In the current implementation, ad-related consent signals are updated in a Consent Mode v2-like pattern for ad_storage, ad_user_data, and ad_personalization. Analytics storage remains enabled in the current client-side setup. If you are located in the EEA or UK, you should review this point carefully before using the service.
Personalized advertising should not be enabled until you provide the relevant consent choice where the banner applies. If you reject the advertising choice, ad requests are paused in the browser-side implementation used by the site.
The service may rely on hosting providers, CDN or asset providers, analytics providers, Google advertising services, and task-processing infrastructure. Some of these providers may process data outside your country, including outside the EEA or UK.
Where international transfers occur, they are subject to the legal mechanisms and contractual arrangements offered by the relevant provider. You should also review the privacy notices of any third-party provider that receives data through the service.
Reasonable technical and organizational measures are used to protect information in transit and at rest where available within the deployed environment. However, no online service can guarantee absolute security, availability, or confidentiality.
Depending on your jurisdiction, you may have rights to request access, correction, deletion, restriction, objection, data portability, and withdrawal of consent for future processing based on consent. You may also have the right to lodge a complaint with a supervisory authority.
Because uploaded files and task records are designed for short-lived processing, the most effective way to minimize stored data is usually to avoid uploading unnecessary personal data and to let the automatic retention window expire.
The service is not intended for children under the age required by applicable law to consent to data processing in their jurisdiction.
This Privacy Policy may be updated from time to time to reflect changes in the law, infrastructure, advertising configuration, analytics setup, or file-processing workflow. The revised version applies from the time it is published on this page.
If you have privacy-related questions, requests, or complaints, contact the site operator through the contact details published for the website. If the site later publishes a dedicated privacy or data protection email address, that address should be used for formal requests.