Skip to main content

Privacy

Privacy-First PDF Generation

PDFBolt is a privacy-first PDF generation API. Conversions run on EU-hosted infrastructure, and generated PDFs stored by PDFBolt expire after 24 hours. Sensitive request parameters are redacted from stored request logs by default – their values are not stored or logged in those records.

Data Handling

  • Temporary PDF Storage: PDFs stored in PDFBolt's default temporary storage expire after 24 hours. PDFs uploaded to your own S3 bucket are stored and retained according to your bucket settings.

  • Direct S3 Uploads: Generated PDFs can be uploaded directly to your S3-compatible bucket so you can control storage location, access policies, and retention after upload.

  • Minimal Stored Request Data: PDFBolt stores the request data needed to operate and troubleshoot the service. By default, PDFBolt redacts the following fields from stored request logs: html, templateData, httpCredentials, and customS3PresignedUrl.

  • HTML and Template Data Handling: HTML content and template data are used to render PDFs. After processing is complete, their values are redacted from stored request logs by default and are not stored or logged in those records.

  • GDPR Compliance: PDFBolt supports GDPR-compliant document conversion workflows with EU-hosted conversion infrastructure, a Data Processing Agreement, configurable request redaction, and 24-hour default PDF storage.

Data Controls

You can choose where generated PDFs are stored and which request parameters are retained in request logs.

Privacy Controls Available:

  • Direct S3 uploads to keep generated PDFs in your own storage environment.
  • Parameter redaction – choose which request parameters are redacted from stored logs. html, templateData, httpCredentials, and customS3PresignedUrl are redacted by default.
  • PDFs stored by PDFBolt for retrieval through documentUrl expire after 24 hours.

Security Controls

  • Encrypted Transmission: API requests, webhook delivery, storage uploads, and PDF retrieval use HTTPS/TLS.
  • Restricted Access: Access to production systems is limited to authorized personnel.
  • EU-Hosted Conversion: PDFBolt's document conversion infrastructure runs in the European Union. For custom S3 uploads, the final storage location depends on your bucket.
  • Static IP Addresses: PDFBolt uses fixed IP addresses when fetching source URLs, delivering webhooks, or uploading PDFs to your S3-compatible storage.

More Information

For detailed compliance information and legal agreements:

Questions?

For privacy or data-handling questions, contact us at contact@pdfbolt.com.