Privacy Policy
Effective Date: March 24, 2026
FreightDoc ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our freight document generation API and related services (the "Service"). Please read this policy carefully. By using the Service, you consent to the practices described herein.
1. Information We Collect
We collect information in the following categories:
Account Information
- Name, email address, and company name provided during registration
- Billing information processed securely through our payment provider
- API keys and authentication credentials generated for your account
Usage Data
- API call volume, endpoints accessed, and response times
- Feature usage patterns and service interaction data
- IP addresses, browser type, and device information when accessing our dashboard
API Logs
- Request and response metadata (timestamps, status codes, payload sizes)
- Document generation parameters (document types, formats requested)
- Error logs and debugging information for service improvement
2. How We Use Your Information
We use the information we collect for the following purposes:
- Service Delivery: To authenticate your API requests, generate freight documents, process payments, and maintain your account
- Service Improvement: To analyze usage patterns, optimize performance, identify and fix bugs, and develop new features
- Customer Support: To respond to your inquiries, troubleshoot issues, and provide technical assistance
- Communication: To send you important service updates, security alerts, billing notifications, and - with your consent - product announcements
- Legal Compliance: To comply with applicable laws, regulations, and legal processes
3. Data Storage and Security
We take the security of your data seriously and implement industry-standard measures to protect it:
- All data is encrypted at rest using AES-256 encryption
- All data in transit is protected with TLS 1.3 encryption
- API keys are hashed and stored securely - we never store them in plain text
- Access to production systems is restricted and audited
- We are pursuing SOC 2 Type II compliance and will update this policy upon certification
While we strive to protect your information, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security but are committed to maintaining robust protections.
4. Third-Party Services
We use the following third-party services that may process your data:
- Stripe: Payment processing - subject to Stripe's Privacy Policy
- Brevo: Email communications and transactional messages - subject to Brevo's Privacy Policy
- Cloudflare: Hosting, CDN, and DDoS protection - subject to Cloudflare's Privacy Policy
We do not sell your personal information to any third party. We only share data with third parties as necessary to provide the Service.
5. Data Retention
- API Logs: Retained for 90 days from the date of the request, then automatically purged
- Account Data: Retained for as long as your account remains active. Upon account deletion, personal data is removed within 30 days
- Billing Records: Retained as required by applicable tax and financial regulations (typically 7 years)
- Generated Documents: Temporarily cached for up to 24 hours to support re-download, then permanently deleted from our servers
6. Your Rights
You have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of any inaccurate or incomplete data
- Deletion: Request deletion of your personal data, subject to legal retention requirements
- Export: Request a portable copy of your data in a machine-readable format (JSON or CSV)
- Opt-Out: Unsubscribe from marketing communications at any time via the link in our emails
To exercise any of these rights, contact us using the information in Section 10 below. We will respond to your request within 30 days.
7. Cookies
We use minimal cookies and tracking technologies:
- Essential Cookies: Required for authentication and session management when using the dashboard
- Analytics: We use Google Tag Manager to collect anonymous usage analytics to improve our Service. You can opt out by disabling cookies in your browser settings or using a browser extension
We do not use advertising cookies or third-party tracking pixels.
8. Children's Privacy
FreightDoc is a business-to-business service and is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will take steps to delete that information promptly.
9. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will notify you by email or by posting a prominent notice on our website at least 30 days before the changes take effect. Your continued use of the Service after the effective date of changes constitutes acceptance of the updated policy.
10. Contact Us
If you have questions or concerns about this Privacy Policy or our data practices, please reach out to us. We are committed to resolving any issues promptly.
Ready to Get Started?
Join the waitlist for early access to FreightDoc and be among the first to automate your freight document generation.
Join the Waitlist