Privacy Policy

Last updated: 2025-01-08

Privacy Overview

This privacy policy explains how Fylite handles your information. Written in plain language.

Short version: Fylite is designed to know as little about you as possible. We don't collect personal information beyond what's necessary for service operation. Browser-based tools process files entirely on your device—we never see them. Server-based tools temporarily upload files for processing, then automatically delete them within 30 minutes.

Data Controller

The data controller for Fylite is:

Web Strana, Dino Periša s.p.
Slovenia, European Union

Contact: Contact Form

How File Processing Works

Fylite offers two types of tools:

Browser-Based Tools

Most tools process files entirely in your browser. What this means:

  • Files you select stay on your device
  • Processing is in your browser
  • No file data transmitted to our servers
  • Results generated locally
  • We have no mechanism to access, view, or store your files

Server-Based Tools

Some advanced tools require server-side processing. When you use these tools:

  • Files are uploaded via encrypted HTTPS connection
  • Processed on our servers for the specific operation requested
  • Automatically deleted within 30 minutes of upload
  • Not accessed by humans unless you report a technical issue
  • Not used for training, analysis, or any purpose beyond processing
  • Not shared with third parties

Verifying Browser-Based Processing

For browser-based tools, open your browser's developer tools (F12), go to Network tab, and process a file. You'll see no file data leaves your browser. Only requests are for loading the website code.

You can disconnect from the internet after the page loads and browser-based tools continue working. This wouldn't be possible if files were sent to servers.

What Data We Collect

We collect minimal data to operate the service and understand usage patterns:

Server-Based Tool Logs

When you use server-based tools, we log technical data:

  • Timestamp of operation
  • File size (not content)
  • Operation type requested
  • Processing duration
  • IP address (for rate limiting and abuse prevention)
  • Error messages if processing fails
  • These logs contain no file content
  • Retained for 30 days for debugging and security
  • Not linked to personal identity
  • Used solely for service improvement and abuse prevention

Analytics Data

We use Google Analytics to understand site usage. Data collected:

  • Pages visited and tools used (not file contents)
  • Country-level location (not precise location)
  • Browser and device type
  • Referral source (how you found us)
  • General usage patterns (which tools are popular)

What We Don't Collect

We explicitly do not collect:

  • Names, email addresses, or personal identifiers (for basic usage)
  • File contents from browser-based tools
  • File contents from server-based tools (beyond processing duration)
  • Precise location data
  • Browsing history outside our site

Cookies and Local Storage

Fylite uses cookies and browser storage:

Functional Storage

We store preferences in your browser's local storage (theme preference, language). This data never leaves your browser and isn't transmitted to servers.

Analytics Cookies

Our analytics provider uses cookies to measure site usage. These cookies collect data described in the Analytics section.

Third-Party Services

Fylite uses third-party services:

Infrastructure Providers

Our website and server-based tools are hosted on third-party infrastructure. These providers may access technical data including IP addresses and server logs as part of their service.

Analytics Provider

We use a third-party analytics service to measure site usage and identify issues. This service collects data described in the Analytics section above.

Legal Basis for Processing (GDPR)

Under GDPR, we process data based on:

  • Legitimate interests: Operating the service, preventing abuse, improving functionality
  • Consent: Analytics and advertising (via cookie consent)
  • Contract: Providing the service you requested (file processing)

Data Retention

We retain data for limited periods:

  • Server-based tool files: Deleted within 30 minutes of upload
  • Server logs: 30 days, then automatically deleted
  • Analytics data: Up to 12 months, then deleted
  • Browser local storage: Remains until you clear browser data

Your Rights (GDPR)

Under GDPR and similar regulations, you have rights:

  • Right to access: Request what data we hold about you
  • Right to rectification: Correct inaccurate data
  • Right to erasure: Request deletion of your data
  • Right to restrict processing: Limit how we use your data
  • Right to data portability: Receive your data in machine-readable format
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: For analytics and advertising

Exercising Your Rights

To exercise these rights, contact: Contact Form

We'll respond within 30 days. For file processing, since browser-based tools don't involve data transfer and server-based tools auto-delete files within 30 minutes, there's typically no data to access or delete beyond server logs.

Supervisory Authority

You have the right to lodge a complaint with your local data protection authority. In Slovenia, this is:

Information Commissioner of the Republic of Slovenia (IP)
Website: https://www.ip-rs.si/

International Data Transfers

Fylite is operated in the European Union (Slovenia). Some third-party services (analytics, advertising, hosting) may transfer data outside the EU.

When data is transferred outside the EU, we ensure adequate protection through:
- Standard Contractual Clauses approved by the European Commission
- Adequacy decisions for certain countries
- Service providers certified under relevant frameworks

For questions about specific data transfers, contact: Contact Form

Children's Privacy

Fylite doesn't knowingly collect information from children under 16 without parental consent. Our tools are available to everyone, but we don't specifically target children.

If you're a parent and believe your child has used Fylite and provided personal information, contact us at Contact Form. For browser-based tools, no data is collected. For server-based tools, files are automatically deleted within 30 minutes.

Security

We implement appropriate security measures:

  • HTTPS encryption for all connections
  • Automatic file deletion for server-based tools
  • Security headers to prevent common vulnerabilities
  • Regular security reviews
  • Rate limiting to prevent abuse
  • Minimal data collection reduces breach risk

Your Security Responsibilities

For browser-based tools, security depends on your device. We recommend:

  • Keep browser updated to latest version
  • Use reputable antivirus software
  • Be cautious with files from unknown sources
  • Keep backups of important files

Changes to This Policy

We may update this privacy policy to reflect changes in practices or for legal/regulatory reasons. Significant changes will be announced via website notice.

Last Updated date at the top indicates most recent changes. Continued use of Fylite after changes constitutes acceptance of updated policy.

Contact Us

Questions about this privacy policy or our practices?

Contact: Contact Form

We respond to all privacy inquiries personally.

Summary

Our privacy approach:

  • Browser-based tools: files processed locally, never leave your device
  • Server-based tools: temporary upload, automatic deletion within 30 minutes
  • Minimal data collection: no personal information for basic usage
  • Third-party analytics and advertising: can be controlled via browser settings
  • GDPR compliant: EU-based, clear data practices, your rights respected
  • No data to sell or breach: minimal collection by design