Privacy Policy

Zindle is a service operated by DS Webhosting Services (ABN 42 988 054 565), an Australian business. This Privacy Policy explains what information Zindle collects, how it is used, how long it is kept, and your rights. We handle personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles, and — where it applies to you — the EU/UK General Data Protection Regulation (GDPR).

Who we are

Zindle is an HTML-to-PDF rendering API operated by DS Webhosting Services (ABN 42 988 054 565). DS Webhosting is the entity responsible for the personal information described in this policy. Where this policy says "we" or "us," it means DS Webhosting Services operating the Zindle service. Contact: support@zindle.com.au.

We don't store your documents

When you use Zindle to convert HTML into a PDF, your document content is processed only to produce your PDF and is not retained:

• We do not store the HTML you submit.
• We do not store the PDFs we generate — they are returned to you and not kept.
• Our rendering systems process your content in memory and do not write it to disk or to logs.

We record only metadata about each render — which account made the request, when, the size of the result, and whether it succeeded — to operate the service, enforce usage limits, support billing, and detect abuse. This metadata does not contain your document content.

If your HTML references remote resources (such as images or stylesheets), our system fetches them so it can render your document. We do not store the fetched content, and we limit what is recorded about these fetches so that addresses containing personal data or credentials are not retained in our logs.

What we collect

We keep collection deliberately minimal. We collect:

• Account information — your email address and the identifier from the login provider you use (such as Google or GitHub) when you sign in. Your email is stored encrypted.
• API credentials — a secured (hashed) form of your API keys. We never store the keys themselves.
• Usage metadata — records of your API activity (timestamps, outcomes, volume) for metering, billing, and abuse prevention. This contains no document content.
• Security logs — to protect the service, we log security-relevant events such as authentication attempts, including the IP address and browser/user-agent involved.
• Billing information — your subscription and payment history. Card payments are processed by Stripe; we do not store your card details.

What we don't collect

We do not use website analytics or tracking tools (such as Google Analytics). We do not run advertising trackers. We do not build profiles of visitors browsing our site, and we do not collect document content. We do not send marketing emails or newsletters — the only emails you receive from us are direct replies to your enquiries and operational messages about your account (such as billing receipts or service notices).

How we use your information

• To provide and operate the Zindle API and your account.
• To authenticate your requests and enforce your plan's usage limits.
• To bill you and maintain financial records.
• To protect the service against abuse, fraud, and security threats.
• To respond to your support enquiries.

We do not use your document content for any purpose other than generating your requested PDF. We do not sell, rent, or trade your personal information.

Legal bases (GDPR, where it applies to you): we process account, credential, usage, and billing data to perform our contract with you; we carry out security logging on the basis of our legitimate interest in protecting the service; and we retain financial records to comply with our legal (tax) obligations.

Payment data

We do not collect or store payment card details on our own systems. Payments for Zindle are processed by Stripe (see Stripe's Privacy Policy). Your card details are provided directly to Stripe and are never transmitted to or stored on our infrastructure. Billing is handled under DS Webhosting's payment arrangements with Stripe; charges may appear on your statement as ZINDLE and your receipt as a DS Webhosting transaction for "Zindle Pro."

Third-party services

In providing Zindle we rely on a small number of third-party providers:

• Stripe — payment processing (handles your card details directly).
• Google / GitHub — only to authenticate your login (we receive your email and a user identifier).
• DS Webhosting infrastructure — for sending account, billing, and support email.

We share with these providers only what is necessary for them to deliver their part of the service. We do not sell, rent, or trade your personal information.

How long we keep your information

Information	Retention
Document content (HTML / PDF)	Not stored
Account information (email, login id)	While your account is open; removed on closure or request (subject to records below)
API key records	While your account is open
Usage metadata	12 months
Security logs (incl. IP addresses)	12 months
Billing and financial records	7 years (required by Australian tax law)

When you close your account or ask us to delete your data, we remove your personal information but retain the minimum financial records we are legally required to keep (for tax purposes). Those retained records are kept only for that legal purpose.

Your rights

You can:

• Access the personal information we hold about you.
• Correct inaccurate information.
• Delete your personal information ("erasure"), subject to records we must keep by law (such as financial records for tax purposes).
• Receive a copy of your data in a portable format.
• Object to or restrict certain processing.

To exercise any of these, contact support@zindle.com.au. We will respond within the timeframes required by applicable law. Where GDPR applies, you may also lodge a complaint with your local data protection authority. In Australia, if you believe we have mishandled your personal information, please contact us first; if you remain unsatisfied you may complain to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

Data security

We protect your information with measures including encryption of sensitive data at rest (such as your email address), hashing of credentials, network segmentation, restricted administrative access, and security monitoring. No method of electronic storage is completely secure, but we take protecting your data seriously and maintain processes to detect and respond to incidents. If a data breach occurs that is likely to cause serious harm, we will notify you and the relevant authority as required by law.

International users

Zindle is operated from Australia. If you access the service from the EU, UK, or elsewhere, your information is processed in Australia and handled in accordance with this policy and applicable law.

Cookies

The Zindle website and application use only cookies that are strictly necessary for the service to function (for example, to keep you signed in to your account). We do not use tracking or advertising cookies.

Children's privacy

Zindle is not directed at children, and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will take reasonable steps to delete it.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal obligations. The "Last updated" date above reflects the most recent revision. We encourage you to review this page periodically.

Contact

Questions about this policy or your data:

DS Webhosting Services (operator of Zindle)
ABN 42 988 054 565
Email: support@zindle.com.au