Privacy
Last updated 14 July 2026
Plain-language summary of what we do, and do not do, with your files and data.
Who we are
DailyDone is operated by Dalysie AS, a company registered in Norway. Dalysie AS is the data controller responsible for your account, payment and service-usage data, and decides how and why it is processed. You can reach us about privacy at support@getdailydone.com.
The short version
Most DailyDone tools run entirely in your browser, so your files never reach us. The tools that run on our servers upload your file over a secure connection, do the job, and delete it right after. We keep only the account and payment details needed to run the service, we log basic usage but never the contents of your files, and we do not sell your data.
Your files
Tools like merge, split, rotate, organize, watermark, page numbers, images to PDF, edit, sign and quick compress run on your device. The file stays in your browser and is never sent to us. Some tools run on our servers instead: converting to and from Word, Excel and PowerPoint, making a scan searchable (OCR), and server-side compression. For these, your file is uploaded over an encrypted connection, processed, and deleted immediately afterwards. We do not keep a copy, and we do not read the contents beyond what the tool needs to do its job.
Account information
You can use the free tools without an account. If you create one, we store your email address, a securely hashed password, and any optional details you add such as your name, phone number or country. If you turn on two-factor authentication we store the encrypted secret and one-time recovery codes. This lets you sign in, buy credits and manage a Pro plan. You can view or change these details on your account page.
Payments
Payments are handled by Paystack. We never see or store your full card number. If you save a card for faster top-ups, we store only a secure token from Paystack, not the card details themselves. We keep a record of your purchases, credit balance and subscription status so your account works and for our own accounting.
Usage and activity
To keep the service reliable and to prevent abuse, we record basic events: which tool you used, whether it ran on your device or our servers, whether it succeeded, the file size and the time. We never log the contents of your files. We also keep a standard security trail of account actions such as sign-ins and password changes.
Cookies and local storage
When you sign in, we set a single secure, httpOnly cookie so you stay signed in. Your browser also remembers small preferences locally, like your light or dark theme. We do not use advertising or cross-site tracking cookies.
Analytics
To understand how the site is used and to improve it, we measure basic traffic with a privacy-friendly analytics tool we host ourselves, so the data stays with us and is never shared with an advertising network. It does not use cookies and does not track you across other websites. It records only anonymous, aggregate information such as page views, the page you arrived from, and your approximate location (country), browser and device type. It cannot identify you, and we do not use it to build a profile of you.
Service providers we use
We share only what is needed to run the service, with providers that act on our behalf: Paystack to process payments, Postmark to send transactional email (such as receipts and security alerts), and Microsoft Azure to host and run the service. Server-side conversions run on our own conversion service. We do not sell or rent your personal data to anyone, and we do not use it for advertising.
Where your data is processed
DailyDone runs on Microsoft Azure in the European Union (Sweden). If you use the service from outside the EU, your account and payment data may be processed there. Files handled by our server tools are processed in the same region and deleted right after.
How long we keep your data
Files handled by our server tools are deleted as soon as the job finishes. Account data is kept until you delete your account. Payment records are kept as long as needed for accounting and legal reasons. Usage and security logs are kept only as long as needed to keep the service reliable and prevent abuse, and are then removed.
Legal basis for processing
Where data-protection law such as the GDPR applies, we rely on: performing our contract with you to provide the tools, run your account and process payments; complying with legal obligations such as keeping accounting and tax records; and our legitimate interest in keeping the service secure and preventing abuse, for the limited usage and security logs described above.
Security
We take reasonable measures to protect your data: connections are encrypted with HTTPS, passwords are stored only as secure hashes, two-factor authentication is available, and access to systems is limited. No service can promise perfect security, but we work to keep your information safe and to fix issues quickly.
Your rights and choices
You can view and update your details on your account page, and you can ask us to delete your account and the data tied to it at any time. Depending on where you live, you may also have the right to access a copy of your data, correct it, or object to certain uses. To make any of these requests, email us at support@getdailydone.com and we will take care of it. If you are in the European Economic Area, you also have the right to lodge a complaint with your local data protection authority; in Norway this is Datatilsynet.
Children
DailyDone is not directed at children, and we do not knowingly collect personal information from anyone under 16. If you believe a child has given us their information, contact us and we will remove it.
Changes to this policy
We may update this policy as DailyDone grows. When we make a meaningful change we will update the date above and, where appropriate, let you know. Please check back from time to time.
Contact
Questions about your privacy or this policy? Email us at support@getdailydone.com.