Legal & Privacy

Security and data protection

This page is dedicated to outlining our comprehensive measures and protocols designed to ensure the confidentiality, integrity, and safety of your files. Learn about the robust security practices we employ to protect your data.

Data Privacy and Security

Discover how we prioritize your privacy. Explore the summary of our approach to data handling in this section

iLovePDF's Privacy Policy

We want to be transparent about how we handle your data. In this brief overview, we'll provide key insights into our approach. For more details, check the complete Privacy Policy.

In our commitment to ensuring your privacy, we adhere to the following principles:

  • Data Collection: We collect only the information necessary for providing our services.
  • Data Security: Your data is securely stored and protected.
  • Data Sharing: We do not sell your data to third parties.
  • Cookies: We use cookies to enhance your experience. Learn more in the full policy.
  • Your Rights: You have the right to control your data and its usage.

Security Policy Overview

The iLovePDF Security Policy focuses on preventing, detecting, and responding to security incidents to safeguard confidential data and ensure uninterrupted service. It applies to all individuals interacting with iLovePDF services. For more details, see the complete Security Policy Overview.

Key Responsibilities

Responsibilities include resource allocation by executive management, policy oversight by the Security Committee, adherence to security measures, and reporting incidents by employees and authorized users.

Key Security Measures

Critical security measures encompass access control, security training, regular system updates, and essential risk mitigation strategies. Additionally, iLovePDF emphasizes data encryption, security audits, and a robust Continuous Improvement Plan to maintain information security and resilience.

Ongoing Evaluation and Improvement

We manage and protect information security with a Continuous Improvement Plan. We regularly review our policies to ensure their effectiveness and relevance in a changing landscape. Additionally, we actively seek opportunities for improvement in our information security processes. This commitment allows us to stay ahead of emerging threats and continuously enhance our safeguards for user data.

Certifications and compliance

Security, privacy, and trust in focus: Our adherence to standards and regulations

Security
iLovePDF proudly holds ISO/IEC 27001:2017 certification, recently renewed in November-March 2023. This certification assures rigorous adherence to global information security standards. Access our ISO 27001 certificate.
Security
As a Europe-based company, iLovePDF is fully GDPR compliant, ensuring utmost respect for data privacy. We guarantee your rights, including access, rectification, and erasure of personal data, with diligence.
Security
We integrate services provided by Qualified Trust Service Providers (QTSP) under eIDAS, which allows us to offer electronic signatures and seals that adhere to the highest standards of security and authenticity. This ensures the legal validity and integrity of your signed documents.

Product Security

Find details on how we secure and protect user data and document processing

Security
Cloud infrastructure
iLovePDF utilizes robust cloud infrastructure partnerships for a secure and adaptable environment, ensuring resilience to meet user demands effectively.
Security
Network communications
We rely on a global content delivery and DDoS protection service, guaranteeing rapid access worldwide and robust security against online threats.
Security
Storage
iLovePDF's cloud infrastructure is bolstered by a leading data storage provider. It's important to emphasize that iLovePDF does not retain user documents.

Data Encryption

Data encryption is a fundamental pillar of our product security. We implement robust encryption protocols, including the use of the HTTPS (Hypertext Transfer Protocol Secure) protocol, to protect your data, both in transit and at rest. This stringent encryption guarantees the confidentiality and integrity of your data, offering peace of mind when using our services.

Additionally, we employ end-to-end encryption to ensure the highest level of security for your data from the moment you upload it until it's processed and delivered back to you.

Data Retention and Removal

Respecting your privacy and adhering to applicable regulations are core principles of our data retention and removal policies. At iLovePDF, all files processed within our platform are automatically and permanently deleted within two hours of being processed. We also provide users with the option to manually delete files from the download screen, giving you even more control over your data's lifecycle. For transparency, it's important to note that we retain signed documents for a maximum of 5 years in compliance with legal requirements.

User Protection

At iLovePDF, we prioritize user protection. As part of our commitment to enhancing security, we offer Two-Factor Authentication (2FA). With 2FA, your account is fortified with an additional layer of security, ensuring that only authorized users can access it. Your data remains protected, and your user experience is more secure than ever.

Payment Information (Powered by Stripe)

For seamless and secure transactions, iLovePDF is powered by Stripe, a renowned and trusted payment gateway. Stripe offers top-tier security for your payment information and is certified as a PCI Level 1 Service Provider.

We do not collect any payment information and are therefore not subject to PCI obligations.

Internal Security

Discover the comprehensive measures and protocols implemented to secure iLovePDF's internal operations and data

Security
Centralized Account Management
We employ a centralized account management system, streamlining the control and oversight of user accounts to enhance security.
Security
Password Management System
We maintain the integrity and security of your login credentials through a robust password management system. We also implement password rotation, requiring password changes every 90 days to reduce the risk of unauthorized access.
Security
Two-Factor Authentication (2FA)
We enforce Two-Factor Authentication (2FA) for all nominal accounts, which adds an additional layer of protection to your user accounts, enhancing security and further safeguarding your data and login credentials.
Security
Controlled Physical Access
Implementing security measures such as alarms, fingerprint authentication, fire protection, and anti-robbery safeguards to ensure stringent control over physical access to our facilities.
Security
Employee Onboarding and Offboarding
Our onboarding and offboarding procedures include a checklist that prioritizes security best practices, ensuring that employees' access aligns with our security standards.
Security
Principle of Least Privilege
Access privileges are meticulously managed, adhering to the principle of least privilege. This means that users are granted only the minimum level of access required to perform their tasks, minimizing potential security risks.
iLovePDF Information Security Policy
At iLovePDF, we strengthen data security with ISO/IEC 27001 standards. Our system ensures confidentiality, integrity, and availability, backed by ongoing improvement and resource allocation for compliance.

iLovePDF is formed of a team of experienced professionals in the Information Technology sector, whose mission is to develop products that facilitate the conversion, editing, and management of files.

iLovePDF possesses the necessary resources, including skilled personnel, suitable IT tools, and efficient work methodologies, to achieve its objectives in managing information security systems and personal data effectively.

Under the above premises, we declare the basic principles of our Information Security Policy:

  • Commitment to continuous improvement in information security performance.
  • Ensure optimal security of all information, systems, and communications managed by iLovePDF, guaranteeing confidentiality, integrity, and availability.
  • Management is committed to promoting and leading security levels in alignment with the information security policy and approved objectives. This includes considering relevant external and internal issues as crucial components of an information security management system, with the goal of protecting the organization's assets.
  • The information security management system is part of and integrated into the organization's processes, taking this into account during the design of processes, information systems, and controls.
  • iLovePDF ensures the availability of the necessary resources for the information security management system.
  • Commitment to compliance with applicable legal, regulatory, contractual, and other requirements regarding information security.

iLovePDF's Information Security Policy is a key part of its corporate culture, actively integrated into operations and widely communicated. The company ensures all personnel understand and acknowledge their responsibilities in upholding the policy, making information security a shared company-wide priority.



Marco Grossi

June 19th, 2025
Barcelona

Product
Resources
Solutions
Legal
Company
  • Google Play
  • App Store
  • Mac Store
  • Microsoft Store
English
© iLovePDF 2025 ® - Your PDF Editor
Woops! Something is wrong with your Internet connection...