Our Mission

The Problem

Every time you convert a file online, compress an image, or merge a PDF, you're trusting a stranger with your data. Most online tools upload your files to remote servers where they're stored for hours, days, or indefinitely. Some tools scan file contents for advertising. Others share metadata with third parties.

The scope of this problem is staggering. Hundreds of millions of files are uploaded to online conversion tools every month. Tax returns, medical documents, legal contracts, personal photographs, business proposals, employee records - all flowing through servers owned by companies with vague privacy policies and opaque data practices. Many of these services are free specifically because your data is the product being sold.

Even tools that claim to delete your files often retain them in backup systems, cache layers, or logging pipelines. "Deleted within 24 hours" does not mean secure. It means your sensitive document sits on someone else's infrastructure, potentially accessible to their employees, their partners, or anyone who breaches their systems during that window.

Users have accepted this as normal. We don't think it should be.

Our Approach

At topriv, we build tools that work fundamentally differently from the industry standard. Rather than trying to bolt security onto an existing cloud-processing model, we redesigned the architecture from the ground up with a single question in mind: how do we give users powerful functionality without ever having access to their data?

The answer is in-memory processing with immediate deletion. When you upload a file to PrivConvert, it is loaded into server RAM, processed entirely in memory, and the result is sent back to you. The moment your download begins, both the input and output are purged from memory. Nothing is written to disk. There is no caching layer, no backup queue, and no retention period. The data simply ceases to exist on our infrastructure.

For PrivDrop, we went even further. Files are encrypted in your browser using AES-256-GCM before they ever leave your device. The encryption key is embedded in the URL fragment, which by design is never transmitted to the server. This means our servers store only encrypted blobs that we have no ability to decrypt. It is mathematically impossible for us to access your files, even if we wanted to.

This is not privacy theater. This is privacy by architecture - systems designed so that data protection is a structural guarantee, not a policy promise.

What we don't do

Transparency means being clear about what we avoid, not just what we promise:

• We don't store your files - not temporarily, not for caching, not for "quality improvement."
• We don't log file names, contents, or conversion types tied to any identifier.
• We don't sell, share, or provide your data to any third party.
• We don't run analytics that track individual users.
• We don't require accounts, emails, or any personal information.

Our Commitment

We make the following commitments to every person who uses our tools, and we hold ourselves accountable to them publicly:

• We will never store your files. Not temporarily, not for caching, not for quality improvement, not for machine learning training. Your files are processed in memory and purged immediately. This is a structural guarantee enforced by our architecture, not just a policy we promise to follow.
• We will never track you. We do not set first-party tracking cookies. We do not fingerprint browsers. We do not build user profiles. We do not know who you are, what you convert, or how often you visit. Your usage is completely anonymous to us.
• We will always offer a free tier. Privacy is not a luxury good. The essential functionality of every topriv product will remain free for everyone, forever. We will never gate basic privacy protections behind a paywall. If we introduce premium features in the future, they will be convenience or power-user features - never privacy features.
• We will never require accounts for core functionality. You should not have to hand over an email address to convert a file or share a document securely. Our tools work without sign-up, without login, and without any personal information.
• We will be transparent about any changes. If our practices ever change, we will communicate those changes clearly and in advance. We will not bury them in updated terms of service or hope no one notices.

The future we're building

We started with file conversion because it's one of the most common tasks people do online - and one of the most privacy-invasive. But our vision goes further.

We're building a suite of tools that proves you don't have to choose between convenience and privacy. Every new product in the topriv family will follow the same principles: process privately, delete immediately, never track.

Privacy should be the default. We're here to make that happen.