Your Privacy is Our Priority - We implement industry-standard security measures to protect your data.
Data Security
- All uploaded files are processed temporarily and deleted immediately after processing
- Files are overwritten with random data before deletion for enhanced security
- No permit data is stored permanently on our servers
- All data processing happens in isolated temporary storage
Security Features
- CSRF (Cross-Site Request Forgery) protection on all forms
- Rate limiting to prevent abuse (100 requests/hour)
- Secure file validation (PDF files only, 16MB max)
- Content Security Policy (CSP) headers
- Input sanitization to prevent XSS attacks
- Secure session management with encrypted cookies
Data Collection
We collect minimal data necessary for the service to function:
- Temporary session data for CSRF protection
- Anonymous usage statistics for service improvement
- No personal information is collected or stored
Location Services
When you enable location tracking:
- Location data is used only within your browser
- No location data is sent to our servers
- You can disable location services at any time
Browser Security Notice
HTTPS in Production: When deployed to production, this application runs over HTTPS with SSL/TLS encryption.
Browser security warnings in development environments are normal and do not affect the security of your data.
Compliance
- GDPR-compliant data handling practices
- New Zealand Privacy Act 2020 compliance
- Regular security audits and updates
Last updated: August 19, 2025