Legal

Privacy Policy

Last updated: November 23, 2025

1. Introduction

Welcome to SCORM Converter ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services at scormconverter.com (the "Service").

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Personal Information

When you register for an account, we collect:

  • Email address
  • Password (encrypted)
  • Name (if provided)
  • Account preferences and settings

2.2 File Data

When you use our Service to convert SCORM packages:

  • Uploaded SCORM package files (.zip)
  • Extracted content including text, images, and media
  • Generated export files (PDF, DOCX, Markdown)
  • Conversion job metadata (timestamps, file sizes, status)

2.3 Usage Information

We automatically collect certain information when you access our Service:

  • IP address and approximate location
  • Browser type and version
  • Operating system
  • Pages visited and time spent
  • Referring website
  • Device information

2.4 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and store certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.

3. How We Use Your Information

We use the collected information for various purposes:

  • Provide the Service: Process your SCORM conversions and deliver exports
  • Account Management: Create and manage your user account
  • Communication: Send service-related emails, updates, and support responses
  • Improvement: Analyze usage patterns to improve our Service
  • Security: Detect, prevent, and address technical issues and fraud
  • Compliance: Comply with legal obligations and enforce our terms

4. Data Storage and Security

4.1 Where We Store Your Data

Your data is stored securely on cloud infrastructure provided by Supabase (PostgreSQL database and file storage) and Railway (processing workers). Our infrastructure partners employ industry-standard security measures.

4.2 Security Measures

  • All data transmissions are encrypted using HTTPS/TLS
  • Files are stored with encryption at rest
  • Passwords are hashed using industry-standard algorithms
  • Access to systems is restricted and monitored
  • Regular security audits and updates

4.3 Data Retention

  • Uploaded Files: Stored for 30 days after conversion, then automatically deleted
  • Exported Files: Stored for 30 days, then automatically deleted
  • Account Data: Retained until you delete your account
  • Usage Logs: Retained for 90 days for security and troubleshooting

5. Data Sharing and Disclosure

5.1 We Do NOT Sell Your Data

We do not sell, rent, or trade your personal information or file content to third parties for marketing purposes.

5.2 Service Providers

We share data with trusted third-party service providers who assist in operating our Service:

  • Supabase: Database and file storage hosting
  • Railway: Worker processing infrastructure
  • Vercel: Web hosting and content delivery

These providers are contractually obligated to protect your data and use it only for providing services to us.

5.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, subpoenas).

5.4 Business Transfers

If we are involved in a merger, acquisition, or asset sale, your information may be transferred. We will provide notice before your information is transferred and becomes subject to a different Privacy Policy.

6. Your Rights and Choices

6.1 Access and Portability

You have the right to:

  • Access your personal information
  • Download your uploaded and exported files
  • Request a copy of your account data

6.2 Correction and Deletion

You can:

  • Update your account information in your dashboard
  • Delete individual conversion jobs and files
  • Request complete account deletion by contacting support@scormconverter.com

6.3 Opt-Out

You can opt out of:

  • Marketing communications (via unsubscribe links)
  • Non-essential cookies (via browser settings)

7. Children's Privacy

Our Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

8. International Data Transfers

Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ. By using our Service, you consent to such transfers.

9. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to read the privacy policies of every website you visit.

10. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Changes are effective immediately upon posting.

We encourage you to review this Privacy Policy periodically for any changes. Continued use of the Service after changes constitutes acceptance of the updated policy.

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to say no to the sale of personal information
  • Right to deletion of personal information
  • Right to non-discrimination for exercising your rights

To exercise these rights, contact us at privacy@scormconverter.com

12. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under GDPR:

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision-making

To exercise these rights, contact us at privacy@scormconverter.com

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

  • Email: privacy@scormconverter.com
  • Support: support@scormconverter.com

Summary: We take your privacy seriously. We collect only the data necessary to provide our Service, use enterprise-grade security, never sell your data, automatically delete old files, and give you full control over your information. Read the full policy above for details.