Privacy Policy
ProofLedger LLC (“ProofLedger,” “we,” “our”) operates ProofLedger.io, a privacy-first cryptographic timestamping service. This policy explains what information we collect, how we use it, and how it is protected.
1. Core Privacy Promise
ProofLedger is designed to protect your data by default:
- ProofLedger never stores your files.
- Files are processed in memory to compute SHA-256 and (for images) extract EXIF.
- We store only the SHA-256 hash and limited proof metadata needed to issue and verify certificates.
- The hash—not the file—is anchored to blockchains.
Your data remains yours at all times.
2. Information We Collect
a. Account Information
We collect the minimum information needed to operate your account:
- Email address
- Password (securely hashed)
- Billing information (processed by Stripe; we do not see full card details)
b. Operational Metadata
We store minimal metadata required to operate the Service:
- File hash (never the file itself)
- Timestamp
- Blockchain transaction IDs
- Certificate ID
- Subscription metadata
- Usage counts
c. Website Analytics
We may use privacy-respecting analytics to monitor performance (for example, page load speed and error logs). We do not use invasive tracking, behavioral profiling, or ad-based tracking.
3. How We Use Information
We use the information we collect to:
- Generate blockchain-anchored proofs
- Maintain account access and subscription billing
- Prevent fraud and abuse
- Provide customer support
- Improve platform reliability and security
ProofLedger does not sell personal information.
4. File Handling
User files are hashed in the browser using SHA-256. ProofLedger cannot access, reconstruct, or retrieve user files at any time. Files are not uploaded to ProofLedger’s servers, not saved, not logged, and not viewable by ProofLedger staff. This architecture is intentional to protect user confidentiality.
5. Sharing Information
We only share information when necessary to operate the Service:
- Stripe (billing and payment processing)
- Blockchains (public hashes on Polygon/Bitcoin)
- Support tools (limited to email communications)
We do not sell or rent user information.
6. Data Retention
We keep minimal operational metadata as long as your account exists. You may request account deletion at any time. Deletion removes your account and associated internal metadata from ProofLedger systems but does not affect blockchain records or previously issued certificates, which are public, permanent, and independently verifiable by design.
7. Security Practices
We use a layered security approach, including:
- Encrypted HTTPS transport
- Strong hashing of credentials
- Segmented infrastructure
- Least-privilege access controls
- No file storage, significantly reducing attack surface
- Regular security reviews and monitoring
8. Children
ProofLedger is not intended for children under 13 and should not be used by them.
9. Your Rights
Subject to local law, you may request:
- Access to your information
- Correction of inaccuracies
- Deletion of your account
- Export of your proof records
To exercise these rights, contact us at support@proofledger.io.
10. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the “Last Updated” date at the top of this page. Continued use of the Service after changes go into effect means you accept the updated policy.
11. Contact
ProofLedger LLC
PO Box 24
Floral City, FL 34436
support@proofledger.io