← Back to DoWatermark

Privacy Policy

How we protect your privacy and handle your data

1. Introduction and Scope

This Privacy Policy explains how Raphael Berrebi doing business as DoWatermark ("we," "us," or "our") collects, uses, and protects your personal information when you use the DoWatermark website and service (the "Service").

We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR) and other global privacy regulations.

Privacy by Design: DoWatermark processes all images directly in your browser using HTML5 Canvas. Your images never leave your device, ensuring complete privacy and zero risk of data breaches.

2. Data We DON'T Collect

Because DoWatermark uses browser-based processing, we deliberately do NOT collect or have access to:

  • Your Images: All watermarking happens in your browser. Images are never uploaded to our servers, transmitted over the internet, or accessible to us in any way.
  • Image Metadata: We do not access or collect EXIF data, location information, camera settings, or any other metadata embedded in your images.
  • Usage Metrics: We do not track how many images you watermark, what settings you use, or how frequently you use DoWatermark Pro features.
  • Watermark Content: We have no access to your watermark text, logos, or any customization you apply.

3. Data We DO Collect

A. License Purchase Information (via Paddle)

When you purchase DoWatermark Pro, our payment processor Paddle collects:

  • Email address: For license key delivery and purchase receipts
  • Payment information: Handled entirely by Paddle (we never see your credit card details)
  • Transaction details: Order ID, purchase date, amount paid
  • Country/region: For tax compliance and regional pricing
  • Billing address: If required for tax purposes

B. Website Analytics (Google Analytics)

We use Google Analytics to understand how visitors use our website. This includes:

  • IP address: Anonymized to protect your identity
  • Browser and device information: Browser type, version, operating system, screen resolution
  • Pages visited: Which pages you view on dowatermark.com
  • Referral source: How you found DoWatermark (search engine, social media, direct visit)
  • Session duration: How long you spend on our website
  • Geographic location: Country and city-level data (not precise location)

C. Technical and Automatic Information

  • Cookies: Essential cookies for license key storage in your browser
  • Browser local storage: Watermark presets, settings, and activated license keys (stored locally on your device)
  • Device information: Device type (desktop, mobile, tablet) for feature optimization

4. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

  • Contract performance: Processing purchase and license data to deliver the Service you paid for
  • Legitimate interests: Analytics to improve our website and detect fraud
  • Legal compliance: Retaining transaction records for tax and accounting obligations
  • Consent: Marketing emails (only if you explicitly opt-in)

5. How We Use Your Data

We use collected data for the following purposes:

  • License delivery: Sending your license key via email after purchase
  • License activation: Validating your license key when you activate DoWatermark Pro
  • Customer support: Responding to your questions, troubleshooting issues, and processing refunds
  • Payment processing: Processing transactions through Paddle
  • Website improvement: Analyzing website traffic to improve user experience
  • Fraud prevention: Detecting and preventing fraudulent purchases or license abuse
  • Legal compliance: Meeting tax, accounting, and regulatory requirements

6. Data Sharing and Third Parties

We share your data only with the following trusted third parties:

  • Paddle.com Market Limited: Our payment processor and merchant of record. Paddle handles all payment processing, billing, refunds, and VAT/sales tax compliance. See Paddle's privacy policy at paddle.com/legal/privacy.
  • Google Analytics: Website analytics service. Google collects anonymized usage data. See Google's privacy policy at policies.google.com/privacy.

We do NOT: Sell, rent, or trade your personal data to any third party for marketing purposes.

7. Data Storage and Retention

We retain your data as follows:

  • License data: Retained indefinitely while your license is active (lifetime access)
  • Transaction records: Retained for 7 years to comply with tax and accounting regulations
  • Analytics data: Retained according to Google Analytics settings (typically 26 months, automatically deleted after)
  • Support emails: Retained for up to 2 years for customer service purposes
  • Your images: Never stored (browser-based processing)

You can request deletion of your personal data at any time (see "Your Rights" section below).

8. Your Rights (GDPR)

Under GDPR and other privacy laws, you have the following rights:

  • Right to Access: Request a copy of all personal data we hold about you
  • Right to Rectification: Update or correct inaccurate data (e.g., change your email address)
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data (subject to legal retention requirements)
  • Right to Data Portability: Receive your data in a machine-readable format (JSON/CSV)
  • Right to Object: Object to processing based on legitimate interests (e.g., opt out of analytics)
  • Right to Withdraw Consent: Unsubscribe from marketing emails or revoke consent for non-essential processing

To exercise any of these rights, contact us at support@dowatermark.com. We will respond within 30 days.

9. Data Security

We implement industry-standard security measures to protect your data:

  • HTTPS encryption: All website traffic is encrypted using TLS/SSL
  • Paddle PCI DSS compliance: Payment data is processed by Paddle, which is PCI DSS Level 1 certified
  • No server-side image storage: Because all processing happens in your browser, there's no risk of server-side data breaches affecting your images
  • Secure database storage: License and transaction data is stored in encrypted databases with access controls
  • Limited data access: Only authorized personnel have access to customer data, and only when necessary for support

While we take security seriously, no system is 100% secure. If you suspect unauthorized access to your account, contact us immediately.

10. Cookies and Local Storage

DoWatermark uses the following types of cookies and browser storage:

Essential Cookies (Required)

Used to store your activated license key locally in your browser. Without these cookies, DoWatermark Pro features won't work.

Analytics Cookies (Optional)

Google Analytics cookies track website usage. You can opt out by using browser privacy settings or installing Google Analytics Opt-out Browser Add-on.

Preference Storage (Local Storage)

Saves your watermark presets, settings, and preferences in your browser's local storage. This data never leaves your device.

11. International Data Transfers

Your data may be processed in countries outside your home country:

  • DoWatermark servers: Hosted in secure cloud infrastructure (likely US or EU regions)
  • Paddle: Processes data globally with GDPR-compliant safeguards
  • Google Analytics: Google processes data in the US and other locations

When data is transferred outside the EU/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions recognized by the European Commission.

12. Children's Privacy

DoWatermark is not intended for children under 13 years old (or 16 in the EU). We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us at support@dowatermark.com and we will promptly delete it.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes via:

  • Email to your registered address (for DoWatermark Pro users)
  • Prominent notice on our website homepage

Continued use of DoWatermark after changes constitutes acceptance of the updated Privacy Policy.

Contact Information

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us:

Email: support@dowatermark.com

Data Controller: Raphael Berrebi d/b/a DoWatermark

Location: Israel

Last updated: November 20, 2025