Business privacy terms

Data Processing Agreement

A business privacy baseline for customers that use VersionFixer to process client design, print, CAD, 3D, or engineering files.

This DPA page is a launch-ready business privacy baseline, not a substitute for signed legal counsel-reviewed terms for enterprise or regulated customers.
Processor role

For customer files and job metadata, VersionFixer acts as a service provider/data processor and processes data only to provide the requested service.

Customer instructions

Processing is limited to file detection, queueing, conversion, download delivery, support, billing, security, and abuse prevention.

Customer ownership

Customers retain all rights to uploaded files and output files. VersionFixer does not claim ownership, license, resale rights, or training rights over customer content.

No human access by default

File contents are processed by automated workers by default. Support access is limited to explicit customer requests, security troubleshooting, or legal requirements.

Zero-retention file lifecycle

Uploaded source files, temporary work files, logs, and generated outputs are stored in isolated job folders and scheduled for deletion after the configured retention window.

Subprocessors

Hosting, payment, email, analytics, and worker infrastructure providers may process limited data only as required to operate the service.

Security measures

Transport encryption, private job folders, upload validation, isolated queues, scoped API keys, access controls, and retention controls reduce exposure.

Deletion requests

Customers can request deletion of account records, support messages, social login IDs, and remaining job records through the contact or deletion process.

Processing instructions

VersionFixer processes uploaded files and account data only according to the customer action: detect file type, queue a job, run conversion, provide download, support billing, prevent abuse, and answer support requests.

Confidentiality

Customer file contents are handled by automated conversion workers by default. Human support access should happen only after an explicit customer request, a security investigation, or a legal requirement.

Deletion and return

Temporary job folders are designed for automatic deletion after 30 minutes. Customers may request deletion of account records, support messages, social login IDs, and remaining job records through the deletion/contact process.

International transfers

If infrastructure or workers operate in multiple regions, transfers should rely on appropriate contractual safeguards before public enterprise launch.

Incident response

Security incidents affecting customer data should be investigated, contained, documented, and communicated according to applicable legal and contractual obligations.

Audit and documentation

Worker access, API keys, job status, and retention settings should be documented for business customers when needed.

Launch FAQ

Is VersionFixer the owner of uploaded files?

No. Uploaded source files and generated outputs remain the customer content. VersionFixer processes them only to provide the service.

Are files used for AI training?

No. The service workflow is built for compatibility processing, not training or resale of customer content.

Can a business request a signed DPA?

Yes. The public page is a baseline; enterprise customers should request a signed DPA reviewed by legal counsel before sending regulated or highly confidential files.