Privacy Policy

How we protect your data and privacy

Last updated: March 19, 2026

HEIC Digital ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our HEIC to JPG conversion service at heic.digital.

Data Controller

Space Bits S.L.
Crta de Vic 96 1-1
08241 Manresa, Spain
NIF: B64776271
Email: support@heic.digital

Data Protection Responsible:
Ferran Sarrió
Email: info@spacebits.es

1. Information We Collect

1.1 Session Information

When you visit HEIC Digital, we automatically create a session and collect the following information:

  • IP Address: Your device's Internet Protocol address
  • Browser Language: The language setting of your web browser
  • Website Language: The language version of our site you visit (EN, ES, FR, etc.)
  • Session Start Time: The date and time when you begin browsing
  • Referrer URL: The website you came from (if any)

Legal Basis: Legitimate interests (Article 6(1)(f) GDPR) - providing and improving our service, security monitoring, and analytics.

Retention Period: Session data is retained for 90 days in server logs, then automatically deleted.

1.2 Uploaded File Information

When you upload a HEIC file for conversion, we temporarily collect and store the following data:

Original HEIC File:

  • Complete File: The full HEIC file is temporarily stored on our server with a randomized, non-identifiable filename (random alphanumeric string). We do not read or process the file's metadata (EXIF, GPS, camera info).
  • Original Filename: Stored in our database
  • File Format: HEIC (stored in database)
  • File Size: In bytes (stored in database)
  • Image Resolution: Width and height in pixels (stored in database)
  • Upload Date & Time: Timestamp when the file was uploaded (stored in database)

Converted JPG File:

  • Complete File: The converted JPG file preserves all original metadata (EXIF, GPS, camera settings, timestamps) from the HEIC file. We do not read, process, or store this metadata in our database.
  • Image Quality: Full resolution is maintained - no size reduction or quality loss
  • Filename: Stored in database
  • File Size: In bytes (stored in database)
  • Format: JPG (stored in database)
  • Resolution: Width and height in pixels (stored in database)

ZIP Archive File (if requested):

  • If you download multiple converted files as a ZIP archive, we create and store this file temporarily on our server
  • The ZIP file is deleted automatically 1 hour after creation

Usage Tracking:

  • HEIC Viewer Usage: We record whether you used the online HEIC viewer to preview a photo
  • Individual Downloads: We track whether you downloaded each converted file individually

Why We Collect This Data: We store file metadata (filename, size, resolution, format) to maintain conversion statistics, compare before/after conversion quality, and improve our service.

Legal Basis: Legitimate interests (Article 6(1)(f) GDPR) - service provision, quality assurance, and service improvement.

1.3 Server Logs

Our web servers (Nginx and Apache) automatically collect standard access log information:

  • IP address
  • Date and time of request
  • Requested URL/page
  • HTTP status code
  • Browser user agent (browser type and version)
  • Referrer URL

Legal Basis: Legitimate interests (security, performance monitoring, technical troubleshooting).

Retention Period: 90 days, then automatically deleted.

1.4 Cookies and Tracking Technologies

We use cookies and similar tracking technologies. For detailed information, please see our Cookie Policy.

Summary:

  • Google Analytics: We use Google Analytics to understand how visitors use our site
  • Google AdSense: We display advertisements via Google AdSense
  • Cloudflare: We use Cloudflare CDN for performance and security

2. How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: To convert your HEIC files to JPG format and provide download functionality
  • Service Improvement: To analyze conversion quality (before/after comparison) and improve our algorithms
  • Analytics: To understand usage patterns, popular features, and user preferences
  • Security: To detect and prevent abuse, spam, and malicious activity
  • Technical Support: To troubleshoot technical issues if you contact us
  • Legal Compliance: To comply with applicable laws and regulations

3. Automatic File Deletion

Privacy-First Approach: We prioritize your privacy by automatically deleting your files:

  • Original HEIC Files: Deleted immediately after successful conversion
  • Converted JPG Files: Automatically deleted exactly 1 hour after conversion
  • ZIP Archive Files: Automatically deleted exactly 1 hour after creation

Important: Only file metadata (filename, size, resolution) is retained in our database for statistical purposes. The actual image files are permanently deleted and cannot be recovered.

4. Data Sharing and Third Parties

We share your information with the following third parties:

4.1 Service Providers

  • OVH (Hosting): Our servers are hosted at OVH's datacenter in France (European Union). OVH may have access to server data for infrastructure maintenance.
  • Cloudflare (CDN & Security): We use Cloudflare for content delivery, DDoS protection, and performance optimization. Cloudflare processes your IP address and browser information.

4.2 Analytics & Advertising

  • Google Analytics: We use Google Analytics to analyze website traffic and user behavior. Google may collect IP addresses, browser information, and usage patterns. View Google's Privacy Policy.
  • Google AdSense: We display advertisements through Google AdSense. Google may use cookies to serve personalized ads. View Google's Advertising Privacy Policy.

4.3 Affiliate Links

Our website contains affiliate links (including Amazon Associates). When you click these links, the third party may receive information about your visit. We do not share your uploaded files or conversion data with affiliate partners.

4.4 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect our legal rights and safety.

5. Data Storage and Security

5.1 Storage Location

  • Server Location: OVH datacenter in France, European Union
  • Data Transfers: All data processing occurs within the EU. We do not transfer data outside the European Economic Area (EEA).

5.2 Security Measures

  • SSL/TLS Encryption: All connections to heic.digital use 256-bit SSL/TLS encryption (HTTPS)
  • Randomized Filenames: Uploaded files are stored with random, non-guessable filenames to prevent unauthorized access
  • Access Control: Only the server administrator has access to server files, and only when technically necessary for maintenance or troubleshooting
  • Automatic Deletion: Files are automatically deleted after 1 hour, minimizing exposure time
  • Security Scanning: Our site is regularly scanned by Norton SafeWeb and Sucuri for malware and vulnerabilities

Important: While we implement industry-standard security measures, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security but we take all reasonable precautions.

6. Your Rights Under GDPR

If you are in the European Union, you have the following rights regarding your personal data:

  • Right to Access (Article 15): You can request a copy of the personal data we hold about you
  • Right to Rectification (Article 16): You can request correction of inaccurate data
  • Right to Erasure (Article 17): You can request deletion of your personal data ("right to be forgotten")
  • Right to Restriction (Article 18): You can request limitation of data processing
  • Right to Data Portability (Article 20): You can request your data in a machine-readable format
  • Right to Object (Article 21): You can object to data processing based on legitimate interests
  • Right to Withdraw Consent: You can withdraw consent for cookie usage at any time

How to Exercise Your Rights:

To exercise any of these rights, please contact us at:

We will respond to your request within 30 days as required by GDPR.

Right to Lodge a Complaint:

If you believe we have not handled your data properly, you have the right to lodge a complaint with your local data protection authority. In Spain, this is the Agencia Española de Protección de Datos (AEPD): www.aepd.es

7. Children's Privacy

HEIC Digital is a general-purpose tool suitable for all ages. We do not knowingly collect personal information from children under 13 years of age. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at support@heic.digital and we will delete such information.

8. International Users

HEIC Digital is available worldwide. If you are accessing our service from outside the European Union, please note:

  • All data processing occurs on servers located in France (EU)
  • We comply with EU GDPR standards for all users globally
  • By using our service, you consent to the transfer of your information to the EU

9. Data Retention Periods

We retain different types of data for different periods:

Data Type Retention Period Reason
Original HEIC Files Deleted immediately after conversion Privacy protection
Converted JPG Files 1 hour after conversion Allow download time
ZIP Archive Files 1 hour after creation Allow download time
File Metadata (name, size, resolution) Indefinite Service improvement, statistics
Server Logs (IP, timestamps, URLs) 90 days Security, troubleshooting
Session Data 90 days Analytics, service improvement
Analytics Cookies Up to 26 months (Google Analytics default) Usage analysis

10. Do Not Track (DNT)

Our website does not currently respond to Do Not Track (DNT) browser signals. However, you can manage cookies through your browser settings or opt out of Google Analytics using the Google Analytics Opt-out Browser Add-on.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other operational factors. When we make changes:

  • We will update the "Last updated" date at the top of this policy
  • For material changes, we may display a notice on our homepage
  • Your continued use of HEIC Digital after changes constitutes acceptance of the updated policy

We encourage you to review this Privacy Policy periodically.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: support@heic.digital
Data Protection Responsible: info@spacebits.es

Postal Address:
Space Bits S.L.
Attn: Data Protection / Privacy
Crta de Vic 96 1-1
08241 Manresa, Spain

13. Additional Information

For more information about our service, please visit:

  • About Us - Learn who we are and why we built HEIC Digital
  • Legal Notice - Legal information about our company
  • Cookie Policy - Detailed information about cookies we use

This Privacy Policy is effective as of March 19, 2026 and applies to all users of heic.digital and its related services (HEIC to PDF, HEIC Viewer, etc.).