Zero-knowledge architecture
PDF8 operates on a zero-knowledge model. We literally cannot see your files because they never reach our servers. Every PDF tool is a static JavaScript application that runs entirely in your browser.
How your files are protected
No server-side processing
When you upload a file in the browser, it stays in your browser. The file is read into memory using JavaScript and processed locally. No network request containing file data is ever made.
No data persistence
No file data is written to any database, cache, or log. Once you close the browser tab, all data in memory is automatically released. We cannot recover or access any file you have processed.
Encrypted in transit
The page itself is served over HTTPS (TLS), ensuring that the code loaded in your browser has not been tampered with during delivery. All communications with our domain are encrypted.
No third-party access
We do not integrate with cloud storage, AI analyzers, or any service that would require transmitting your file content. The code running on your machine is the only code that touches your data.
Secure development
PDF8 is built on Next.js and relies on the mature, audited pdf-liblibrary for PDF manipulation. The application is statically generated and served from Vercel's global edge network. We follow security best practices in dependency management and code review.
Reporting a vulnerability
If you discover a security issue, please contact us through our contact page. We take all reports seriously and will respond promptly.