Back to Shift

Privacy Policy

Last updated: May 27, 2026

This Privacy Policy describes how Shift ("we", "us", "our") collects, uses, and protects your information when you use our file conversion service at shiftconvert.me.

Definitions

  • Account — a unique account created to access our Service.
  • Company — refers to Shift.
  • Country — Chile.
  • Device — any device used to access the Service.
  • Personal Data — any information relating to an identified or identifiable individual.
  • Service — the Shift website and file conversion platform.
  • Usage Data — data collected automatically from your use of the Service.
  • You — the individual or entity using the Service.

Data We Collect

Personal Data

When you create an account, we collect your email address. No other personal information is required or stored.

Uploaded Files

Files you upload for conversion are processed in isolated pipelines and permanently deleted from our servers within 24 hours. We do not read, analyze, sell, or share the contents of your files.

Usage Data

We automatically collect standard server log data including IP address, browser type, pages visited, and timestamps. This data is retained for up to 24 months and used exclusively for security monitoring and service reliability.

Cookies

We use only essential session cookies required for authentication and service functionality. We do not use analytics, advertising, tracking, or remarketing cookies.

How We Use Your Data

We use your Personal Data solely to:

  • Provide and maintain the Service
  • Manage your account and authenticate your identity
  • Send transactional emails (e.g. password reset) — no marketing emails
  • Monitor security and prevent abuse
  • Comply with applicable legal obligations

We do not sell, rent, or share your Personal Data with third parties for commercial purposes.

Data Retention

Data TypeRetention Period
Account information (email)Duration of account + 24 months after closure
Uploaded filesPermanently deleted within 24 hours of conversion
Server logs (IP, timestamps)Up to 24 months
Session cookiesDeleted when browser session ends

When retention periods expire, data is securely deleted from our systems. Residual copies may remain in encrypted backups for a limited period and are not restored except for security or disaster recovery purposes.

Data Transfers

Your data may be processed on servers located outside your country. Where required by applicable law, we ensure international transfers are subject to appropriate safeguards. No transfer of your Personal Data will occur to any organization or country without adequate security controls in place.

Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the Personal Data we hold about you
  • Correct inaccurate Personal Data
  • Delete your Personal Data
  • Object to or restrict processing of your Personal Data
  • Data portability — receive your data in a structured, machine-readable format

GDPR (EU/EEA users): You have the rights listed above under the General Data Protection Regulation. To exercise them, contact us at the address below. We will respond within 30 days.

CCPA / CPRA (California residents): You have the right to know what Personal Data we collect, to delete it, to opt out of its sale (we do not sell data), and to non-discrimination for exercising your rights.

CalOPPA (California residents): We do not track users across third-party websites and do not respond to Do Not Track signals as we do not engage in cross-site tracking.

To exercise any of these rights, contact us at the address below.

Children's Privacy

The Service is not directed at anyone under the age of 16. We do not knowingly collect Personal Data from children under 16. If you believe a child has provided us with Personal Data, contact us and we will delete it promptly.

Disclosure of Your Data

We may disclose your Personal Data only in the following circumstances:

  • Legal obligation: when required by law or valid request from public authorities (e.g. a court or government agency)
  • Protection of rights: to protect and defend the rights or property of Shift
  • Safety: to prevent wrongdoing or protect the personal safety of users or the public
  • Business transfer: in the event of a merger, acquisition, or asset sale, you will be notified before your data is transferred and becomes subject to a different privacy policy

Security

We use commercially reasonable means to protect your Personal Data. However, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. For significant changes, we will notify registered users by email prior to the change taking effect.

Contact

If you have questions about this Privacy Policy or wish to exercise your data rights: