Privacy Policy
Last updated: January 2026
local_fire_departmentTL;DR — The Short Version
- ✓We don't track you. No cookies. No analytics. No bullshit.
- ✓We don't train AI on your files. Ever.
- ✓Your files are encrypted and auto-deleted after download.
- ✓We don't sell your data. We charge you instead. That's the deal.
01. What We Collect
Almost nothing. Here's the full list:
- • Your files — temporarily, until they're downloaded and burned
- • Email — only if you choose to send notifications (we don't store it)
- • Payment info — handled by Stripe, we never see your card
That's it. No IP logging. No device fingerprinting. No "anonymous" analytics that aren't really anonymous.
02. What We Don't Do
block
No Tracking
Zero cookies. Zero pixels. Zero fucks given about your browsing habits.
smart_toy
No AI Training
Your files are not food for machine learning. Period.
sell
No Data Sales
We don't sell, rent, or trade your data. We're not that kind of company.
share
No Third-Party Sharing
Your files stay between you and your recipient. That's it.
03. File Lifecycle
1
Upload
Your file is encrypted and stored temporarily on AWS S3 (EU servers).
2
Download
Recipient downloads via secure, one-time token authentication.
local_fire_department
BURN
File is permanently deleted. Turned to ash. Gone from our existence.
04. Your Rights
Under GDPR and other privacy laws, you have the right to:
- • Access — Know what data we have (spoiler: almost none)
- • Delete — Request deletion (files auto-delete anyway)
- • Portability — Export your data (there's nothing to export)
- • Object — Opt out of processing (we don't process anything)
Contact us at privacy@burnfile.io if you have questions.
05. Security
- lockAll transfers encrypted in transit (TLS 1.3)
- lockFiles encrypted at rest (AES-256)
- lockEU-based servers (AWS eu-west-1)
- lockOne-time download tokens prevent unauthorized access