PDF Wonder Kit

Compliance & Industry Information

Understanding what PDF Wonder Kit is, what it isn't, and your responsibilities for staying compliant in regulated industries

How Our Technology Protects Your Privacy

All PDF processing happens entirely in your web browser. When you upload a file to PDF Wonder Kit:

  • Your file is processed by JavaScript running locally on your device
  • No data is uploaded to our servers or any third-party servers
  • Your documents never leave your device - ever
  • We cannot access, view, store, or transmit your files
  • Files are automatically cleared from your browser memory when you close the tab

Think of it like Microsoft Word or Adobe Acrobat: PDF Wonder Kit is a tool that runs on your computer. Just as Microsoft doesn't see your Word documents, we don't see your PDFs. The difference is we run in your browser instead of as installed software.

Healthcare Professionals & HIPAA

What PDF Wonder Kit IS

  • HIPAA-Friendly: Our client-side architecture means we're suitable for processing Protected Health Information (PHI)
  • No Business Associate Agreement (BAA) Required: Since we never handle PHI as a third party, no BAA is needed
  • Privacy by Design: The technology literally cannot access your patient data
  • More Secure Than Server-Based Tools: Unlike tools that upload files to servers, your PHI stays on your device

What PDF Wonder Kit IS NOT

  • Not "HIPAA Certified": HIPAA certification doesn't exist as a formal designation
  • Not a Covered Entity or Business Associate: We don't handle PHI, so HIPAA doesn't classify us as either
  • Not a Replacement for Your Organization's Policies: You still must follow your healthcare organization's data handling procedures
  • Not Legal Advice: This information is educational, not a legal opinion

Your Responsibilities as a Healthcare Provider

  • Get Approval: Check with your organization's HIPAA compliance officer before using any new tool with PHI
  • Document Usage: Add approved tools to your organization's compliance documentation
  • Follow Minimum Necessary: Only process/extract the minimum PHI needed for the specific purpose
  • Secure Your Device: Use the tool only on authorized, secure workstations - never public computers
  • Secure Transmission: When sharing processed files, use encrypted email or secure patient portals
  • Log Disclosures: Document when PHI is extracted and shared externally
  • Complete HIPAA Training: Ensure you're trained on your organization's specific HIPAA policies

✅ Recommended Healthcare Workflow

  1. 1. Obtain approval from your HIPAA compliance officer to use PDF Wonder Kit
  2. 2. Use only on authorized, secure workstations
  3. 3. Process PDFs containing PHI using PDF Wonder Kit (all processing stays on your device)
  4. 4. Download processed files to secure storage (EHR system, encrypted drives)
  5. 5. Transmit files only via secure, approved methods (encrypted email, patient portal)
  6. 6. Document any external disclosures in patient records

Legal Professionals & Attorney-Client Privilege

What PDF Wonder Kit IS

  • Privilege-Safe: Client-side processing means no third-party access to privileged communications
  • Reasonable Security Measures: Meets typical state bar requirements for technology security
  • No Third-Party Disclosure: Documents are never transmitted to us or any server
  • Chain of Custody Protection: Files remain under your control at all times

What PDF Wonder Kit IS NOT

  • Not a Legal Opinion: We're not providing legal advice about your specific situation
  • Not a Substitute for Bar Ethics Rules: You must follow your jurisdiction's specific ethics requirements
  • Not Guaranteed to Meet All Jurisdictions: State bar rules vary - check your state's requirements
  • Not a Certified E-Discovery Tool: For litigation, consult with e-discovery specialists

Your Responsibilities as a Legal Professional

  • Know Your Ethics Rules: Review your state bar's rules on technology competence (typically Rule 1.1 and Comment 8)
  • Reasonable Security: Use secure devices, networks, and transmission methods
  • Client Consent: Obtain informed consent for technology use when required by your jurisdiction
  • Metadata Review: Check for metadata in processed documents before disclosure
  • Backup Practices: Maintain proper backups of client documents
  • Conflict Checks: Ensure document processing doesn't create inadvertent conflicts
  • Billing Ethics: Follow billing ethics when using tools for client work

✅ Recommended Legal Workflow

  1. 1. Review your state bar's technology competence requirements
  2. 2. Use PDF Wonder Kit only on secure, password-protected devices
  3. 3. Process privileged documents knowing they stay on your device
  4. 4. Review metadata before sharing processed documents
  5. 5. Use secure transmission methods (encrypted email, secure client portals)
  6. 6. Maintain proper file retention and backup practices
  7. 7. Document technology usage in client files when appropriate

📋 Model Rules of Professional Conduct Reference

Rule 1.1 (Competence) - Comment 8: Requires lawyers to stay abreast of changes in technology and understand the benefits and risks of technology relevant to their practice.

Rule 1.6 (Confidentiality): Requires reasonable efforts to prevent inadvertent disclosure of confidential client information.

Note: These are ABA Model Rules. Your state may have variations. Always consult your state bar's specific rules.

Financial Services & Data Privacy

Compliance for Financial Institutions

Financial institutions handling sensitive customer data (covered by regulations like GLBA, SOX, PCI DSS) can benefit from PDF Wonder Kit's client-side processing:

  • GLBA Safeguards: No transmission of customer financial information to third parties
  • PCI DSS: Credit card data never leaves your secure environment
  • SOX Compliance: Document processing happens on controlled systems
  • Data Residency: Data stays in your jurisdiction/device

Your Responsibilities

  • • Obtain IT department approval before use
  • • Use only on approved, encrypted workstations
  • • Follow your organization's data handling policies
  • • Ensure processed documents are stored in approved systems
  • • Maintain audit trails for document processing
  • • Use secure transmission methods for sharing

General Business & GDPR/CCPA

Data Privacy Regulations

For businesses subject to GDPR (Europe), CCPA (California), or similar data privacy laws:

  • Data Minimization: We collect zero personal data from your documents
  • Purpose Limitation: Your documents are only used for the processing you initiate
  • Storage Limitation: Documents are automatically cleared from browser memory
  • No Cross-Border Transfers: Data never leaves your device or country
  • No Third-Party Processors: No data processing agreements needed

Best Practices for All Industries

  • Use secure, password-protected devices
  • Avoid using on public computers or networks
  • Close your browser tab when finished to clear memory
  • Store processed documents in approved, secure locations
  • Use encryption when transmitting sensitive documents
  • Follow your organization's data handling policies
  • Document your processes for audit purposes

Technical Details: How It Works

Client-Side Processing Explained

When you use PDF Wonder Kit, here's exactly what happens technically:

1. File Selection

When you select a file, your browser reads it using the File API. The file data stays in your browser's memory - it's never transmitted over the network.

2. PDF Processing

We use PDF.js (Mozilla's open-source PDF library) running entirely in JavaScript on your device. All operations (splitting, merging, compression, etc.) happen locally.

3. Download

The processed file is created in your browser's memory and offered as a download. The file goes directly from browser memory to your device's storage - no network transmission.

4. Cleanup

When you close the tab or navigate away, your browser automatically clears the file data from memory. Nothing persists.

🔍 Verify It Yourself

You can verify that no data is transmitted by:

  • • Opening your browser's Developer Tools (Network tab)
  • • Processing a PDF
  • • Observing that no files are uploaded to any server
  • • The only network requests are for loading the webpage itself

What Data We Do Collect

For transparency, here's what we do collect (none of it is document content):

  • Account information: Email, name (via Clerk authentication) - only if you create an account
  • Usage statistics: Number of PDFs processed per month (for subscription enforcement) - no file content or names
  • Payment information: Processed by Stripe, we don't store credit card data
  • Basic analytics: Page views, browser type (standard website analytics)

See our full Privacy Policy for complete details.

Important Legal Disclaimers

Not Legal Advice: This page provides general information about our technology and common compliance considerations. It is NOT legal advice. Consult with qualified legal counsel about your specific situation and compliance obligations.

Your Responsibility: You are solely responsible for ensuring your use of PDF Wonder Kit complies with applicable laws, regulations, and your organization's policies. We provide a tool - you determine how to use it compliantly.

No Warranties: While we've designed PDF Wonder Kit with privacy and security in mind, we make no warranties about its suitability for any particular regulated use. See our Terms of Service for complete warranty disclaimers.

Consult Your Compliance Officer: Before using PDF Wonder Kit with sensitive data, obtain approval from your organization's compliance officer, IT security team, or legal department.

Evolving Regulations: Data privacy and security regulations change frequently. This information is current as of January 2026, but you should stay informed about changes to regulations affecting your industry.

Still Have Questions?

We understand that compliance is critical for your organization. If you have specific questions about how PDF Wonder Kit works or need additional documentation for your compliance review:

📧 Email Us

For technical questions about our architecture or specific compliance documentation:

admin@pdfwonderkit.com

📖 Additional Resources

Ready to Process Your Documents Securely?

All the power you need, with the privacy and security your sensitive documents deserve.

Start Processing PDFs