Privacy policy

Last updated 16 April 2026

Short version. You upload a file, we pay Telnyx to send it, we delete the file the moment Telnyx tells us the fax went through (or failed). We do not read the file. We do not sell your data. We run a small Google Ads conversion tag so we can measure which ads actually bring paying customers. It sees that a purchase happened and the amount. It does not see your file, your fax number, or your email. If you want the long version, keep reading.

Sections

What we process
What we store after delivery
Sub-processors
Ad measurement and cookies
What we do not do
Your rights (GDPR, CCPA)
Data retention
Security
Contact

1.What we process

When you send a fax through Shotfax, the service:

Receives your file upload and stores it temporarily in Cloudflare R2, encrypted at rest.
Creates a checkout session via Polar.sh (merchant of record) for the $2.99 flat fee.
After payment, hands the file to Telnyx's fax delivery network, addressed to the destination fax number you provided.
Deletes the file from our R2 storage as soon as Telnyx confirms delivery or failure. Files tied to abandoned checkouts (payment never completed) are swept every 5 minutes and cleared within 65 minutes.

2.What we store after delivery

A job record with: job ID, destination fax number, page count, amount charged, status (delivered or failed), timestamp, and your email address (only if you chose to give one).
The file itself is deleted. We keep no copy of the document you sent.
Polar.sh holds the payment record. We never see or store credit card details.

3.Sub-processors

Service	Purpose	What they receive
Cloudflare	Hosting (Workers, R2, D1)	File (transient), job metadata
Telnyx	Fax delivery	File contents, destination fax number
Polar.sh	Payment processing, merchant of record	Card details, billing email
Resend	Transactional email delivery	Recipient email address, delivery metadata
Google (Ads, Tag Manager)	Ad measurement only. Counts which ad clicks led to paid faxes.	Ad click ID (GCLID), page URL, purchase event and amount. No file, fax number, or email.

Telnyx is HIPAA-compliant when configured under a Business Associate Agreement. Cloudflare offers BAAs for healthcare customers. If you need a HIPAA-compliant fax service for PHI, contact us before sending so we can set it up correctly.

Google processes ad measurement data under Google Ads Data Processing Terms and transfers it to the US under the EU-US Data Privacy Framework. Google is certified under the DPF.

3a.Ad measurement and cookies

We run ads on Google to reach people who need to send a one-off fax. To know which ads actually work, we use one Google Ads conversion tag (gtag) and Google Tag Manager on every page.

What the tag does:

Reads the Google Click ID (gclid) from the URL when you arrive from an ad.
Sets a first-party cookie (_gcl_au, _gcl_aw) used only for conversion attribution.
When you complete a payment, tells Google that a purchase happened on /success and the amount.

What the tag does not do:

It does not receive your file contents, destination fax number, or email address.
We have not enabled Enhanced Conversions, so no hashed email or phone is sent to Google.
We do not run Google Analytics, Meta Pixel, TikTok Pixel, or any retargeting pixel.

Consent model. We use Google Consent Mode v2 with all four ad and analytics signals defaulted to denied on every page. Until you click Accept on the cookie banner, the Google tag receives a denied consent state, does not write the _gcl_* cookies, and does not send identifiers. If you click Decline (or never interact with the banner), consent stays denied for the session. If you click Accept, consent is updated to granted for ad measurement only and the choice is remembered in localStorage so you are not asked again on the same browser. You can reverse the choice by clearing site data.

You can block the tag with any browser extension (uBlock Origin, Privacy Badger, etc.) without affecting fax delivery.

4.What we do not do

We do not retain copies of your documents after delivery.
We do not read, analyze, or process the contents of your files.
We do not sell or rent your personal data.
We do not use your data to build advertising profiles or retarget you.
We do not run Google Analytics, Meta Pixel, or any tracking beyond the single Google Ads conversion tag described above.

5.Your rights (GDPR, CCPA)

Access. Email us with a job ID for a copy of the metadata we hold.
Deletion. Job records auto-delete after 90 days. Earlier deletion on request.
Portability. All data we hold is the metadata above. We will send it as JSON.
Objection and restriction. You may object to processing or ask us to restrict it. In practice, once the fax is sent there is nothing left for us to process.
Complaint to a supervisory authority. You may lodge a complaint with the Lithuanian supervisory authority, the State Data Protection Inspectorate (Valstybinė duomenų apsaugos inspekcija, VDAI), vdai.lrv.lt. EU and UK users may also complain to the supervisory authority in their country of residence (list at edpb.europa.eu/members).

5a.Data controller

The data controller for Shotfax is Povilas Konopackas, a sole trader based in Lithuania, EU. Contact: support@shotfax.com. This is also the address for any GDPR request.

6.Data retention

File contents. Deleted from R2 on the delivery or failure webhook. Abandoned checkouts (no payment) are cleared within 65 minutes.
Job records. 90 days, then auto-deleted. We keep job metadata for 90 days so we can handle late-reported delivery issues, chargeback disputes, and accounting reconciliation. Nothing longer is needed.
Payment records. Held by Polar.sh per their retention policy as merchant of record.

7.Security

All transmissions use TLS. Files in R2 are encrypted at rest. The fax leg uses Telnyx's private IP network with T.38 error correction for reliability. We follow OWASP guidelines for the web application and keep our attack surface small on purpose.

8.Contact

For privacy questions, reply from the address associated with your receipt or email support@shotfax.com.