Treat every upload as permanent
Once a sensitive file touches a third-party server, you’ve lost control of it. The safest assumption is that anything uploaded could persist somewhere.
Prefer on-device tools
For anything private, choose a tool that processes locally. With PDFIntro the file is read in your browser and the result saved back — no server sees the content.
Clean up after yourself
Use Remove Metadata to strip author names and timestamps before sharing, and clear your local activity history in Settings if you’re on a shared computer.
When you must share
If a file has to go to someone, extract only the pages they need and remove the rest. Less shared means less exposed.
